| track.apmiumsercicio.club/868480fc-0f75-4712-af52-2de2dbbd57b5/2?zoneid=6973322&cost=0.001000&visitor_id=807262286614900736 | 18.193.209.105 | 302 Found | 0 B |
URL User Request GET HTTP/2track.apmiumsercicio.club/868480fc-0f75-4712-af52-2de2dbbd57b5/2?zoneid=6973322&cost=0.001000&visitor_id=807262286614900736 IP18.193.209.105:443
CertificateIssuerLet's Encrypt Subjecttrack.apmiumsercicio.club FingerprintA4:0B:04:1D:DC:63:22:C1:9C:FE:2A:B1:54:EA:3C:AB:DB:9B:4F:12 ValidityTue, 05 Mar 2024 16:03:22 GMT - Mon, 03 Jun 2024 16:03:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /868480fc-0f75-4712-af52-2de2dbbd57b5/2?zoneid=6973322&cost=0.001000&visitor_id=807262286614900736 HTTP/1.1
Host: track.apmiumsercicio.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 22:57:34 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://lightdigital.g2afse.com/click?pid=249&offer_id=6885&sub1=wfnj92covkofjmr03iocen76
pragma: no-cache
set-cookie: 868480fc-0f75-4712-af52-2de2dbbd57b5-v4=zzroqKbgkUge4IQ5bFsHv5uLfAwFli6ltehV3pc1rs8; Max-Age=86400; Expires=Fri, 26-Apr-2024 22:57:34 GMT; Domain=track.apmiumsercicio.club; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=OmzCJs42KNUUOUorW4WtrDM%2FK2n1n6AXDjgSc6Z7KZmIZ%2F3ikAWyLXiX8p%2BEcewWhA9iIXThLEVa45j2SGJUjdFB4RV00U2RmxVTHDEZaDN8fg3VUss%2B3kH1uu9zDbV2ITXubBLXLPN7hL1ppB6ezA%3D%3D; Max-Age=31536000; Expires=Fri, 25-Apr-2025 22:57:34 GMT; Domain=track.apmiumsercicio.club; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
|
|
| lightdigital.g2afse.com/click?pid=249&offer_id=6885&sub1=wfnj92covkofjmr03iocen76 | 34.90.14.205 | 302 Found | 0 B |
URL User Request GET HTTP/2lightdigital.g2afse.com/click?pid=249&offer_id=6885&sub1=wfnj92covkofjmr03iocen76 IP34.90.14.205:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerDigiCert Inc Subject*.g2afse.com Fingerprint3A:C2:12:6C:59:0C:A9:12:C1:47:C8:05:B6:0F:75:69:7A:76:D6:85 ValidityMon, 28 Aug 2023 00:00:00 GMT - Wed, 04 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=249&offer_id=6885&sub1=wfnj92covkofjmr03iocen76 HTTP/1.1
Host: lightdigital.g2afse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 25 Apr 2024 22:57:34 GMT
content-length: 0
location: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=662adfde457987000159d84e; expires=Fri, 25 Apr 2025 22:57:34 GMT; secure; SameSite=None
afoffers={"6885":1714085854}; expires=Fri, 25 Apr 2025 22:57:34 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 | 91.241.94.8 | 200 OK | 45 kB |
URL User Request GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
File typeHTML document, ASCII text, with very long lines (61556) Hashb034dc5872a600a41418bb37f996bcaa 36853a090eb2a83824024e34cd5b9a5ac4c84b2e e85977b8836fec4868c7452b8b90daf78eaf39f91b0f2c858f2ffd290f414efb
NIDS | Severity | Alert | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
GET /OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:57:34 GMT
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=0; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 547549552
Age: 0
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Set-Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; expires=Fri, 26 Apr 2024 04:57:35 GMT; Max-Age=21600; path=/; httponly; samesite=lax
ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; expires=Sun, 23 Apr 2034 22:57:34 GMT; Max-Age=315359999; path=/; httponly; samesite=lax
rd=deleted; expires=Wed, 26 Apr 2023 22:57:34 GMT; Max-Age=0; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; expires=Thu, 25 Apr 2024 23:27:34 GMT; Max-Age=1799; path=/; httponly; samesite=lax
userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; expires=Sun, 23 Apr 2034 22:57:34 GMT; Max-Age=315359999; path=/; httponly; samesite=lax
TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89; Path=/; Domain=.www.timpromos.com.br
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 | 91.241.94.8 | 200 OK | 3.1 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typeASCII text, with CRLF, LF line terminators Hash5c68dc7f869919ea52fff1ca7b59900d 54f044e2490c433b166e822f0c794d32ddafc638 02403d4dc531f5ed01df67faa19ec3c8b96a290b8b916668684e6357ad7365a0
GET /OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:57:35 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:37 GMT
ETag: "56be-600325524041f-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3052
Content-Type: text/css
X-Varnish: 548937654
Age: 0
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png | 91.241.94.8 | 200 OK | 213 B |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typePNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced Hashd249b874e72ea9acce9f630517b48c4e 78a06a4b69bbd59d7fa9c70723640c775caf37cc 1861c75e1a0c132e357bccf763069d785f5954fe959d784abb1773f93b87bd28
GET /OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:20:14 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:32 GMT
ETag: "d5-6003254e5e153"
Content-Length: 213
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:20:14 GMT
Content-Type: image/png
X-Varnish: 550989995 473120112
Age: 1323441
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png | 91.241.94.8 | 200 OK | 9.7 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typePNG image data, 111 x 70, 8-bit/color RGBA, non-interlaced Hash6da9ebdc999edd3ba3c5e2cde0b01d61 54078e9fa6d1e26ce41028f5057bcc80f031f41e 141c0d48f06736237ded509d4df01a20418e34e54fc5ae4351090ed9dc1570a8
GET /OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:22:09 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "2614-5e788bab358b1"
Content-Length: 9748
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:22:09 GMT
Content-Type: image/png
X-Varnish: 550989996 474925684
Age: 1323325
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW | 91.241.94.8 | 200 | 51 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:34 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg | 91.241.94.8 | 200 OK | 46 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 320x480, components 3 Hash1624b5dc8b5e63caf616de322bea25b1 627bea45379aab59eda65ba135b9b2f55929d109 e06c79c5477b4060b11e096da1e520d4ff8863525184bfa60a414b5a0490d63d
GET /OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:36:12 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "b454-5e788bab452b1"
Content-Length: 46164
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:36:12 GMT
Content-Type: image/jpeg
X-Varnish: 547043574 474757546
Age: 1322482
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 | 142.250.74.168 | 200 OK | 90 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2212) Hash9ceafc4dace4e9c524c8a67463874b1b 3482932d3986a1585db6e409f3a298725cbe3321 ac95259cca2c5cf790e1326bbad7e374e533e1a247a3c63f95709a1ae2304446
GET /gtm.js?id=GTM-MBV8MJ7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:35 GMT
expires: Thu, 25 Apr 2024 22:57:35 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 21:56:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90331
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW | 91.220.208.18 | 200 | 51 B |
URL GET HTTP/1.1analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW IP91.220.208.18:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /web/v1/content/view/Confirmation/br_tim/AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW HTTP/1.1
Host: analytics-br-tim.securewebfraud.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:35 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW | 91.241.94.8 | 200 | 0 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kmZmIwwC67ygAoDEyWNP5-4FLAB51R7SBwmvhO6HvOk7hGD8YKsEHgIseVfQjhW HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249
Cookie: ng_session=eyJpdiI6IkI3emMxZGliTzVWeGw3YzFwd2tXUXc9PSIsInZhbHVlIjoiSmxGVHIvb1ZObjd6em9OSStZem5rMzJ6OE9iQ0IyTU1vWkxKQzNYcXpWMGtXR3N4OVFHY09uT2svWTUrNXJuQTV1RlE0NzVwV05XNFppSGRRVDkrWE01SWR5SDdDOWJ2YVVxcDc2dnNFT2V1OFRBTnlidWZBN3VMR2h1dUlGbHgiLCJtYWMiOiJlNWEzYmNmYzU3MWQ1ZjhhMmZmZmQ5ZjdmYzQxMzkyNmVkMmFmN2QzZDZjNWZkMjAwNjYwMjA5NDI0NWNhZjdkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImQ4NWFKOEhpbWdzQnlDUEpzT2xic1E9PSIsInZhbHVlIjoib0k4RGJqWnZ5cVg4SWNLNExTWk1hb2NYbWc3d0VjM2l4U0VTdkRlUTZyQllyR09NdUg5K3QwczJlekprYjRmTXFNWUdSY2JPaGM3YzFIMWQxQXZkd2ZCRTJ0RXBsOWZqRWJFc3JFeFA0NUE9IiwibWFjIjoiNTBkYjQyNjNhNzI5MzBhZjI4Yjc3NjQyZTE1NjFlOWFiMGY1YTc2MzNiNWMyNTg0YWI1OTNiNzUxNTc5ZDE0NyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Ik85VUxUblpUL0l5WHFzMjRqSFdrd2c9PSIsInZhbHVlIjoiTktJTkVOTlpBYXN5cWRCZnJpOU12QjB5ek15ZjM0YVRlN0lsNGhPN1kvLzRhNnZCNHBsdEg2ZGVuMm1RTXl0WXhFMmkwOUJ3WkxjeWp1ZWx0cjhPMldLRUQ1WC9xTGllNG1kUDZIWWVqY2s9IiwibWFjIjoiYTUyOTExZmU2NzcwOGUzZGRlYzJjMmY3M2ZiMzY5YzI5NDk3N2IyMDc4YTA5YTA2MjBiNWY3MGRmNWFlNTk1NiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjdGZmVSVmJ6V0xqUTVpdEtiV2VOUHc9PSIsInZhbHVlIjoiYTRkTVVncjVZbjM4SVdMSWNndStHQXNpZXd2UlJEWG93VVlndG1vbmJaTXF0ajg4RndEay9ZUEtVWXQxd2RpclFFVzAxS1dMR2pKcE1pclFjNy9iQ1YwN21yc2toSU5sN0IyZFlBcHg5Vm89IiwibWFjIjoiNThmOWZmN2U1NDU4N2EwNzJhNmExNGIyMGRiZGI4NTY3ZDAxNjZjNzE5NGUyMjY3NGVmZTVjM2Y5NTFhMDczMiIsInRhZyI6IiJ9; TS01c950bd=01b02e3e8968cfeed7fe752b5e7274af71d28ffb3130f3a70c6a363ba783ac61551c2e7decb710e5f32c6bff948ca7ef584f8cab89
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:35 GMT
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Keep-Alive: timeout=5, max=998
Connection: Keep-Alive
Access-Control-Allow-Origin: *
|
|
| www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash1d210c9cf14f390c4b3c7bad144aabd8 1c62d3df7da5906c7658e95ee0738ee1a0148270 a126549725f65d4300b6e86359f9cdac110c5e08ab59c89e33682984200c4caa
GET /gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:36 GMT
expires: Thu, 25 Apr 2024 22:57:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95918
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashf688cc521801cf3eee25d0ebc0c8c1e5 1492586d446d239efb15770eb4a08aad1c0bc30e ea1cc79d2752f98a424cfda1ba1b02a547452714ae6824fcd41d29a4a73bea93
GET /gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:36 GMT
expires: Thu, 25 Apr 2024 22:57:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95974
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=959341389.1714085856>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=387126580 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=959341389.1714085856>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=387126580 IP142.250.74.163:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=959341389.1714085856>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=387126580 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 22:57:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085856&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1742 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085856&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1742 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085856&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1742 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:57:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=page_view&tfd=1769 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=page_view&tfd=1769 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=page_view&tfd=1769 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:57:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6770 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6770 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085855616&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=959341389.1714085856&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085856&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfde457987000159d84e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6770 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:57:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 4.7 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfde457987000159d84e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (4786), with no line terminators Hash2b48c5974579d95fbac9441356a0f0a1 fc74b8d08c416ff32e8e3b7a74fa269fee4dfd9e 039357c344f207706b3f7e4509f6557f875da570d44eb8ad3eb6564a9c454aa0
GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:57:35 GMT
date: Thu, 25 Apr 2024 22:57:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|