| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 | 91.241.94.8 | 302 Moved Temporarily | 0 B |
URL User Request GET HTTP/1.0www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 IP91.241.94.8:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
CertificateIssuerDigiCert Inc Subjecttimpromos.com.br FingerprintC6:1B:95:BF:E3:92:F1:30:79:E0:4C:3E:4E:96:E1:E1:F1:98:FE:88 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
GET /OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.0 302 Moved Temporarily
Location: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Connection: Keep-Alive
Content-Length: 0
Set-Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; Path=/; Domain=.www.timpromos.com.br
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 | 91.241.94.8 | 302 Moved Temporarily | 46 kB |
URL User Request GET HTTP/1.0www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 IP91.241.94.8:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
CertificateIssuerDigiCert Inc Subjecttimpromos.com.br FingerprintC6:1B:95:BF:E3:92:F1:30:79:E0:4C:3E:4E:96:E1:E1:F1:98:FE:88 ValidityMon, 07 Aug 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (61046) Hash7928a260366bc522ca32fef6f84493f8 c619dde9822a722ba3f2c8b58ed325eea5a068d9 7235f70e457a27bdfc932aecb06c1cf5f2572a080326545707de1e69338ab6a5
NIDS | Severity | Alert | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2 | suricata | low | ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3 |
GET /OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:57:57 GMT
Cache-Control: no-cache, private
Strict-Transport-Security: max-age=0; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 547043615
Age: 0
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Set-Cookie: ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; expires=Fri, 26 Apr 2024 04:57:57 GMT; Max-Age=21600; path=/; httponly; samesite=lax
ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; expires=Sun, 23 Apr 2034 22:57:57 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Wed, 26 Apr 2023 22:57:56 GMT; Max-Age=0; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; expires=Thu, 25 Apr 2024 23:27:57 GMT; Max-Age=1800; path=/; httponly; samesite=lax
userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9; expires=Sun, 23 Apr 2034 22:57:57 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; Path=/; Domain=.www.timpromos.com.br
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 | 91.241.94.8 | 200 OK | 3.1 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typeASCII text, with CRLF, LF line terminators Hash5c68dc7f869919ea52fff1ca7b59900d 54f044e2490c433b166e822f0c794d32ddafc638 02403d4dc531f5ed01df67faa19ec3c8b96a290b8b916668684e6357ad7365a0
GET /OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52 HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 22:57:35 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:37 GMT
ETag: "56be-600325524041f-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3052
Content-Type: text/css
X-Varnish: 548232666 548937655
Age: 22
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png | 91.241.94.8 | 200 OK | 213 B |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typePNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced Hashd249b874e72ea9acce9f630517b48c4e 78a06a4b69bbd59d7fa9c70723640c775caf37cc 1861c75e1a0c132e357bccf763069d785f5954fe959d784abb1773f93b87bd28
GET /OTA-BRTIM-BEMOBKIDS/assets/wr-images/close-wap.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:17:43 GMT
Last-Modified: Tue, 11 Jul 2023 09:00:32 GMT
ETag: "d5-6003254e5e153"
Content-Length: 213
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:17:43 GMT
Content-Type: image/png
X-Varnish: 549197488 475595929
Age: 1323614
Via: 1.1 brtim1-varnish-5d85b7f48-6dnqh (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w | 91.241.94.8 | 200 | 51 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /security-platform-web/web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:57 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w | 91.220.208.18 | 200 | 51 B |
URL GET HTTP/1.1analytics-br-tim.securewebfraud.io/web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w IP91.220.208.18:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typeGIF image data, version 89a, 1 x 1 Hash49cdc214849d5ced018d230677b14076 0e75513436e6b01963759f6a88282445ff2e5b3a 7455bacb03f7ef04d79010638db14d8434cf7a349914c2ee99eb5d4220338675
GET /web/v1/content/view/Confirmation/br_tim/AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w HTTP/1.1
Host: analytics-br-tim.securewebfraud.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:57 GMT
Cache-Control: no-store, private
Content-Disposition: attachment; filename="pixel"
Pragma: no-cache
Accept-Ranges: bytes
Content-Type: image/gif
Content-Length: 51
Keep-Alive: timeout=2, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png | 91.241.94.8 | 200 OK | 9.7 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typePNG image data, 111 x 70, 8-bit/color RGBA, non-interlaced Hash6da9ebdc999edd3ba3c5e2cde0b01d61 54078e9fa6d1e26ce41028f5057bcc80f031f41e 141c0d48f06736237ded509d4df01a20418e34e54fc5ae4351090ed9dc1570a8
GET /OTA-BRTIM-BEMOBKIDS/assets/images/Bemobi/OTA-timgameskids1-logoHeader.png HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:22:09 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "2614-5e788bab358b1"
Content-Length: 9748
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:22:09 GMT
Content-Type: image/png
X-Varnish: 553242746 474925684
Age: 1323348
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg | 91.241.94.8 | 200 OK | 46 kB |
URL GET HTTP/1.1www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 320x480, components 3 Hash1624b5dc8b5e63caf616de322bea25b1 627bea45379aab59eda65ba135b9b2f55929d109 e06c79c5477b4060b11e096da1e520d4ff8863525184bfa60a414b5a0490d63d
GET /OTA-BRTIM-BEMOBKIDS/assets/assets/images/Bemobi/OTA-timgameskids1-bg.jpg HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/assets/OTA-BRTIM-BEMOBKIDS-timgameskids1-pt-doi-web.css?ver=52
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 16:36:41 GMT
Last-Modified: Wed, 31 Aug 2022 12:35:17 GMT
ETag: "b454-5e788bab452b1"
Content-Length: 46164
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 16:36:41 GMT
Content-Type: image/jpeg
X-Varnish: 553242748 473125085
Age: 1318876
Via: 1.1 brtim1-varnish-5d85b7f48-lwm6b (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=998
Connection: Keep-Alive
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 91 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash46ad7e77fbc25f5058442206c30f3e4c f5cb6762b2d636383fd5898bb3369c895bb77be7 eaf7b2d327f27e92268a7465466fac7b0481f684a756b93beaa3c5e15d42804e
GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 22:57:58 GMT
date: Thu, 25 Apr 2024 22:57:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w | 91.241.94.8 | 200 | 0 B |
URL GET HTTP/1.1www.timpromos.com.br/security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w IP91.241.94.8:80 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /security-platform-web/api/v1/beacon/retrieve?secureSessionId=AQ4z3kkOg4jACifzGy29XnFgXrWN8VBL_A9StAFEYk042MSxESbeMiki3KXL8ANcSb2w HTTP/1.1
Host: www.timpromos.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249
Cookie: TS01c950bd=01b02e3e89a652dfcd000cf17264581a1ddd56f5fa3542ec88bbd0eed7a57c4f7de0e739fd3faaa9b952902a080b1f09fba9f6d0be; ng_session=eyJpdiI6InFSVkJxZG5JUUFUZUh0WnJQKzFPckE9PSIsInZhbHVlIjoiN1JFU3Z4QWcvUm9LQy9VU0lWLzFKdlJDOFNFWVBBRVg4ZGZQTHQxTXd4am9NZEozSS9jbThPWmM2eXBZZitEVkR2bmNKbGQ2enJ2OWNPWDhVdTBJenJyQUM2dzA2ZG9uc3RkT2FwSnR5YmdsU0RWUi96OWNEejZtaFduWlN3clkiLCJtYWMiOiIwYTYyMjRiODM4ZTBiZTQ0NTA1NTg2MDgwMDkyNjRiYWE5ODM0ZTQzMGVjNmVmZWY5YmQyNmExYzliMmRhMTM3IiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6IkkvY2k2S0RsWDNUbUhvV2tPRmN4Tmc9PSIsInZhbHVlIjoiNS9GbXdHbyt4azR0ZHQvSTRDemxWbkFGUm1CZ0x3eVJ5aUkvWTVFUkxzdzZvOWxjem0wODJUdE9NVzZzMUxVWnhFbDFtaDNQTEczZVczdVo5eXdHN2VVb1FmZ3hVVWFZRWRWTzF6RmtlWG89IiwibWFjIjoiMjhkNjI2NDk4MjBkNDY0MjdkMmVhOWZlOTg2OTUxN2U3ZDgyZTIwMzY5MzE0MzZhZGE2NTI0NGY5MzE3NDYxMyIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InRZZ3Zpc0h2bDE2KzRXelkzVDNQblE9PSIsInZhbHVlIjoiV2xOUk9CZGxuTkVyOElNdGd1TlJBd0hkUmtzbnM2SlZlSFdJNFdJejllYUI2b3daTnhpYTZnV05CdktxdDZtS2FLVUQ0OHNwQWNvNStndGVHQkZiQytPT2FKb1l6STQ4UGh0bFdqdzJUOGc9IiwibWFjIjoiYzg0NzgxY2UxMzI1NjQzMzYyZmVjNDBkYzYxYTEwYTg5Y2FhMzBhOTZjOTVhOTQxY2NlZjExNjJhOGFhYThmOCIsInRhZyI6IiJ9; userPermID=eyJpdiI6IkpqOVZpL2lueGpwWWU3c0tJVUVZOFE9PSIsInZhbHVlIjoiSG5aVmZkSEoxTElxMTBoc2tkaEY2c1JoSXp3VWsxZGNSYmhYTlZ6NHRYckx0RCtQUEo4TGdEMHZzRlNSc2JjWXhwYmlLL3BTUXQwNXh5OUROc2N3Z0VGNEVqdDJUVWhob2UrcXdYdUVkbkk9IiwibWFjIjoiNWY5MTQxODBhZjk5OWViYjk2OGY5OGZmMmVjNjM3ZWU0Yjg3ZmU1OTQ3ZTMwM2IzMGU1MmQ5NzI0ZTI3M2MyNyIsInRhZyI6IiJ9
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 25 Apr 2024 22:57:57 GMT
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
Access-Control-Allow-Origin: *
|
|
| www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashf721f1594b7004e665a07ec8c1175f6b b19d9762a34de7ec690fa1f75a577186f3159be8 38b15dfb17807d3e956a01e683a4745fd636a2c1ae0b3bbcfa6974b6096c7ade
GET /gtag/destination?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:58 GMT
expires: Thu, 25 Apr 2024 22:57:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96044
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash452278ecdf2f22ac73090261c762f569 baf1bb7c3f771d56c71062543992d50edc40f6b8 818b5ff7102da8ffe47c6dc89c0f547bd6eb42f8cc6945f22a7365297c5fc338
GET /gtag/js?id=G-9LLK8PEDTW&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:58 GMT
expires: Thu, 25 Apr 2024 22:57:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95974
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=709435898.1714085879>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1524947556 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=709435898.1714085879>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1524947556 IP142.250.74.163:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9LLK8PEDTW&cid=709435898.1714085879>m=45je44o0v9100206336z8856739148za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1524947556 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 22:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=page_view&tfd=1451 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=page_view&tfd=1451 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=page_view&tfd=1451 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:57:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085878&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1430 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085878&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1430 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336z8856739148za200&_p=1714085878185&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714085878&sct=1&seg=0&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=OTA_TGames%20Kids_Wifi_Users&_fv=1&_nsi=1&_ss=1&tfd=1430 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:57:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6452 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6452 IP216.239.34.36:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9LLK8PEDTW>m=45je44o0v9100206336za200&_p=1714085878185&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=709435898.1714085879&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=3&sid=1714085878&sct=1&seg=1&dl=http%3A%2F%2Fwww.timpromos.com.br%2FOTA-BRTIM-BEMOBKIDS%2Ftimgameskids1-pt-doi-web%3FHEKeyword%3DOTA_TGAMESKIDS_LDG_1%26utm_source%3Dlightdigital%26utm_medium%3Dcpa%26utm_content%3Dtimgameskids1%26utm_campaign%3DOTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image%26lgd_id%3D662adfe21de1700001f6d64e%26lgd_pub%3D249&dt=&en=scroll&epn.percent_scrolled=90&tfd=6452 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.timpromos.com.br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: http://www.timpromos.com.br
date: Thu, 25 Apr 2024 22:58:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 | 142.250.74.168 | 200 OK | 254 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MBV8MJ7 IP142.250.74.168:443
Requested byhttp://www.timpromos.com.br/OTA-BRTIM-BEMOBKIDS/timgameskids1-pt-doi-web?HEKeyword=OTA_TGAMESKIDS_LDG_1&utm_source=lightdigital&utm_medium=cpa&utm_content=timgameskids1&utm_campaign=OTA_TGAMESKIDS_LDG_1-lightdigital-web-cpa-timgameskids1-image&lgd_id=662adfe21de1700001f6d64e&lgd_pub=249 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (2212) Size254 kB (253806 bytes) Hashd45f82344a54d2b59286746d71c4c8c5 434aab0e1ed2bd5d2ec80d44fadda3cde558df17 848e51a9d813dad1af83f24861233abb11226331b9f432cd065c9a6eed39829f
GET /gtm.js?id=GTM-MBV8MJ7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.timpromos.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 22:57:58 GMT
expires: Thu, 25 Apr 2024 22:57:58 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 21:56:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90328
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|