firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 04:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7ItNdrqPei9vbzylltedmod8KDAZSKakTsSHpI0jk0QNy3myEsJImw==
Age: 2382
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5348
Expires: Mon, 26 Sep 2022 06:24:08 GMT
Date: Mon, 26 Sep 2022 04:55:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xq9PmSFuLbiAehzM_eA1OIjawAUyekksw9YStCLX7nnhG8sjgoLOww==
age: 1185
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:55:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 04:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 04:22:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ojArS7azTRpJnksdc4RdU9IR54qPeAVusG3GVR86aCkbyDoJ46Qe5A==
Age: 3044
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5049
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:01 GMT
Last-Modified: Mon, 26 Sep 2022 03:30:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
seguro.mudeseulook.com/cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
170.82.174.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.mudeseulook.com/cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812 HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 04:55:01 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.mudeseulook.com:443/cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
X-GoCache-CacheStatus: BYPASS
Server: gocache
push.services.mozilla.com/
52.36.24.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.24.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zw7lxoPPPITcg4TiBXPtYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q6aAnN6y7Ed8XJacouRGWd4R9yw=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb566be4ec69709309e17df006a3a91a
46c44b820f8e27ad5870ac4543e7fee9d930ed64
60752c97969be22748209283f41fde496dadc8303038e27a15b474e6ad8cb33d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60752C97969BE22748209283F41FDE496DADC8303038E27A15B474E6AD8CB33D"
Last-Modified: Fri, 23 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Mon, 26 Sep 2022 10:54:19 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8581
Expires: Mon, 26 Sep 2022 07:18:03 GMT
Date: Mon, 26 Sep 2022 04:55:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27d324b1fb661c318aced98468501b3c
5c4ee294c98e8fc9312a7d481b6ec165494cf852
937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
content-type: image/jpeg
age: 24570
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6e43e36ae283d6ec12fb5c9c692fa83
a3b3a4396da5beac2430e8facdb4d4b799621c9d
49ed7dccf0fe8abb7b0bfdc34ff89b30ef719288571bb1d89d29a1cb8857310e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10944
x-amzn-requestid: 2711886c-e022-4a77-862e-9d7bbd0db02e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvxHsSIAMF8Pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-6b464e2e489825b51447d74d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uUv7Bw-tIh5QVF-nZhx0sWz6K8EJn3gWP0pzUHBzktZS3A6uMudYSg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:25:04 GMT
age: 23398
etag: "a3b3a4396da5beac2430e8facdb4d4b799621c9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 431ff1171a3d7c60a31cc1c3f62164ee
4b32113aaf50132b38c8034017a6eb5a32d7040b
65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:20 GMT
age: 22962
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d79a3a5bd7dc7aa6cab306176fafd11
0d5cb1f3e3ea510308034a5e569c0e65fae30835
57979dfcf6fdc76f04e4790c2b94b876e188ac780aa49d9bfc8a58c498dc4203
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: e7b997d7-f9ce-40c6-b9bb-372ee10d8ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTAfEX5oAMFcHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb9c-31e295e33ead940f381121a1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:43:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p7rimTrmOgUnwPuESSKSrsWlzhiSBJYx9h8XIacxP8DUyyvXye2iyg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 25506
etag: "0d5cb1f3e3ea510308034a5e569c0e65fae30835"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 26263
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 23916
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 87037f1a6953e028975e38476815bc72
e8e44435ba1d4de9ee6f86d3b1d5382fa587fcb7
e847a7f128fa12e570493f9dc8739400c6141792c40c77ed0205028391f870a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4775
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Last-Modified: Mon, 26 Sep 2022 03:35:28 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 7d84c4456027d3c2e042f55c624444cb
ae1299213270a14574bac01f8f91d29a4c9ffd7c
5ac486ab075825fc510d276894e2a289866e243bbb1efe2f5246c710f307aae4
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 26 Sep 2022 04:55:03 GMT
date: Mon, 26 Sep 2022 04:55:03 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e183f146f8aa103a265009ba5e9ed5d1
58eec0af46677a89cdcd4d379ea90aa238acccd9
3b3a7d2b43bb19894b70a3b9a9bbc2c01c73b975658e37d8bd559ccf15525561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Server: ECS (amb/6BC7)
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash caa625c31ce691728649f20efcac6f1f
c3111e8f29e350c2f3ecad7f75af1cc52f165a02
e0688f7fd74b6809a557bee502c667db94b5580b5838de6fa9c839046b80434c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Server: ECS (amb/6B8F)
Content-Length: 280
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e2e24d5d5cb2ae1681c3ad64177cfcb2
9f289991dc6cf89b0211be11c94df04cb69b9d21
b712fe523989c635a221e31bd88b312b50130b4d5b7b6e9964b08bed4f140183
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:55:03 GMT
Last-Modified: Mon, 26 Sep 2022 04:21:18 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MlPAnT4e1HN0KcmAkl6Lx3XZGrKJZnGns4BsBufWSl6oQRrpJ1jpqg==
Age: 2025
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0f23b26ec88b1537682f54d824574960
aad565d275e7d0043d1e0c7827f9994ec0ca70fb
be2da8f3f37d430fc0f7ee4522259b928a931f13381685b7ba01a56b2a8cfeeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE2DA8F3F37D430FC0F7EE4522259B928A931F13381685B7BA01A56B2A8CFEEB"
Last-Modified: Sat, 24 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13496
Expires: Mon, 26 Sep 2022 08:39:59 GMT
Date: Mon, 26 Sep 2022 04:55:03 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.1.53200 OK 44 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.1.53:0
Hash ac691c8d3075f285191dcb7a5de3e392
a4bfe6988232995b1c531d9eb0ab941f6550392b
868513d08ddaee73f38f99c0a38830fa18ab5d39ad65cfa109dd2707d8e6d9db
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:03 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: REVALIDATED
expires: Tue, 04 Oct 2022 04:55:03 GMT
cache-control: public, max-age=691200
vary: Accept-Encoding
server: cloudflare
cf-ray: 750967b68fd8b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
104.26.2.88200 OK 68 kB URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP 104.26.2.88:0
File type ASCII text, with very long lines (32060)
Hash 3effbf880ca514045803606fe2f7af06
88e04eb556d793d6f30895597e6687ffc2898e8b
d0fcecace50d2ed07c5a32e05264688dd9f1eb05753037cd328efe4e880bdeb0
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:03 GMT
content-type: application/javascript
x-amz-id-2: 7gxTttBd/kCkn0bd/hyRfHdpqJ9gzq8f1yoBkZ3x5D4QwamXpqfrXGunCOTo8cwqgRppri0a9Bk=
x-amz-request-id: 98FT7W7KHGHEXVPW
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NaXVtY9r7TPyDrnEFu3RfUKzlWr4HqtKKjZr%2B6%2BOnyF1gyoESzHv%2FcDyR24KqtA6v759%2FfvHlqSDuj3X7rRoKL1QyFzhhPg%2B4%2FPYcwbNNQaApiMujkR%2BVyDywk%2FTpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750967b57a67b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0288/4157/4486/products/Sb6abbad00e134936ba8d92032e3c18a7N_50x50.jpg
104.16.254.71200 OK 2.0 kB URL HTTP/2 cdn.shopify.com/s/files/1/0288/4157/4486/products/Sb6abbad00e134936ba8d92032e3c18a7N_50x50.jpg
IP 104.16.254.71:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d2c0e907a479fdc2a898deedbf8881b0
dd2645e6a8dd2033e59cc4f16a337113efff785f
18b271e520e022c734d15d90e48239bbe91f89242d0fb7903e40e5938868295f
GET /s/files/1/0288/4157/4486/products/Sb6abbad00e134936ba8d92032e3c18a7N_50x50.jpg HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:03 GMT
content-type: image/webp
content-length: 1974
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0288/4157/4486/products/Sb6abbad00e134936ba8d92032e3c18a7N_50x50.jpg>; rel="canonical"
server-timing: imagery;dur=229.551, imageryFetch;dur=57.165, imageryProcess;dur=169.925;desc="image"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 6e7ba86a-9ff6-4c1b-9d5e-d24673ff6b45
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Sat, 24 Sep 2022 04:21:24 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0V9%2F9IvW364%2FfF2IbxAH%2BxY1pjtFL1njTrlYGAstHwJDTNGrug7NlNmeTdnUViHGAmIKGSiyclPUZsMUrEE8bMM7Ln8Ngj83wn5hfjuMB7aLNdnQ18ArY4c5QXzhXFdrxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 750967b92c20b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0f23b26ec88b1537682f54d824574960
aad565d275e7d0043d1e0c7827f9994ec0ca70fb
be2da8f3f37d430fc0f7ee4522259b928a931f13381685b7ba01a56b2a8cfeeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE2DA8F3F37D430FC0F7EE4522259B928A931F13381685B7BA01A56B2A8CFEEB"
Last-Modified: Sat, 24 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13495
Expires: Mon, 26 Sep 2022 08:39:59 GMT
Date: Mon, 26 Sep 2022 04:55:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mercadopago.com/v2/security.js
143.204.55.36200 OK 5.0 kB URL HTTP/2 www.mercadopago.com/v2/security.js
IP 143.204.55.36:0
Hash 7b57212d5e56a338e3d0a9bbc884d94e
ca35c04464cf345840907e1be093a75d5efa868e
8b4f2b5fcf5b69f368820271ac75ba3bf651627cc73edf9443a630ba1aa2db27
GET /v2/security.js HTTP/1.1
Host: www.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 26 Sep 2022 04:55:03 GMT
set-cookie: _d2id=87870718-00ba-4cf4-a337-12f2cb36351e-n; Path=/; Domain=.mercadopago.com; Expires=Tue, 26 Sep 2023 04:55:03 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: get_off_widget
content-encoding: gzip
x-request-id: 87870718-00ba-4cf4-a337-12f2cb36351e
x-request-device-id: 87870718-00ba-4cf4-a337-12f2cb36351e
x-d2id: 87870718-00ba-4cf4-a337-12f2cb36351e
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xumtEtDIhzzf_0JK4qOJYbI1ecmHmd-8koU-nVhCf3F-RlTPFVORSw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 53bba4782cea859b1a033d39328b90d1
415114e73a9ee7822bfdd27cc073cab0107f3bed
1bc904cbda94b65ae6fbf93032069e3bfda466ddfda9b814a2ec358714d27cd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5465
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:04 GMT
Last-Modified: Mon, 26 Sep 2022 03:23:59 GMT
Server: ECS (amb/6BC7)
X-Cache: HIT
Content-Length: 471
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/616e5ca26673b/616e5ca266743.png
16.12.1.8200 OK 18 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/616e5ca26673b/616e5ca266743.png
IP 16.12.1.8:0
File type PNG image data, 602 x 200, 8-bit colormap, non-interlaced\012- data
Hash b1be6af9a6fea4d238b8a637c3af65d1
8ef48a78d4370662227475fa83a6b23e880d40bf
4c04808d3776c054d751f196421d546be1d9f3001606c0d124528d370d0a73e6
GET /king-assets.yampi.me/dooki/616e5ca26673b/616e5ca266743.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3QxDfd+ytZHirDk4bPD58qz20JTUewR3Y0QCzrg+jNciR+WPsFU7UdoB+DpVycztblGvHVBy7wE=
x-amz-request-id: G2BPM6S2P4332BZX
Date: Mon, 26 Sep 2022 04:55:05 GMT
Last-Modified: Tue, 19 Oct 2021 05:50:27 GMT
ETag: "b1be6af9a6fea4d238b8a637c3af65d1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 17573
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 53bba4782cea859b1a033d39328b90d1
415114e73a9ee7822bfdd27cc073cab0107f3bed
1bc904cbda94b65ae6fbf93032069e3bfda466ddfda9b814a2ec358714d27cd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:04 GMT
Server: ECS (amb/6B8F)
Content-Length: 471
api.mercadopago.com/v1/device_sessions/web_device
52.0.94.219200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP 52.0.94.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://seguro.mudeseulook.com/
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: application/json; charset=utf-8
content-length: 0
access-control-allow-origin: https://seguro.mudeseulook.com
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-headers: content-type
access-control-max-age: 86400
x-request-id: 65ca8a6a-d9c0-4530-b431-c4b7faa221b9
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-91,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 3ca9ae921301b33b
x-b3-traceid: 3ca9ae921301b33b
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-91: S/OTwZ6RaINepFukNjAM2HbD4w1ky6G0u5amtDS5QQzfUxPTX1CX8R8/IAar1d+X
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
timing-allow-origin: *
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8337f09d37f32b83dbff38628f54be81
7876a8012849bf48d8f3948d93a3a8240121b03d
611e0ca929885aa0e1e394855eff477159fa1cb1aa21edbbc13687d67dba4b6f
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20220926045504DD559A31EA42EA060BD4
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf603e957d5933b28af4e2c8d51fa6fc07c17db69c89b84619d4c41224bbbfb1e52c47da1a93b2e7aa67bf2c31129d16bfb44d83e3ec346d320bef179163e914aaa9f4aa69d4ea08fe53f8a940a18880e6a3
content-encoding: gzip
x-origin-response-time: 8,96.7.74.159
x-akamai-request-id: 59060969.4c01dec3
expires: Mon, 26 Sep 2022 04:55:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 04:55:04 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a96-7-74-159.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=8, inner; dur=2
x-parent-response-time: 112,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 913
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Cookie: _ttp=2FI8BnxJMppA1PPC6IBorTzfmW6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202209260455044940F96DBE7A490DD0E3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb77cf49f43fb3d1fafd178d1ad277e1c45b0ba30aaed595ce523833c3db7d2520ead4f6ebd3b1ab5337a743c46e0e8502aadeb0e94243ca0bbcd6c1180c5f4d60
x-origin-response-time: 41,23.218.223.9
x-akamai-request-id: bf1a43cf.4c01df44
expires: Mon, 26 Sep 2022 04:55:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 04:55:04 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-218-223-9.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=127, origin; dur=41, inner; dur=13
x-parent-response-time: 160,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C60ATESQLHO71647POOG&hostname=seguro.mudeseulook.com
23.36.79.32200 OK 20 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C60ATESQLHO71647POOG&hostname=seguro.mudeseulook.com
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type C source, Unicode text, UTF-8 text, with very long lines (58149)
Hash b9ae5a7db73f34b3048299127675b75b
dfd86403759992c2360c4a00eb65eb5d88b0770c
86281aeb963aa0f391785d6c675e9d05cf2da1ad4555334f7c2a13a4a5f64acb
GET /i18n/pixel/config.js?sdkid=C60ATESQLHO71647POOG&hostname=seguro.mudeseulook.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202209260455046133E7D0D88A3A0CE7EB
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1bebb493edd44f59a30f60b64722b0a26fbc3f9a0d37f755e96cca265f50231b72ea60431ec17315c9d20c611415199630e1a1044dc9b6841164cf748469640cedc7
content-encoding: gzip
x-origin-response-time: 7,23.218.223.9
x-akamai-request-id: bf1a3f93.4c01dec6
expires: Mon, 26 Sep 2022 04:55:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 04:55:04 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2FI8BnxJMppA1PPC6IBorTzfmW6; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-223-9.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=105, origin; dur=7, inner; dur=3
x-parent-response-time: 112,23.36.79.28
X-Firefox-Spdy: h2
seguro.mudeseulook.com/api/v1/pixels/events
170.82.173.30200 OK 491 B URL HTTP/2 seguro.mudeseulook.com/api/v1/pixels/events
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 4526c3cc858f223af9ef2ffbc42d956c
4075bb42888be5ca8db7f3b07c25313a98760899
c27f0f913e31ac3b396fca8126d0ed1c29fde5bd5d68c7fa5a08160947d5374f
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImU1MmRkMzFiYzZlZWVhZGEiLCJ0ciI6IjNhOTVjYWRmOTljMjZhMTkxODdhYjc3YjAxNTIwNzM4IiwidGkiOjE2NjQxNjgxMDIzMTB9fQ==
traceparent: 00-3a95cadf99c26a19187ab77b01520738-e52dd31bc6eeeada-01
tracestate: 2935249@nr=0-1-2935249-1134170823-e52dd31bc6eeeada----1664168102310
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 397
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/cart?utm_source=sms&utm_campaign=carrinho+abandonado+1&forcecheckout=1&skiptocheckout=1&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
Cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjNyR1NtMEFWMnNLUkx2SENXOXFCR1E9PSIsInZhbHVlIjoiSXhXUm0zT1FQY2JabDNJaG9UMldCdUVvQktBdSs1QnloOFJSU3VNUzhMTlBYME9YYjRcL1ZBclJzUTQzT3VkeURsTVJvb1VKazVNNEhZM21DZDBjWHBnPT0iLCJtYWMiOiJjZGY3ZGM2MzRkMDc1M2NiYzI1MGVkODU4YWQyMWM5MWNiYzI3NTFhNDhmNmRiNDUyMTc2ZWYwZmNjNmQ3OWFlIn0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkE3RFZWbnFuOGw3VmlsT2VKbHVEdmc9PSIsInZhbHVlIjoiV1wvS2FiNG9yMHBObGFHVGtwT3ZmMSs1eHBVck12SHRwSGJMUWQxcmZtRitNbndQZnkxVW5FNGtWNE9iODlCbVNWRXJaSncxU1wvSUd5WE8yMTdJUGdhUT09IiwibWFjIjoiMWQyYjQ5NTM2MWFkY2FiZjk3YTEwZmUxZjA1MDE0YmQ4OGJjMWNlOTU5MGNmZDlhZDMzOTE0NmMyMzA1YTFhMiJ9; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFlDWUoRC09UWxVKRURSAQ0KDFdAFFIWCAQCA1UVUR9QAVJTABtMV08aCwdcV1EBAABUUgQCV1VSUkAcBFkOS11p
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 892
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Cookie: _ttp=2FI8BnxJMppA1PPC6IBorTzfmW6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220926045504CAD371D3C8A0F4153816
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1bebf94b59ba97b3811144c02afe1d76d20172e5d7305c7db0bbf529ee5c57d400100f86a4f3427d199766432e3294fd786635fb1239bba24b710b93b99e9bb04def
x-origin-response-time: 56,23.218.223.9
x-akamai-request-id: bf1a436e.4c01df37
expires: Mon, 26 Sep 2022 04:55:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 04:55:04 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-218-223-9.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=145, origin; dur=56, inner; dur=14
x-parent-response-time: 198,23.36.79.28
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (826)
Size 158 kB (158248 bytes)
Hash db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 22:25:55 GMT
expires: Mon, 25 Sep 2023 22:25:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 23350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 3.2 kB IP 93.184.220.29:0
Hash 61e3c23a7a8fd7f4a85e00ee6055a9e3
1551c2a94ab3d51e1d689f6f46210b29643691b6
436baaaf258a774177ce29d5f6167ed8c5d26a66ba925decc2576ed821850de1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4916
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Last-Modified: Mon, 26 Sep 2022 03:33:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
seguro.mudeseulook.com/cart/promocode/store
170.82.173.30400 Bad Request 46 B URL HTTP/2 seguro.mudeseulook.com/cart/promocode/store
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type JSON data\012- , ASCII text, with no line terminators
Hash 44f67e0d3602c6554206b06f3c292c2b
1ff7cb966c8d824b39aeec7010b079160a1ea5aa
dd8b21d6089ab20b3a144aa07579bf232bcc9807360ac7e60a7e23ea1be9c288
Analyzer Verdict Alert fortinet Phishing
POST /cart/promocode/store HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjE5YjA4M2VlMWQ4YWY0ODQiLCJ0ciI6IjI4OWY1MzU3ODNmMzk3ZmM2MGMzMDA1OTY5YTMwNDJkIiwidGkiOjE2NjQxNjgxMDIyOTR9fQ==
traceparent: 00-289f535783f397fc60c3005969a3042d-19b083ee1d8af484-01
tracestate: 2935249@nr=0-1-2935249-1134170823-19b083ee1d8af484----1664168102294
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 62
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/cart?utm_source=sms&utm_campaign=carrinho+abandonado+1&forcecheckout=1&skiptocheckout=1&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
Cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 400 Bad Request
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IlZMTXpLZFVRQmlDdWtvcDlIWEhndGc9PSIsInZhbHVlIjoielpMbDdqY1dpdTREM3RCUEJTdlwvcVNoTktXcjZOOStLb1lMREdyMmVKNURcL0VEdUpJc1ZwR1pWSXY2Wk9WbVhWR0h4UnVvazNNRXFhdmcrd0Z5ZHNQZz09IiwibWFjIjoiZGM1ZDNkMTE5YTM3MTRmNzMwZmUyMmZiY2Y5MGExNzAyMmYyODM4YjI2ZDViOTFjNWY1NDNmYTk5ZGQ2NGQ2YyJ9; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IjVqUXBBRE56REZ6VDY0bzJQYU5GTmc9PSIsInZhbHVlIjoibVVLQmZCQVNIM3UwZlE1QXBTMW5jMnRxM1NRZ3pqNDhkM1UyZ2ZpXC9ZelpCXC93czVRMFwvYkxDbWlGdWFcL1ZpYmNhRjZ5Q3JuSW9CWlBGbkVCMXhZeUF3PT0iLCJtYWMiOiJmZjZmNzRmODcwNjJiNjFjZDU5NmY1ODNiOWUwYWRmMmIzODk2ZTY4OGNhM2RlMWM5MjY5OTA4NjAxNjE1N2IzIn0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEkVeWgkHXlJWTBUXDUIHGk4IFgQCA1UJTQFPA1FcBg5NS1IUEVUAAlFWBlNeBlJVUFsHUQMSTl4DVEtRbw==
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 04:41:09 GMT
expires: Mon, 26 Sep 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 836
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9816a34aa982a32c75960dea9eafeb8b
c7e109045ac10b4a16db658cab522d76260ad913
35e739f34c5de6ef430dd444b8a4dfff2fada8de37f67d460a43ab9e0697032c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: RXdtRl+Exrn82fBGI260GmOyvEdqGzeLqySGgX4jY73wr9tuJINr5OkhROTt4eRUg5xx8UNOdY87EXLZvTtF8A==
content-length: 26840
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 04:55:05 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3721
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Last-Modified: Mon, 26 Sep 2022 03:53:04 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
216.58.207.237302 Found 392 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (377)
Hash 7a4958d29e6cdd2a6c942d18f73831f9
00afac3f1c5c7aa79b572ae95da7433686c4e5ac
256338d889180d3844f9fdb06b22a09dde43aefafb395581d33e218856ca2809
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 26 Sep 2022 04:55:05 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S738868767%3A1664168105177826&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWrx0NpF3YZ_swkzxRKLtXCXGiMhU32j3N7lWHaqgHwTSfsveGFRqDUom_uJ0PCDfE0gOhao
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce--6JSg93k1LQcpL7Z5RXP_Q' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 392
server: GSE
set-cookie: __Host-GAPS=1:B3uKdJZx8VJcUAq9cx6ipBMkxxQuVg:Ny3xlSoz0FadqHDQ;Path=/;Expires=Wed, 25-Sep-2024 04:55:05 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash cd5f811dc7c19de8566479150bc37ef8
d17e9c54bce997b95bd0b6fceb0ad936077bbbf8
dbcef3b5ce770e8a3e8350473f04fbe627a78fa93a4441a24afec965643733e8
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "cd5f811dc7c19de8566479150bc37ef8"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
142.250.74.163200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css
IP 142.250.74.163:0
File type ASCII text, with very long lines (52762), with no line terminators
Hash f2d649025c814be9c33f166a5e04fe88
26bf59de631415927ba2c6c9e44fe9c763f95313
f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 08:33:30 GMT
expires: Mon, 25 Sep 2023 08:33:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/css
age: 73295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C60ATESQLHO71647POOG&lib=ttq
23.36.79.32200 OK 77 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C60ATESQLHO71647POOG&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash de5f50d21f77cc8432ff098fe98b4c4b
14ce06f5824646d34a485a3143bc7cea02f0c740
2ae49dd770954cf81b454ce1e20c4ad47d83c7011877f189e02c889943153f38
GET /i18n/pixel/events.js?sdkid=C60ATESQLHO71647POOG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20220926045504E048411AEEC4960ED812
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb7d2f5e9a8165dfdb59a44001c743d633158258943817ed7ac534addf3914f623bc24bfe6cb1ecaeb493a3a57d28c4de9b2bf55544ee97af49d86b74eb620eea8
content-encoding: gzip
x-origin-response-time: 10,23.218.223.21
x-akamai-request-id: 7108a666.4c01dda9
expires: Mon, 26 Sep 2022 04:55:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 26 Sep 2022 04:55:04 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-223-21.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=10, inner; dur=3
x-parent-response-time: 110,23.36.79.28
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&gjid=893766580&_gid=1195647464.1664168103&_u=IEBAAEASAAAAAC~&z=1641681310
64.233.162.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&gjid=893766580&_gid=1195647464.1664168103&_u=IEBAAEASAAAAAC~&z=1641681310
IP 64.233.162.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&gjid=893766580&_gid=1195647464.1664168103&_u=IEBAAEASAAAAAC~&z=1641681310 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.mudeseulook.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 04:55:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
142.250.74.163200 OK 1 B URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP 142.250.74.163:0
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 22:25:55 GMT
expires: Mon, 25 Sep 2023 22:25:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 23350
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103703
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103703
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash 3552f5f146470ca7ebc456b2595776c5
a4baaddc1ef324c9e169da6b1e21f33210cdf86b
3c8d06b1f641094d99da191134bcff7e255ef67f45967db4a1ec4a9c2f381068
GET /user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103703 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://seguro.mudeseulook.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1627656904760194
date: Mon, 26 Sep 2022 04:55:05 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1664168105.1b638198
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash 3552f5f146470ca7ebc456b2595776c5
a4baaddc1ef324c9e169da6b1e21f33210cdf86b
3c8d06b1f641094d99da191134bcff7e255ef67f45967db4a1ec4a9c2f381068
GET /user/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU56QTFaakl3WkdFdE1URTBOQzAwTmpZNUxXRTRORGd0TWpFMU5XUXpZalpqT1RWaw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://seguro.mudeseulook.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1417733622601455
date: Mon, 26 Sep 2022 04:55:05 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1664168105.1b6381a1
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash 3552f5f146470ca7ebc456b2595776c5
a4baaddc1ef324c9e169da6b1e21f33210cdf86b
3c8d06b1f641094d99da191134bcff7e255ef67f45967db4a1ec4a9c2f381068
GET /user/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpEQXpaVEUzTXprdE1qa3pNaTAwTXpjeUxXRXhORE10WWpRNU56UTNOMlF5TlRJdw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://seguro.mudeseulook.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 6860760728828985
date: Mon, 26 Sep 2022 04:55:05 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1664168105.1b63819c
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&_u=IEBAAEASAAAAAC~&z=267950413
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&_u=IEBAAEASAAAAAC~&z=267950413
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-178394668-1&cid=641009572.1664168103&jid=70747293&_u=IEBAAEASAAAAAC~&z=267950413 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 04:55:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103907
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103907
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22pagevisit%22%7D&tid=2612358400353&cb=1664168103705&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103907 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 7400051576526479
date: Mon, 26 Sep 2022 04:55:05 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZNcmZJWU5BR0RvMkVlL2ZvaWUwZllVbmVmME1NUWRBSkY1SmpBZ3lsdHZOVzJMUnE4VlZKQUwyNVlIU2FOWmFwd05WbllQRlBwSHhuY0tLdkhuSDJGWUlKODlDRi9IR3ByWjlyT0ZJZ2dKdz0mVFYxZU5nZmpYWWFadGNJejZ4akhoUlZhQTU0PQ=="; Expires=Tue, 26 Sep 2023 04:55:05 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1664168105.1b63848f
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103904
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103904
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=AddToCart&ed=%7B%22line_items%22%3A%5B%7B%22product_id%22%3A11155821%2C%22product_category%22%3Anull%2C%22product_quantity%22%3A1%7D%5D%2C%22content_type%22%3A%22product_group%22%2C%22value%22%3A209%2C%22currency%22%3A%22BRL%22%2C%22property%22%3A%22AddToCart%22%7D&tid=2612358400353&cb=1664168103707&pd=%7B%22pin_unauth%22%3A%22dWlkPVpHUmhNVEE0T1dRdE1HWmhNQzAwWWpnMUxXRmxOVEl0TldJMFpHRmxOemszTlRBeA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%228f82d377%22%2C%22is_eu%22%3Afalse%2C%22ecm_enabled%22%3Afalse%7D&cb=1664168103904 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1085622744202807
date: Mon, 26 Sep 2022 04:55:05 GMT
set-cookie: _pinterest_ct_ua="TWc9PSYxM1B3ZlBkUmxrVUJBMWRkQ1FtSUdBTmNtVDZaUGtFaWUzYWc2bzJEakFHdlhKcmUzTHU0VkZUd1QvT3cvQTdxRUl0aTZlK2NXRE9GU3MyNGhITEhuTmlpaVNHT056dkpYZ0cxMk5SRVlFOD0mQWZDNzJSQmVxNVRDTS9aYTNnTURHLzYxTnM0PQ=="; Expires=Tue, 26 Sep 2023 04:55:05 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1664168105.1b638488
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=779660382565238&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104238&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=779660382565238&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104238&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=779660382565238&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104238&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:05 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1461081761001828&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104259&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_tz3gwglhz&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1461081761001828&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104259&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_tz3gwglhz&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1461081761001828&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104259&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_tz3gwglhz&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:05 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1461081761001828&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104244&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1461081761001828&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104244&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1461081761001828&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104244&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:05 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=289109416706721&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104242&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=289109416706721&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104242&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=289109416706721&ev=PageView&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104242&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=PageView_pylq4shgh&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:05 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=779660382565238&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104246&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_qwq6vwt9d&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=779660382565238&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104246&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_qwq6vwt9d&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=779660382565238&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104246&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_qwq6vwt9d&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:05 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=289109416706721&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104249&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_1ehlv41hs&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=289109416706721&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104249&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_1ehlv41hs&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=289109416706721&ev=AddToCart&dl=https%3A%2F%2Fseguro.mudeseulook.com%2Fcart%3Futm_source%3Dsms%26utm_campaign%3Dcarrinho%2Babandonado%2B1%26forcecheckout%3D1%26skiptocheckout%3D1%26customertoken%3Db814f7d0-3c5c-11ed-a1b2-1b81bdf70450%26promocode%3Dcupom2812&rl=&if=false&ts=1664168104249&cd[content_ids]=%5B%226807862378582%22%5D&cd[content_type]=product_group&cd[value]=209&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.84&r=stable&ec=1&o=29&fbp=fb.1.1664168104238.1925109645&it=1664168103563&coo=false&eid=AddToCart_1ehlv41hs&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:55:06 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.86.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 04:55:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 268
x-timer: S1664168106.070104,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 7604241368802444
date: Mon, 26 Sep 2022 04:55:06 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1664168106.1b638f31
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8cdaef8da493054ab3fa357f852661e3
48b40047919c85c7baa65b896158125c758d9f1a
f85aaa88b1325317a2cd62bc8d144518dca545d941a0589f8ec22eca07264a2d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5907
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:06 GMT
Last-Modified: Mon, 26 Sep 2022 03:16:40 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5819&ck=1&ref=https://seguro.mudeseulook.com/cart&ap=193&be=2711&fe=5567&dc=3502&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664168098770,%22n%22:0,%22f%22:1165,%22dn%22:1168,%22dne%22:1169,%22c%22:1169,%22s%22:1291,%22ce%22:1577,%22rq%22:1577,%22rp%22:2686,%22rpe%22:2687,%22dl%22:2695,%22di%22:3485,%22ds%22:3501,%22de%22:3548,%22dc%22:5566,%22l%22:5566,%22le%22:5787%7D,%22navigation%22:%7B%7D%7D&fcp=3530&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 72 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5819&ck=1&ref=https://seguro.mudeseulook.com/cart&ap=193&be=2711&fe=5567&dc=3502&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664168098770,%22n%22:0,%22f%22:1165,%22dn%22:1168,%22dne%22:1169,%22c%22:1169,%22s%22:1291,%22ce%22:1577,%22rq%22:1577,%22rp%22:2686,%22rpe%22:2687,%22dl%22:2695,%22di%22:3485,%22ds%22:3501,%22de%22:3548,%22dc%22:5566,%22l%22:5566,%22le%22:5787%7D,%22navigation%22:%7B%7D%7D&fcp=3530&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 107d93e382e2c9b00fbf9fb0edc65d86
77e750e3ebf9706f4f6dd253785602d70be17c6c
a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=5819&ck=1&ref=https://seguro.mudeseulook.com/cart&ap=193&be=2711&fe=5567&dc=3502&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664168098770,%22n%22:0,%22f%22:1165,%22dn%22:1168,%22dne%22:1169,%22c%22:1169,%22s%22:1291,%22ce%22:1577,%22rq%22:1577,%22rp%22:2686,%22rpe%22:2687,%22dl%22:2695,%22di%22:3485,%22ds%22:3501,%22de%22:3548,%22dc%22:5566,%22l%22:5566,%22le%22:5787%7D,%22navigation%22:%7B%7D%7D&fcp=3530&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 04:55:06 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 750967c9adbfb503-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=9f6e614d17010b7c; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=6358&ck=1&ref=https://seguro.mudeseulook.com/cart
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=6358&ck=1&ref=https://seguro.mudeseulook.com/cart
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1216.487a282&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZSQkJPWAhRVUs%3D&rst=6358&ck=1&ref=https://seguro.mudeseulook.com/cart HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1297
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 04:55:07 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 750967cb9f66b503-OSL
Access-Control-Allow-Origin: https://seguro.mudeseulook.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
ocsp.digicert.com/
93.184.220.29200 OK 86 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash 5524106390abc62f2f2c6031d779a71d
6c05c7a12b25f8854758d9cdaf8249ccc8d30dcf
98e218712c16982fcda0c6d1f76e11df619b98067820fa11aa79f7605cc658e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:55:07 GMT
Server: ECS (amb/6BAC)
Content-Length: 471
www.mercadolibre.com/jms/lgz/background?dps=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e
143.204.55.33200 OK 3.1 kB URL HTTP/2 www.mercadolibre.com/jms/lgz/background?dps=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e
IP 143.204.55.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (716)
Hash 1f3e02c3c37a75a0ed4c2ab3e7cf0504
fef9a916ed05981cb5a3a62a11e8d6ddff85d58e
2b8d07695512db3c73a5804c5cd89df544cbea937bf2bffeff91cd91f7d31d1d
GET /jms/lgz/background?dps=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Mon, 26 Sep 2022 04:55:06 GMT
server: Tengine
set-cookie: _d2id=81008d64-6756-4714-bf23-b637f4a13f4b-n; Path=/; Domain=.mercadolibre.com; Expires=Tue, 26 Sep 2023 04:55:06 GMT
access-control-allow-origin: *
x-transaction-name: cross_domain_profiler
content-encoding: gzip
x-envoy-upstream-service-time: 6
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 81008d64-6756-4714-bf23-b637f4a13f4b
x-request-device-id: 81008d64-6756-4714-bf23-b637f4a13f4b
x-d2id: 81008d64-6756-4714-bf23-b637f4a13f4b
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sY-rsO1WDwxnb3nXJ43uAz2-bpKtvqIi9cOmk5SXW-nOECPeisdtXQ==
X-Firefox-Spdy: h2
api.mercadopago.com/v1/device_sessions/anonymous_device_session
52.0.94.219200 OK 337 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/anonymous_device_session
IP 52.0.94.219:0
File type JSON data\012- , ASCII text, with very long lines (337), with no line terminators
Hash 14a85bce289ddb38ba049ab8d1bf306c
e302d475ca09e1cbad75a65f3e89977169ba378d
45f85c6abe36ab91f04fd96330f9af99d317072815ff03a777845b6252f66501
POST /v1/device_sessions/anonymous_device_session HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 98
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:08 GMT
content-type: application/json; charset=utf-8
content-length: 337
access-control-allow-origin: https://seguro.mudeseulook.com
x-request-id: df220c62-cda7-4635-b18e-1153dd1dff6c
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-94,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: 0e794517f7f1e8fb
x-b3-traceid: 0e794517f7f1e8fb
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-94: bI2xewzvyfwGq/1sU/4lYpxlImSeDEndeE9F5jth1cxZpfLb2+khh0s+Ef1Jz2Bu
access-control-allow-credentials: true
vary: Accept,Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
X-Firefox-Spdy: h2
www.mercadolivre.com/jms/mlb/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=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%3D
143.204.55.53200 OK 0 B URL HTTP/2 www.mercadolivre.com/jms/mlb/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=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%3D
IP 143.204.55.53:0
GET /jms/mlb/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=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%3D HTTP/1.1
Host: www.mercadolivre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 26 Sep 2022 04:55:07 GMT
server: Tengine
set-cookie: _d2id=f1823eb6-bfca-4363-bc23-f81295a827bc-n; Path=/; Domain=.mercadolivre.com; Expires=Tue, 26 Sep 2023 04:55:07 GMT
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
content-encoding: gzip
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: f1823eb6-bfca-4363-bc23-f81295a827bc
x-request-device-id: f1823eb6-bfca-4363-bc23-f81295a827bc
x-d2id: f1823eb6-bfca-4363-bc23-f81295a827bc
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gyAvIyotpOLtvKX9qbRj8l_wCbC_BMIqPspUVWDV0I5jFbneqaKvMA==
X-Firefox-Spdy: h2
seguro.mudeseulook.com/cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
170.82.173.30200 OK 0 B URL HTTP/2 seguro.mudeseulook.com/cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /cart?cart_token=shopify-6815659964f6ad2a1822a3b0341fdded&utm_source=sms&utm_campaign=carrinho%20abandonado%201&forcecheckout=1&skiptocheckout=1&store_token=c16e1e0878f54dd598ec307d1907ddf6d90d3d88&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812 HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:02 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; expires=Mon, 26-Sep-2022 07:55:02 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; expires=Mon, 26-Sep-2022 07:55:02 GMT; Max-Age=10800; path=/; httponly
mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D; expires=Sat, 01-Oct-2022 04:55:02 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
www.mercadolibre.com/jms/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
143.204.55.33200 OK 0 B URL HTTP/2 www.mercadolibre.com/jms/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D
IP 143.204.55.33:0
GET /jms/lgz/background/session/armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e?background=armor.db1d509e129d72f5ba5861292224b8f4e6cb7a7ebc5c1fc191a1b8ea17a1b395e335a7dfb7c1255e344c01244e621a48082998db2178bb02ed9eb8f8636ab7758365c6beedb1df1a3182802c725ffafd1e8ce8b3687b6189299c5b2de8164477.3f3366024a420ea4c372c45ecf155c3e&message=eyJqc190eXBlIjoianNfY29va2llIiwidmFsdWUiOiJ4In0%3D HTTP/1.1
Host: www.mercadolibre.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 26 Sep 2022 04:55:06 GMT
server: Tengine
cache-control: max-age=0, private, no-store, no-cache, must-revalidate
x-transaction-name: save_js_profiling
set-cookie: _d2id=4887c081-add7-4ceb-bb2f-c72f64e56a21-n; Path=/; Domain=.mercadolibre.com; Expires=Tue, 26 Sep 2023 04:55:06 GMT
dsid=63d17286-fcaf-4ffd-8cb0-115927d2b51f-1664168106611;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
edsid=b438b5f2-4fbc-42bb-b466-f58d7be7cfa5-1664168106611;Path=/;Max-Age=220752000;HttpOnly;Domain=.mercadolibre.com;SameSite=none;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 8
x-envoy-decorator-operation: production.auth-device-profiles-frontend.melifrontends.com
x-request-id: 4887c081-add7-4ceb-bb2f-c72f64e56a21
x-request-device-id: 4887c081-add7-4ceb-bb2f-c72f64e56a21
x-d2id: 4887c081-add7-4ceb-bb2f-c72f64e56a21
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pggr6bnm4tdpMviX2yWg-xlmgcOMzID3-FHdEmYGmeePT413hfvOaA==
X-Firefox-Spdy: h2
api.mercadopago.com/v1/device_sessions/web_device
52.0.94.219200 OK 0 B URL HTTP/2 api.mercadopago.com/v1/device_sessions/web_device
IP 52.0.94.219:0
POST /v1/device_sessions/web_device HTTP/1.1
Host: api.mercadopago.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 48
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://seguro.mudeseulook.com
x-request-id: 777bde4d-f5c4-4e4b-b981-5207e45630b7
x-trace-digest-keys: x-source-ip,x-trace-source,x-request-id,x-trace-digest-92,x-trace-digest-keys,x-trace-existing-keys
x-source-ip: 91.90.42.154
x-b3-spanid: a2e264c2bfcd39aa
x-b3-traceid: a2e264c2bfcd39aa
x-trace-source: fury_app
x-b3-sampled: 0
x-trace-existing-keys: x-b3-sampled,x-b3-spanid,x-b3-traceid
x-trace-digest-92: +BgVAAVX2lTI0AFSxhvpHALwwL8qLRlG94Tck2wnapwmtzenwOxIosy3/WA260d2
access-control-allow-credentials: true
vary: Accept-Encoding, Accept,Accept-Encoding
cache-control: max-age=0
set-cookie: profile=1664168104397;Path=/;Max-Age=220752000;HttpOnly;SameSite=none;Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=16070400; includeSubDomains; preload
access-control-allow-headers: Content-Type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.mudeseulook.com/cart/recomm
170.82.173.30200 OK 0 B URL HTTP/2 seguro.mudeseulook.com/cart/recomm
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjVlNGY1MTAwMzg0Y2IwM2EiLCJ0ciI6IjBjNGZkNWQ2ZDk1MGI3NDg5M2JlZjc5MDhhNTY4OTkwIiwidGkiOjE2NjQxNjgxMDIyOTd9fQ==
traceparent: 00-0c4fd5d6d950b74893bef7908a568990-5e4f5100384cb03a-01
tracestate: 2935249@nr=0-1-2935249-1134170823-5e4f5100384cb03a----1664168102297
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/cart?utm_source=sms&utm_campaign=carrinho+abandonado+1&forcecheckout=1&skiptocheckout=1&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
Cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6Ink0UjdZXC83RnhDXC9JVVpLOUtuSkc1Zz09IiwidmFsdWUiOiJScUhWMUVla1JXR203NjFDVTJkdklmWktMam9LaTdTTEM5XC9yczBma2piSkw3YWFEVnE5OGRwZWhSQ0hPeXdYV2hxMFNMcEFxbkhoYk5IMVBGaWxcL3RRPT0iLCJtYWMiOiJmNDllZGNhNWQxM2Q2ZjI3NGM5N2FjMzJiNGE4MDY0NjNiMDkzMWVkOTBhY2JhZjc5ZTQ4NzhjYjBkZmVkYmQzIn0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImVqXC9hNUU0TVVHeTl5VXgzWU9sU2FnPT0iLCJ2YWx1ZSI6IkJlMm8rYklEREhwbWhhZjFaUnBGWjNSTTZlV0Z3RXphWTg5M0s4UlltYWEzT3pGRnA0YWsyNk1iSEhSeU4zazk1RzNzQjJvVzE3WVdwN3FzaE10bndBPT0iLCJtYWMiOiI5ZDEyYmIzNzdkYTVhNDI0MzM5M2MxZDAzZTcwNTkxYTYwNmZjOWUxZGQzNWRiNTkxYzUxNDAzNTIxOTAwYTQ4In0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAcKAVQVTABNEVJUAFJSXlZZBglWUVcCAgdESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=7364aba5f3dee28d2e44945e07923648
104.26.2.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=7364aba5f3dee28d2e44945e07923648
IP 104.26.2.88:0
GET /checkout/build/mix/assets/css/app.css?id=7364aba5f3dee28d2e44945e07923648 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:03 GMT
content-type: text/css
x-amz-id-2: Qj7EbVaOzs8MNzFSFYu+F7Fau6uHOEiS63He5IgdSms8LkdReTd0C8kmdRiJVRtdn4WnzUqXD+w=
x-amz-request-id: E1MMEP58KEDKHX8J
last-modified: Fri, 16 Sep 2022 12:44:10 GMT
x-amz-version-id: tDzvH5UD3dj0x1ZKqkC6HAxsINUfeKtz
etag: W/"7364aba5f3dee28d2e44945e07923648"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r1k71pkdblGuaRThHFGzje4ouglewQBJ1cF42KCQK%2F7g2uuobQ9fxMUUDt7LIVifTNnC7slQHp1Dzu9v0eclBnQU5caYG6%2BK4n2m0TejXghMEtdj59zbcddZLHubpUEF6sBErrF%2FRCo2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750967b57a66b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.mudeseulook.com/e/t
170.82.173.30200 OK 0 B URL HTTP/2 seguro.mudeseulook.com/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImNhMDZiYTA1MGRkNWI1OTgiLCJ0ciI6IjQwN2VlOTg2ZmZkYWNiMTAwYzQ0MzJiYjQwMzI4YjRlIiwidGkiOjE2NjQxNjgxMDIzMTJ9fQ==
traceparent: 00-407ee986ffdacb100c4432bb40328b4e-ca06ba050dd5b598-01
tracestate: 2935249@nr=0-1-2935249-1134170823-ca06ba050dd5b598----1664168102312
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 361
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/cart?utm_source=sms&utm_campaign=carrinho+abandonado+1&forcecheckout=1&skiptocheckout=1&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
Cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlA0d3Q1YncyUjZCU2dJYUhCRWhyTkE9PSIsInZhbHVlIjoiNEdaVVlpRTJKU3NOeW9DZ2ZHYUNlOG5SUVlKYWRWNTdLSGFBSzlUQ2Zmd2g5VEord3VmUHMzaU14TFBqVU9KaWtuWTQ1TUFYbTc5N1wvakpKSUtrenVRPT0iLCJtYWMiOiI0NTc0NzJkMTIzMjBhMzJhZGQxZTBiYTFmODNmMjFkOTYwNjljNGJjYjI1MGJmOTRjNWU5YzE4ZDY0NjIwMzBkIn0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Iklzd01FZlhuUVQ3cTBaRENUeG5hTFE9PSIsInZhbHVlIjoiZnFKbW9vT0J3aWQzSjBJbHFybENTVmJYdUdkR3I4Z2wxU0ZHbFB0WjhXSldtMnp1VHdMVmM5alBLb2lcL0RTaFdwREZZd2V3VVNKbWhvZzVWRkoyMkJ3PT0iLCJtYWMiOiI5ZDAxOTZlZmMxNWZiMzVkNWU2ODJkM2MxY2VkZjkzNDg4NjBlNzI5ZjVlZGVkMWYzNWYyZTY1OGIxOGNiYTg3In0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATAlQAQgGHh5UFUNQAAdUUFcBWVRTDQUEVlAHFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 04:55:03 GMT
date: Mon, 26 Sep 2022 04:55:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
seguro.mudeseulook.com/api/v1/pixels/events
170.82.173.30200 OK 0 B URL HTTP/2 seguro.mudeseulook.com/api/v1/pixels/events
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.mudeseulook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjFhZDRlODNhNDU0ZTcwYjUiLCJ0ciI6IjE2MTUyY2ZiNDIyZDFiOWU5YTBhZTk5ZThlNTYxODQ1IiwidGkiOjE2NjQxNjgxMDIzMDd9fQ==
traceparent: 00-16152cfb422d1b9e9a0ae99e8e561845-1ad4e83a454e70b5-01
tracestate: 2935249@nr=0-1-2935249-1134170823-1ad4e83a454e70b5----1664168102307
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 397
Origin: https://seguro.mudeseulook.com
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/cart?utm_source=sms&utm_campaign=carrinho+abandonado+1&forcecheckout=1&skiptocheckout=1&customertoken=b814f7d0-3c5c-11ed-a1b2-1b81bdf70450&promocode=cupom2812
Cookie: XSRF-TOKEN=eyJpdiI6ImRWNXNjU1IrYzVVNUZzNk5Zcmo4YlE9PSIsInZhbHVlIjoic1wvOXpIRHRoMG9jeVZMSFBucDVzbkcwZDlGbFVhT3Bvd21pYkF5bkhWdElxZFZPRVVjYloyREFTbWsxUmFmVGxDVE9SQXJ5eG9oelRSWjNPTU9cL2RoZz09IiwibWFjIjoiNGFhOGMwN2YyMmZlZjYyNzliNzkwN2Q1Zjc2ZDIzY2MyYTNkZmRmOGM3YzRkMGFiMGY4OGI4MTY3N2IyNTI2MiJ9; bubbstore_checkout=eyJpdiI6IlIzZENCWjNrYUJNV1lFRTZOSndXenc9PSIsInZhbHVlIjoiVm5HNTBaa1NiOGtDSHpibjJqVHNpNlFWcWFnY2hmenNZMWlGRWlVVVkyRkZPT1NOYmdxNVN0SEJyS21oMSs4V2ZvR3lETUptVHd1WXZDbm9XTVozc0E9PSIsIm1hYyI6IjM2ZjEzODMzNTU2YzM5YTA2ZDgwNjJjNjljYzE5NWZmNTdlN2NiNmNmZGI3ZTc3ZWJhYmRkM2ExMzRlMWNjODEifQ%3D%3D; mudeseulook_cart=eyJpdiI6IlV6K21WMGw2YXJWQ01nRWtUTXVZUEE9PSIsInZhbHVlIjoiZmpoaVJLODZwZ2NQM2VTRzU3eDdHU0tyazJVOFhsY3FLd05yU0FtelArTUYzXC9scnQ0N2ZURFFWaVFqSXh3dVprWEJlNGZsQ1Z0UGtzNnY3T0dUUElBPT0iLCJtYWMiOiJlMTk2YThiNGY3YmFlYWVlYmI5YTM5YjlhMzlkMThhZTJiOTVlYjRmOTQ0NDdjNmY2Y2Y0MDdjNjc1YTIyMDA0In0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:04 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlhCcnVpS2xMRnZ3Tlp1aWl6NEN0V1E9PSIsInZhbHVlIjoic2dubWxmUjAzaTVcL0p0Q2U3eFwvZmx1ZWs4cmNPSTlZRWlCd0MxOVM3QlwvaDJ5NnJ1NzcrakpkbTFpeWNqRjZPaHI0dzBZWlpGbGZFZGd0NzBWYVpTdUE9PSIsIm1hYyI6ImViYzI3MzkzMjZiNjkwZDRhYzEwNTBjNTkxYjQ0MWI3MjNhMTcxYmYwZjk5OWUxNTkzMTVjNmRhYWY1YjIzNzkifQ%3D%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkZ6ZGdWOUpYYUFUU2M4NzdIZHNPcmc9PSIsInZhbHVlIjoibjZCVElVbUVsNWFFbWdoVkxQNFdlNXdCMm1vOGJMNHBIcFIxbWxYZWlHWGtnMzYxR1R5T2NvUTBcL2l4U2pHaVp5NkkzNDBrTTdvVkdZcXhBY0Z5QmdnPT0iLCJtYWMiOiIzYzYxZWRkYjgyZDJhZjIwZWUwMTRmZGVhYTNmNDhlMWU1M2ZmNjk1YjBjYWJjM2E4MmMzYjJhNWU3ZGZhMTg1In0%3D; expires=Mon, 26-Sep-2022 07:55:04 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=3fe06e3b4774e1e22f744c5b2a2ca9cd
104.26.2.88200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=3fe06e3b4774e1e22f744c5b2a2ca9cd
IP 104.26.2.88:0
GET /checkout/build/mix/assets/js/app.js?id=3fe06e3b4774e1e22f744c5b2a2ca9cd HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.mudeseulook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:55:03 GMT
content-type: application/javascript
x-amz-id-2: 49aS28FBIXTkl4bKE9+ha7pacAkt3+NPapOS5vMqPTKi5sJ2v0MBnHg6Lcnqo/fcOUnIIah3z3c=
x-amz-request-id: 5RVP5GJAWC4BBHRT
last-modified: Fri, 16 Sep 2022 12:44:10 GMT
x-amz-version-id: RKgRxk_0tWs0Zu8xEYsEG4VN1R862O0o
etag: W/"20baf997b7e31a089f0a9544550cf45a"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eGo29p88y4AOuK7GtEtO4q42L1vcKHzGCZT7%2BAbE3hGv%2F4z90MbGHg4PyTdLGJLPElBb7hQM9L%2Ba06hX51agfTb90jD7WsEIorTnszoX2yeqA4fYLBkQek%2Bt38X7Oa28HiD327yDoE1j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750967b57a64b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2