linkcurto.co/rsjjh10ajzko8
301 Moved Permanently 0 B URL HTTP/1.1 linkcurto.co/rsjjh10ajzko8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsjjh10ajzko8 HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 01:55:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 02:55:12 GMT
Location: https://linkcurto.co/rsjjh10ajzko8
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SiQ%2Fn4haX24bqxiXW1AiDucD%2BA6%2FOdpzn%2FST1PEPlVm%2FyhaiHFgDfyJV2pBPHRjFOQc7AJegKtXBO6DJ6JUWY7bYm0YwwfgYAx8saS1bzTyWH0FiXo5lXfzsJQc4tFc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f4da48ca0b517-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13344
Expires: Thu, 02 Feb 2023 05:37:36 GMT
Date: Thu, 02 Feb 2023 01:55:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12278
Expires: Thu, 02 Feb 2023 05:19:50 GMT
Date: Thu, 02 Feb 2023 01:55:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 01:43:27 GMT
content-type: application/json
age: 705
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Thu, 02 Feb 2023 03:59:47 GMT
Date: Thu, 02 Feb 2023 01:55:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PjutDrR00ks39sC8fVckituNvAAjSy1FitB6EIa2zrMC6faRyzMgAASMuu3fP7KXaifDu74RyMY=
x-amz-request-id: VKRVN8J0MDWG6Z2W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 01:22:53 GMT
age: 1940
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 01:55:13 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 156b6a928bca01d2a64e355cfd588769
f3c3b044aa02b20aa7433f74362c1eb80f6a7e87
b08eeda3780d38a86f1371aa6931a53504d279154177eba85e741a35e868dd41
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:13 GMT
Server: ECS (amb/6BA4)
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 01:49:05 GMT
age: 368
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2200
Expires: Thu, 02 Feb 2023 02:31:53 GMT
Date: Thu, 02 Feb 2023 01:55:13 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash 156b6a928bca01d2a64e355cfd588769
f3c3b044aa02b20aa7433f74362c1eb80f6a7e87
b08eeda3780d38a86f1371aa6931a53504d279154177eba85e741a35e868dd41
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:13 GMT
Last-Modified: Thu, 02 Feb 2023 01:55:13 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ClDqje6/8OzINKXL4oafuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a8XoyHEyj8XolctRd5Z0sDlj30E=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 87ba666685951ffac8b8f2e5da142f18
3bd037be39a3f8944f39a0f37b892c36ba6a81ce
4fde48b70727668ccf0984358005f9ed40c0f3391a1a89d28b9e3342ed2361b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FDE48B70727668CCF0984358005F9ED40C0F3391A1A89D28B9E3342ED2361B6"
Last-Modified: Mon, 30 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 02 Feb 2023 07:55:14 GMT
Date: Thu, 02 Feb 2023 01:55:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2998
Expires: Thu, 02 Feb 2023 02:45:13 GMT
Date: Thu, 02 Feb 2023 01:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2998
Expires: Thu, 02 Feb 2023 02:45:13 GMT
Date: Thu, 02 Feb 2023 01:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2998
Expires: Thu, 02 Feb 2023 02:45:13 GMT
Date: Thu, 02 Feb 2023 01:55:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b91a1323efe4b01a2d1a2e8485117934
43d04a554f6ef512e7b21ac09287efc0e4e5efee
393e3ab81aee9fda022d06c25789be66e56aaf56f81b0514ab5dfec445087bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10807
x-amzn-requestid: 3c6771b8-3ae0-4300-9d84-9311c15389ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGh3oAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-27479faf4518900c03b84144;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oZ6etg6l7SjzCMTg-7DhIeEXMmempp9_kMb3ITzUqbrXKz2wz0qJ0w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:02:22 GMT
age: 67973
etag: "43d04a554f6ef512e7b21ac09287efc0e4e5efee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 12992
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 84317
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6790e3bf4d10b1ffba32a22dc588c640
cdae35517dfea800134393a1095f44462bc428a5
4f4132588ee7337fff24da64b89e43b277c4ef0a2646acfba37aea08fc0f4256
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9416
x-amzn-requestid: acc48967-4cc1-4bfd-bc33-7bcefd8e6547
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGjqIAMFa2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-1d1cd4de0a30760e792d32e5;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tO6GOuwj9So6Itm9ug-EQgF5iJ3NPidhS8OY4LpBvq0XftWTqGcOHA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:16 GMT
age: 14279
etag: "cdae35517dfea800134393a1095f44462bc428a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 14929
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 12604
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4882
Expires: Thu, 02 Feb 2023 03:16:39 GMT
Date: Thu, 02 Feb 2023 01:55:17 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP
File type ASCII text, with very long lines (884), with no line terminators
Hash 9209866a4051c1a5a169b9f6ca2d5d69
c1561a92f66c11e4fef89fd3fd359bbda76a304a
f0a5a0f1ce8b494947bf336db830d604be27826ce7961f5118b352d9718ff188
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 01:55:17 GMT
date: Thu, 02 Feb 2023 01:55:17 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
IP
File type ASCII text, with very long lines (1759)
Hash 2a6de3e75ac72b60dd589d2cdfffd883
a69af352efc39e926cb2af5c75413daab0df61ee
e205cc8ee424d4bd68186ce2b2f05ec7c7cd184aa309b2406222d65e08c08092
GET /optimize.js?id=OPT-N6QHJQM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 01:55:17 GMT
expires: Thu, 02 Feb 2023 01:55:17 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 00:50:58 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44305
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0615/6189/7150/products/MIZUNO5_1200X1200_12e78443-61c8-4dab-ba9f-02d87fe97a91_250x250.png
200 OK 16 kB URL HTTP/2 cdn.shopify.com/s/files/1/0615/6189/7150/products/MIZUNO5_1200X1200_12e78443-61c8-4dab-ba9f-02d87fe97a91_250x250.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash 00ce86be5ed6612972b49e0d341c6b1c
45f51178d1572c1ecbf4cdf3250dfd88395c317d
9931508dcc6379b639399402b09d1e6d3c05c749674076a2f42a9731d3b1024b
GET /s/files/1/0615/6189/7150/products/MIZUNO5_1200X1200_12e78443-61c8-4dab-ba9f-02d87fe97a91_250x250.png HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: image/avif
content-length: 16114
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0615/6189/7150/products/MIZUNO5_1200X1200_12e78443-61c8-4dab-ba9f-02d87fe97a91_250x250.png>; rel="canonical"
source-length: 1405908
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: fcd21fea-f35a-4794-a74c-c4f36aef9db8
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,gcp-us-east1
last-modified: Mon, 30 Jan 2023 20:56:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3XJLxJWPARdfKflbyRXII0XSVEwf8xMt6x%2BzNGML5BAPDLhIRBE0FJe4fL%2BIgaSn6xXduIsCzJMHnnUTsLZYIA7B4jf6M5wlLzO3wQoULpVAmyPHb8%2FE9d1hD9vxrme9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=579.278, imageryFetch;dur=62.007, imageryProcess;dur=516.204;desc="image", cfRequestDuration;dur=190.999985
server: cloudflare
cf-ray: 792f4dc37e9eb52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 8baf3a9457a16ee820cb49fc0d126571
6ae6ed4303b7ccc3828f0cad4ac50e6ba2526b43
825108d9fc88b52c66e6e73707dedfeb6650e1fc49ea2dc73c2a5f5eb3d42e47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Server: ECS (amb/6B95)
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4882
Expires: Thu, 02 Feb 2023 03:16:39 GMT
Date: Thu, 02 Feb 2023 01:55:17 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-WWM7399
200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WWM7399
IP
File type ASCII text, with very long lines (1759)
Hash 56bd2bf70746e11829cffad220d6b720
6fbea059169d0effbd3a5550644ddd4c3f6edff7
e65f6ae94c68c2b37786b08731da0af2dfa8976cb4ae4498beaeaa138ae89d26
GET /gtm.js?id=GTM-WWM7399 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 01:55:17 GMT
expires: Thu, 02 Feb 2023 01:55:17 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 00:50:58 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:13:11 GMT
expires: Fri, 02 Feb 2024 00:13:11 GMT
cache-control: public, max-age=31536000
age: 6127
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 975d625ddcfc2493345996645ac12164
1fabff54ee5ec06dfffd4e6b2604d1295e6a324c
6980c646d162caba3a48aa23b4f54cc8a3172a0f96c5e543c2abfa3d5811dc76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5092
Cache-Control: max-age=136085
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:18 GMT
Etag: "63da74b7-118"
Expires: Fri, 03 Feb 2023 15:43:23 GMT
Last-Modified: Wed, 01 Feb 2023 14:18:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash 975d625ddcfc2493345996645ac12164
1fabff54ee5ec06dfffd4e6b2604d1295e6a324c
6980c646d162caba3a48aa23b4f54cc8a3172a0f96c5e543c2abfa3d5811dc76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5092
Cache-Control: max-age=136085
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:18 GMT
Etag: "63da74b7-118"
Expires: Fri, 03 Feb 2023 15:43:23 GMT
Last-Modified: Wed, 01 Feb 2023 14:18:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 4b52ee4827627743ba7db1d6d98b2614
52d4bb9d6a61ce333d94ad7f57f719d084f88839
54f65cfe66155d377f8f06f792af381d25df663a97bc64c4762294946d319c6d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 01:55:18 GMT
Last-Modified: Thu, 02 Feb 2023 01:11:10 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fwSb2Ndauo0ffUrXYxHlcmpGbEVOaAQqCs1yVwW6rWw9zvdnFmhpPg==
Age: 2648
fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /fa/4.7.0/fa.woff2?v=4.7.0 HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://fonts.dooki.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: binary/octet-stream
content-length: 77160
x-amz-id-2: MM+suMvxIxxn15HnvCjXKqE4RN7HGgdVd9KhhSF+f8QdlC/k3rxnCL2DDrc/ygn0pyHNLDrUFSQ=
x-amz-request-id: 4F4J52TNBSGK4BST
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 1800
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Sat, 10 Nov 2018 14:21:40 GMT
x-amz-version-id: null
etag: "af7ae505a9eed503f8b8e6982036873e"
cf-cache-status: MISS
expires: Fri, 10 Feb 2023 01:55:18 GMT
cache-control: public, max-age=691200
accept-ranges: bytes
set-cookie: __cf_bm=EgXi116ty3t2s6b5.pYGkl2NAoQAeANdWB40DYg.XJA-1675302918-0-ARJRmqX35ODtdHQJihUwVQ5nVwbm63oHDMcWB1CUM9LqbmlEc2FJ/pK00+QiNmXkINDP17HjpigkL8SnEIj8Cwk=; path=/; expires=Thu, 02-Feb-23 02:25:18 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792f4dc5189c1c16-OSL
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png
200 OK 31 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png
IP
File type PNG image data, 512 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ecf4f2e6b6d9dcf8d957a8644390346b
f2eea0acd3fc6a4cb627fd5f716c2fcbc9a2c627
e69e62e673c41372a0327fda36146d4253269a7b900216848a8877027f9ec8b2
GET /king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: JRLh5xe7fPJWAJ4qfYKRRlKftvCBvWNHxR4uVdGb6PPkkH8puFwXLrS+TVgVuR1eiaAUvYKUcF4=
x-amz-request-id: 4F4TES2HE7SEFYTV
Date: Thu, 02 Feb 2023 01:55:19 GMT
Last-Modified: Wed, 10 Aug 2022 22:56:25 GMT
ETag: "ecf4f2e6b6d9dcf8d957a8644390346b"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 31251
region1.google-analytics.com/g/collect?v=2&tid=G-D2W70TYMLK>m=2oe1u0&_p=1712107331&cid=1080417740.1675302942&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675302942&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-D2W70TYMLK>m=2oe1u0&_p=1712107331&cid=1080417740.1675302942&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675302942&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-D2W70TYMLK>m=2oe1u0&_p=1712107331&cid=1080417740.1675302942&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675302942&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Thu, 02 Feb 2023 01:55:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 01:44:08 GMT
expires: Thu, 02 Feb 2023 03:44:08 GMT
cache-control: public, max-age=7200
age: 671
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1515
Cache-Control: max-age=143670
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 17:49:49 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 204345
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/plugins/ua/ecommerce.js
200 OK 738 B URL HTTP/2 www.google-analytics.com/plugins/ua/ecommerce.js
IP
File type ASCII text, with very long lines (745)
Hash f804aa0b574b678d24df5281ed71a61d
2fc02211b273e1ab4d362df05d592f2d822c2add
1d2d8c7f3502f4459478fe8c7495a27464d6f178b1d564333a107d310c0ea74d
GET /plugins/ua/ecommerce.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 738
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:14:10 GMT
expires: Thu, 02 Feb 2023 02:14:10 GMT
cache-control: public, max-age=3600
age: 2469
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cw1OC3_7FsEZjVchO4kuGLmHiNToZJj0xAljbS9UgddymBtJYPkRZA==
age: 208153
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1515
Cache-Control: max-age=143670
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 17:49:49 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&gjid=1057690295&_gid=2042608018.1675302943&_u=IADAAEASAAAAACAAI~&z=1558278841
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&gjid=1057690295&_gid=2042608018.1675302943&_u=IADAAEASAAAAACAAI~&z=1558278841
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&gjid=1057690295&_gid=2042608018.1675302943&_u=IADAAEASAAAAACAAI~&z=1558278841 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 01:55:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mXR_nN80NvWQMHBJd3OZN7k_v0w8vF3-DXMjVgju-W3h8Ncx4S_zpQ==
age: 208153
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1080417740.1675302942&jid=997648189&gjid=1263704616&_gid=2042608018.1675302943&_u=IAHAAEATAAAAACAAI~&z=1892695558
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1080417740.1675302942&jid=997648189&gjid=1263704616&_gid=2042608018.1675302943&_u=IAHAAEATAAAAACAAI~&z=1892695558
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=1080417740.1675302942&jid=997648189&gjid=1263704616&_gid=2042608018.1675302943&_u=IAHAAEATAAAAACAAI~&z=1892695558 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 01:55:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1564213970&gjid=1883493596&_gid=2042608018.1675302943&_u=aCHAAEATAAAAACAAI~&z=706896198
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1564213970&gjid=1883493596&_gid=2042608018.1675302943&_u=aCHAAEATAAAAACAAI~&z=706896198
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1564213970&gjid=1883493596&_gid=2042608018.1675302943&_u=aCHAAEATAAAAACAAI~&z=706896198 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 01:55:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&_u=IADAAEASAAAAACAAI~&z=2070200537
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&_u=IADAAEASAAAAACAAI~&z=2070200537
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=1080417740.1675302942&jid=1592549881&_u=IADAAEASAAAAACAAI~&z=2070200537 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 01:55:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945203&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 771 kB URL HTTP/2 www.facebook.com/tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945203&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
File type gzip compressed data, from Unix\012- data
Size 771 kB (771255 bytes)
Hash dcedcc6501a35f85bff7d7a279534e0c
f1847d0192e2dcaab99946bb845c8c2732162345
180772cff221e3e1b00158e6323b95ffd243c9497d8665f58f9db16569e949e4
GET /tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945203&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945239&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_kkco0rrla&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945239&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_kkco0rrla&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945239&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_kkco0rrla&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945227&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_t2cyw6txt&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945227&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_t2cyw6txt&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945227&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_t2cyw6txt&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945220&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945220&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945220&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945222&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945222&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945222&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=613818883834321&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945224&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=613818883834321&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945224&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=613818883834321&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945224&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945225&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945225&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945225&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945229&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_tvlizv51v&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945229&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_tvlizv51v&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945229&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_tvlizv51v&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945231&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_0mvtw4zan&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945231&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_0mvtw4zan&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945231&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_0mvtw4zan&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945232&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_dwttzzm37&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945232&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_dwttzzm37&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945232&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_dwttzzm37&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
linkcurto.co/rsjjh10ajzko8
301 Moved Permanently 31 kB URL HTTP/2 linkcurto.co/rsjjh10ajzko8
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (31264)
Hash b74762afd18a99874fe2318c5c0dd6c6
986942341f56ddc88bdb258aa6f421cb42bc50fe
1f56767d98012464a968d87c3f4a1448a655518abbe237184a1e6c50f08d7911
GET /rsjjh10ajzko8 HTTP/1.1
Host: linkcurto.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 01:55:13 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.liquidashoes.com.br/cart?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho Abandonado 1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
set-cookie: XSRF-TOKEN=eyJpdiI6IkZwbTJrMmhVbUJ0TkI5TTJQNGVlb3c9PSIsInZhbHVlIjoiR2JGT0gvcHB6bGRUUXhHQmYzVHJuY3ROS1dqQnZyOVYrUWpHVzBmSmdoUm4yR1MxOGQveEVJL04zTE44L1pUeXdzTjQ4d3Yzd0tsQWhlVGEyUzZETFFrTTdOSFMrUG01VXhkZ0FLUzlZQ0c4dHd3WUhlU1R5bGFDbVgwTTFXSFkiLCJtYWMiOiIxZDcxNTFlNzIwMzFhOGM3MmJjYTM0MDNjZjUyOTU1ZmM1MzVjMTk3NWZhZDkyMjRmNzMyOGI5YjRlZmQxMDhkIn0%3D; expires=Thu, 02-Feb-2023 03:55:13 GMT; Max-Age=7200; path=/; samesite=lax
linkcurto_session=eyJpdiI6Ik56SFU0MmJvQkltblZ2ZGc1MkJ2ZXc9PSIsInZhbHVlIjoiSjJLUURFVTJxcmUvbmpJRHBsV3VyUmUxb1hNZEozdXdzWjFaMDFONG9VTkgwWVhycC81VjA5RHl4Y0F0UHR2MUNjUkJLcWs1ZTZjZTlpKzFPcjNJT3E1eTJyV01nNC9zcDlFQWRlYVBKbGRSM1d6SGgvWk9zcUlWayswN1k5Vm8iLCJtYWMiOiJkYzZhODc3OTg3OTg1NjM4NDZlYzA2N2I5Mzg5MTA2NzY1OGQ0MzE0YzdhNmY4YTBiN2E1NGFhMTEyZmE1YjYwIn0%3D; expires=Thu, 02-Feb-2023 03:55:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oa3Vgd2HZWtCu6tmOVt8dmbnsbnYXA2128FCbki%2FhprLRTlItPSw5VyeIxZXMsxg%2F%2BAYlih%2FXK4C70K3OsFXpDPnD8%2B17IfyOkX5kNbjxEqfPJLXp2xDa7Etgv6EJ3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792f4da7ac96fab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945234&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_yd0nvjx5q&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945234&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_yd0nvjx5q&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945234&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_yd0nvjx5q&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945237&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_cj7cq6eu8&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945237&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_cj7cq6eu8&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945237&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_cj7cq6eu8&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945211&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945211&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945211&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/cart?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
302 Found 16 kB URL HTTP/2 seguro.liquidashoes.com.br/cart?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (16344)
Hash 03ca6e744dc984c9d5f1c20d06d95af8
51c33cf3f3858a9fc34f416d54517de6a79cbf32
c97be4c2e2d9db276716417bd2ba102aa2d51aa708ee65faf9b3749c62a5f914
GET /cart?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho%20Abandonado%201&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7 HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 02 Feb 2023 01:55:15 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IlRlTzV1YlwvUnNLdDFuVWVqMlhMdWt3PT0iLCJ2YWx1ZSI6IktzSjhFaitOdlwvR3FEZEpza2VnSVZWZUF4YiszendvalYzbzFLcEQ5c3lRbnV5NzdHME01SWdiRVlVclNWeUhPNlh0MUJCcnV3WUQxSk5RZ0lLa0R1dz09IiwibWFjIjoiNjY1MWU4ZTNjNzFkYjJkM2NkMjc3MTQ1NGFjMjQ1ZTc3NTlkMTg4MTFmOGY3M2M5OTJmMzNiYzc0NWQ3ZjA5YiJ9; expires=Thu, 02-Feb-2023 04:55:15 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImNoRHJmZzdrTmozbG9PaGZOZFk1RFE9PSIsInZhbHVlIjoiZ1JrQ05hNjNBUDlqT3Q3Z081UjViWWNZckpTSHhnbHBONHZUaFJ2dFZFTlYyMW02TVJ1Q2t3M2s1OWFKbEtRNjhGK0kxS1JFNUVET3pIelI0cVFSMWc9PSIsIm1hYyI6IjNiMDkyZjE1NmJiZDkyYzBlYTlmZWVjM2E4NzBhODk3YzIwYmY0ZGY1YzA0YzY4ZTAxMmNhZmM4MDY2ZDVhMTEifQ%3D%3D; expires=Thu, 02-Feb-2023 04:55:15 GMT; Max-Age=10800; path=/; httponly
liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; expires=Tue, 07-Feb-2023 01:55:15 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945207&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945207&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945207&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945218&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945218&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945218&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=PageView_tryuhbg6z&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945236&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_ri7ttf82r&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945236&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_ri7ttf82r&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675302945236&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675302945201.78795976&it=1675302943251&coo=false&eid=InitiateCheckout_ri7ttf82r&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 01:55:21 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/859.95d4308d-1222.js
200 OK 3.0 kB URL HTTP/2 js-agent.newrelic.com/859.95d4308d-1222.js
IP
File type ASCII text, with very long lines (6657), with no line terminators
Hash 364ac85aef21ab784eeec8f55116dff7
82089547d57defc88e114832b7eb9919a8876e31
255295be519de9a2d1040b1c547c25756b63310e2d7234bcf252ed41d5278c0b
GET /859.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PAOkWJ6WiOdnSUVZHZQv79Edy7uPwU81uM9fUJQx6T8UpQupKV3O9whnAR+3HGoYTBPmehtRe7k=
x-amz-request-id: WFN4FJZ1XN6DZ8EG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "b087387593417c0b63259918da3584e3"
x-amz-version-id: GtNmis6Y3zB4SbtciuRtabFzp3T7wBIy
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 396
x-timer: S1675302921.369174,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2975
X-Firefox-Spdy: h2
js-agent.newrelic.com/569.95d4308d-1222.js
200 OK 3.2 kB URL HTTP/2 js-agent.newrelic.com/569.95d4308d-1222.js
IP
File type ASCII text, with very long lines (7513), with no line terminators
Hash 8d0953404ce6fdf0926ef6bf37d7e041
8cec9d9883f8b7720721bb33bffb4afe45193b1d
83966eef1899edd421692b78cda8df58dfb9b0b2b27a7485183c5b4cb44a336d
GET /569.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: v+E2uK5EOShfz1aeDzYcwNWitGv9mKnF6hMwgfWjfoR/qfIZPK6AF+v3z+by8JUQg3fSUYcltK4=
x-amz-request-id: WFNFJ5TESSHD3FE6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "e97726ab932639fed09971b1d682788c"
x-amz-version-id: umZj.yHws5JPiBHG1j096ELWHEKx7rh0
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 389
x-timer: S1675302921.392211,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3173
X-Firefox-Spdy: h2
js-agent.newrelic.com/885.95d4308d-1222.js
200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/885.95d4308d-1222.js
IP
File type ASCII text, with very long lines (16348), with no line terminators
Hash 2414f7dbfd0e2cb3d826fc02a8b608dc
550db9b7abbcd2e5a0d4ab9c414933e1a0bd36fc
8239519b8bff793ad186f4ab9017f8a6ed34edc1df3361958075077ee7677b3d
GET /885.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iuZsFv406u1sMvs0ma20vGvuMApZWTFFZj+faC5P7Ry157RP7v+m+H8/pYueXH7fkGpYpHbtGFk=
x-amz-request-id: 99ZMGE3ZKMAWH9CW
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "fb9bb822463bccec4200657d3ae33dc0"
x-amz-version-id: PKmhKUoshrjILDxYc6QEKM_sGJ.F4FNB
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 192
x-timer: S1675302921.414156,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5930
X-Firefox-Spdy: h2
js-agent.newrelic.com/620.95d4308d-1222.js
200 OK 1.3 kB URL HTTP/2 js-agent.newrelic.com/620.95d4308d-1222.js
IP
File type ASCII text, with very long lines (2989), with no line terminators
Hash 7094c3f93699a846fe91edd766391f01
25e8c79409acc2bb73a728c0768e1eda66019255
85eb01219e8aaa7c7968aa175c2421454f99615ae66350b15c60465f4616826f
GET /620.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QggJtv+14rx8wEd4C6ZTDmmxUSe6+8jiYhTGnWcIRu6DC5pRiaL5fPRx8/lgChduQ7GqRSlO6xY=
x-amz-request-id: WFN5FXFSJTZYM7K6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "ca9b029ff66dd9146273984d16e20abc"
x-amz-version-id: HYguQMwVKEHCmodKuQRUzW1qxlElK9Xr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 389
x-timer: S1675302921.414764,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1342
X-Firefox-Spdy: h2
js-agent.newrelic.com/457.95d4308d-1222.js
200 OK 2.0 kB URL HTTP/2 js-agent.newrelic.com/457.95d4308d-1222.js
IP
File type ASCII text, with very long lines (4809), with no line terminators
Hash 09c0cca8d2a9fd69f1892a1c2d1319b9
b46f4fe3b0adc98785d22a092818b74145a91cc0
593022809e272793157f8280bae176bfa74a02f9f9a6d3269384e2dd434be046
GET /457.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 6YLQBRWWkaavoi6QR5dS+9cRhXVrpaQK5v3G9/iqQ5oKPUxxFI0Uv2tN9ar51sQUG2xwVmTWBnY=
x-amz-request-id: WFN1Z9NXJZGF8XE5
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "c16abc7fa2e34cbb7baf3e290120ad5a"
x-amz-version-id: qROfxBD9CF8WXmbywdhvCmImuu9HvRNA
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 388
x-timer: S1675302921.415134,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1953
X-Firefox-Spdy: h2
js-agent.newrelic.com/41.95d4308d-1222.js
200 OK 439 B URL HTTP/2 js-agent.newrelic.com/41.95d4308d-1222.js
IP
File type ASCII text, with very long lines (828), with no line terminators
Hash 46946da829a2257cd8bdeb75bc6f8ff9
bfb81d0ebb2c5a2c0fe666f6a9c4c09cc5a545b3
50e164f0b5274f88ecc28c833729663593b3380aed5a4ac3a06d29106332a544
GET /41.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2TG7kVMnt5x5EwbcjDgF/pAaH/jmgGXStlMFEbvOUPNYaRTe14pFRmwb0VQGFJQN7uXfEncHoqkNLs4TYWl92Q==
x-amz-request-id: MFEHG5GPGK6ZYQVP
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "29dd8aef66100e4c69e07fd60fc88b12"
x-amz-version-id: 6FOFyXAonMoqJqLGEMhx7HWIp32cv4MT
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 394
x-timer: S1675302921.415473,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 439
X-Firefox-Spdy: h2
js-agent.newrelic.com/244.95d4308d-1222.js
200 OK 2.6 kB URL HTTP/2 js-agent.newrelic.com/244.95d4308d-1222.js
IP
File type ASCII text, with very long lines (6871), with no line terminators
Hash f3fa38d9e10cf246f158644ebd64b342
c2730a8b130475b903b30148ea5cf79eb7de1873
6aea0ff08f0ed145b42d52f81d167df30a300f3da22b687fa2de3be48df1badb
GET /244.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: HqAuLbtc4kLXjp/HM/sZyPqsDbRk1eMZXQl1gAv0l9/yRrGf//JiuVcahDTT5bis4NqiPxfG4OQ=
x-amz-request-id: D866GB1QGPTYVJ4R
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "a24fd7e602a6b44ab4c03cab69c843c6"
x-amz-version-id: wm7C04ehQ1WMJgMW5R_.Vg0x6NJINoji
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 246
x-timer: S1675302921.415636,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2607
X-Firefox-Spdy: h2
js-agent.newrelic.com/736.95d4308d-1222.js
200 OK 4.9 kB URL HTTP/2 js-agent.newrelic.com/736.95d4308d-1222.js
IP
Hash 36c92048fce1c0bd519700c5c2c07928
6ff6ad755753c439f8b45f7100a5f0fe1fb62b21
6293273532e1a9267da712bdaca97d2d13232fef689d72950009d4e40b500eba
GET /736.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: wZ5lT7Qk1E9hmsxWDncLcs+Ic+aBtWHWGPUcVxaeVym/k+6uixaPTXfOiP+keWUZ+GKP0xL2SDo=
x-amz-request-id: MFESCF9VXQC5P35J
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "def1dc24974c16a4e78c08e349b92860"
x-amz-version-id: i.8rfLhEckzO44oBXwNAK9an0lbXu.5p
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 247
x-timer: S1675302921.415826,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2132
X-Firefox-Spdy: h2
js-agent.newrelic.com/142.95d4308d-1222.js
200 OK 880 B URL HTTP/2 js-agent.newrelic.com/142.95d4308d-1222.js
IP
File type ASCII text, with very long lines (2014), with no line terminators
Hash c962fb555005bf74b5010cd5c748c721
5c7c22b348a994aad18e8162bb1f78b9fd49c491
077c18d946bf505b4efe75b1b3c3d9c6b3ad6af3e5b5d08a41fedf7aceb84233
GET /142.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: /ZtX43ynOvSaYlrJ/LhlDymHqsr4/Ext49IQ1RQZxLK2MPDMHv59yC5Li6+9oNRuTnKxUqkvJhI=
x-amz-request-id: MFEMFHWSJ1CY7RPR
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "082c9f0a95ce6870ed4d9266fa0e41e5"
x-amz-version-id: ed_.QNbbUDaLQJRSZtC0TghsoJcp2gVk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 248
x-timer: S1675302921.416025,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 880
X-Firefox-Spdy: h2
js-agent.newrelic.com/466.95d4308d-1222.js
200 OK 2.8 kB URL HTTP/2 js-agent.newrelic.com/466.95d4308d-1222.js
IP
File type ASCII text, with very long lines (6842), with no line terminators
Hash 0545743760ba9995e8efbe879105162f
889887ac56edaf2cfe41752ec0893a9ac5d23db0
91a431e85d69e797b8a8817bb15aee94a9fbe38355a6890f75e8947a55386ee0
GET /466.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Y3xfvlvSw36CE9GOKklvJeG0iBkCsl/ss+e4vNwZhrKvjIdjtQLayCw3yQPVxbIyEllIzLdCgUw=
x-amz-request-id: MFEHC9QF926X2AZG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "2b339e4b3b0435de10496ee00de8446a"
x-amz-version-id: joCLqMlafBXUuB094SKQ5Jhlrbz7F.ON
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 01:55:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 248
x-timer: S1675302921.416166,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2760
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
302 Found 0 B URL HTTP/2 seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
GET /checkout/payment?cart_token=shopify-b26dfc8936748ec7f04b2a2a12301d09&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=d96b0300-a286-11ed-a295-3d4cff7238a7 HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlRlTzV1YlwvUnNLdDFuVWVqMlhMdWt3PT0iLCJ2YWx1ZSI6IktzSjhFaitOdlwvR3FEZEpza2VnSVZWZUF4YiszendvalYzbzFLcEQ5c3lRbnV5NzdHME01SWdiRVlVclNWeUhPNlh0MUJCcnV3WUQxSk5RZ0lLa0R1dz09IiwibWFjIjoiNjY1MWU4ZTNjNzFkYjJkM2NkMjc3MTQ1NGFjMjQ1ZTc3NTlkMTg4MTFmOGY3M2M5OTJmMzNiYzc0NWQ3ZjA5YiJ9; bubbstore_checkout=eyJpdiI6ImNoRHJmZzdrTmozbG9PaGZOZFk1RFE9PSIsInZhbHVlIjoiZ1JrQ05hNjNBUDlqT3Q3Z081UjViWWNZckpTSHhnbHBONHZUaFJ2dFZFTlYyMW02TVJ1Q2t3M2s1OWFKbEtRNjhGK0kxS1JFNUVET3pIelI0cVFSMWc9PSIsIm1hYyI6IjNiMDkyZjE1NmJiZDkyYzBlYTlmZWVjM2E4NzBhODk3YzIwYmY0ZGY1YzA0YzY4ZTAxMmNhZmM4MDY2ZDVhMTEifQ%3D%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
date: Thu, 02 Feb 2023 01:55:16 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.liquidashoes.com.br/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Im16RUNBbWZkOGRqRjFMZURaTElUR1E9PSIsInZhbHVlIjoibGI3XC83cllIc0loeEprWUNZekdIZkZ2OEg2QUk1TExIRlV4ODZTTVFBVldiZkdINE0zV3I0ZjdXUjRBUHp5WnhPZVpFQk9INGVQSWY5RENxaU5aa3ZBPT0iLCJtYWMiOiI0MzgwNjRhZDViZmYzNzUxYzIzZDk3N2IxM2QxOGYxYmEyMTZhNGMyZDAwOGY1MGNmMDRkZDBkYjBkZTkyZWYzIn0%3D; expires=Thu, 02-Feb-2023 04:55:16 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlwvZjQzcjBEMUFzUXBpYmpxcEZYdkd3PT0iLCJ2YWx1ZSI6IkkxTm81SDBnREp0Q0pcL1c1VWVqWHMwNzNCQ0U2WXcreE45Z25hMTN3aFJNc3F6WU5hMkhyYjRjQnNpbDNVakhWT2ljaldtUExscEEyUEltMnBLazJjdz09IiwibWFjIjoiZTA2YTAyN2I1ZjRiMDFiMDU2Y2I5OWU5YThiYmYyYTNjMTAzYjFiNjViM2MxYzIzMzRmM2ZmMjI2ZTRjMzc5YSJ9; expires=Thu, 02-Feb-2023 04:55:16 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 01:55:17 GMT
date: Thu, 02 Feb 2023 01:55:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
IP
GET /checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: text/css
x-amz-id-2: j/S4cRK7h2RJJ8oPBInTkUyHWMs2uLy5Y2k2gv7J5HVqK6+oYOtQiL9kw5ONDjsNoD1SA2PVHdI=
x-amz-request-id: CW5G8BWSRMPMAXS4
last-modified: Tue, 17 Jan 2023 17:16:35 GMT
x-amz-version-id: 6DNQN8Tr5zNrG9AbFAdSPatqVsIP8Y4C
etag: W/"0f68d2669d40348ccb7bc9a9d17328f5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2954
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I2RW1GNndjQ60DUAOqKqD90M6fC0fA4x9Ay%2BlkNDOZvQaxMrYSt3dHh%2BrrUWDE80ZwVVoAJgVb%2BdKoEfRHAcrOTD2A0KN7RvFyeKxw5ca7ONBjmAff08a%2BBbIp3Nevj3j2dlFbeYvKZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792f4dc37d75b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.yampi.io/ana/ana.min.js?t=1675382400000
200 OK 0 B URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1675382400000
IP
GET /ana/ana.min.js?t=1675382400000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: application/javascript
x-amz-id-2: WWkVOixX0x+x3KXP/Vq1pYdeZLjSJcJLKXKViH2l2S4wzCJ0DawMNBK02hwCa4LtjzWER2k1SkA=
x-amz-request-id: 8967JB12TSRFY2GR
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 5775
expires: Fri, 02 Feb 2024 01:55:18 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 792f4dc5fd6ab512-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/e/t
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/e/t
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjIxZjUwMDc3MTAxODA4ODAiLCJ0ciI6IjAyZTdkMmVjN2Q3N2VkZDdkZTFmNjA0MWI4NGNmNjgwIiwidGkiOjE2NzUzMDI5NDIxMzN9fQ==
traceparent: 00-02e7d2ec7d77edd7de1f6041b84cf680-21f5007710180880-01
tracestate: 2935249@nr=0-1-2935249-1134170823-21f5007710180880----1675302942133
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 366
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; cart_auth_310622102=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImhOQld6QjhRNmk4QmxEMzVcLzBCNWFnPT0iLCJ2YWx1ZSI6ImIwWXdtMUh0TFNDSjBzdmtiVVZvVzlYam5mRTRVS3ZaN1lrSGFDcUZTNlNRRVA2MUI4bURLbEczTXNxZkxIbWNvRUVKTUJkMXRzTjdaczRpUkFlSjRnPT0iLCJtYWMiOiJjZTI4ZjRiNjM4YTc1YWJkZjQ1YmU4Y2Q0ZDIyNDI0NTU1NDUzY2FkYWQwMGJmOTA4ZTg5Mzc4YjU2Y2Q1ZmE2In0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InBUdlQ3M080ZHNaTEZia0xBMjNpVVE9PSIsInZhbHVlIjoiN1g1WDk0cW1SRTRrcXhQY3QwSHh2b2g1SWs5RHhzVnh6WThQZXFzNFBsbnZ6TVlUeEhWTHRlYlJuUDdFcU1jcThjR3JSN2hOTGxMNUpzZ3N4XC93dUtBPT0iLCJtYWMiOiJmMDc2YmM1Y2ZmMDViM2Y2MzVhNWI2N2U3NTMyOTMxYWViZjQwZTU4OTQwMDI0NzZmZDkwYzFhMmViODBjOTI4In0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/e/t
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/e/t
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImIwYjhlNWEwMTQ3YWI4MjQiLCJ0ciI6ImEyYzQ0MDkzZTAzNWFlNDc3Y2JiNGZmNjExZWI0NzgwIiwidGkiOjE2NzUzMDI5NDIxMzV9fQ==
traceparent: 00-a2c44093e035ae477cbb4ff611eb4780-b0b8e5a0147ab824-01
tracestate: 2935249@nr=0-1-2935249-1134170823-b0b8e5a0147ab824----1675302942135
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 358
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; cart_auth_310622102=eyJpdiI6InhYQkJzMGg4NnF0S0dNMG9GMXFKQ3c9PSIsInZhbHVlIjoiVWgrTVVSUllGbTVIMUhZd2NjRnp3c0JxU0VVQjJCRWlyZlBvcTdzWUs1bHRJdHYrZ3hyUTBGMEYxTlwvMjNMbml3bmliU1VPdXo4amx2WVZ1UlkwTEtXcEFWTGtEMzA2eTRCKzVGSGNmcTVRSjdKV1NUUWRaN3pLWW8yNm56aGdrc2xvblcrY29zWXVhY1BcL25xQ0NFeVBtSlBXTW56UVJzMjdcL0NUelpNNXlBd0RDVUN3RW9FVVZOQjFNWU1wditCOEZMQ1pURHRiazZBYnFZZ1RDRG9IMUVZXC92RnBSdTZ5OCt2NUJrRFdrZ2lrTkE2SzBjT09qY3dCbUNBZWlwVDhyK05uTDZKU21QaElZZ2hIcUNUTWs4dm9PYzE5eXJmT3FwdHBWN013ZUhaVnVwVWVoNExKUkpIaFFDem5BWDUrQjQ1VEdtTmNNaUMyYmp0eGVYcjBaMlVpV0ZqcWMxVDVVdzZJbTFkSVluSW5GK0lXa3lmQzlQWFAzclkyU1Y4dldvN0ZGcGdBejM0dzdXc2xmQTBuK0FCeTJBT1FsRndIajc1OHN0QnBRbE5CY3UxSmFpZlpSV1dFNVZYYUlCbkF1TjdWXC9Wc0tjR3FObEJWVnlzZzVpdHBRdVBCTjRCaVYwR1pyTjYwdkNVR0tQZlgwRkVhbUJSQUZ2YVRSMDU5NFpMS0h6QWlseExlUkpjNXpaOFVRTk9ETHlPZUl2OFVzb0hoT3V2Rm5aUHV2Zll3T1FZSSt6V2pQbTJIUnlvYVNBTTZnTTZvVzRvSmptVkVcL1JxeTV1dz09IiwibWFjIjoiMjUyMmE0NjE4ZWIxZGZiYzVhZGNlNmI5MTg2NWVjNDkzOGViZWUyNGU3ODIxNjhjZTE4MWJkZGY5MTM2OGNhZCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InZVTjhveGoxXC91aWFmZ1hzalUwbndRPT0iLCJ2YWx1ZSI6InYyc3JydU5yVzFBd0lva2E4UG9RbkZEeUJldjhZdG9zd2FlTGVRM1FoNENMRG43WHE3MmpMa2hTbElpbU9OK2E1Y2l3MXhyY3piYnNpMVhvWkc4YjJnPT0iLCJtYWMiOiIxMzIzMTViYWVmMDhlMDA2MWQ5OGE0YzQyMzA1ODJiZTMwYjQ4ODQxZjdkNDlmYzU4MzgwOWNmOTUwY2QzOTc2In0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IndcL0c1Y3JlS1F6NmRWdEhYMmN5RUV3PT0iLCJ2YWx1ZSI6IjZldEFsUHhIVFVZVFMyWEJNbHhoQk82bFplWnVRY0JncjBXK1p3QThmQWZwZHUrekc1VnM5bldMTFwvV1BVaElZNWpkWmJMRko0R2RLQjFhZmpcL0ZFN3c9PSIsIm1hYyI6IjBjMThlYjg3MWFiMTlhZDdmZmRlNGIwNDNmMzFkNzNjNTYyOTEzYjQxZGMwM2Y2ODdhNDJkZjgxMGI2MWI3MGIifQ%3D%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApQAQkCHh5UFUNSAFJWVgcEVAIGXAJTUwRbFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/checkout/address
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/checkout/address
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /checkout/address HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Im16RUNBbWZkOGRqRjFMZURaTElUR1E9PSIsInZhbHVlIjoibGI3XC83cllIc0loeEprWUNZekdIZkZ2OEg2QUk1TExIRlV4ODZTTVFBVldiZkdINE0zV3I0ZjdXUjRBUHp5WnhPZVpFQk9INGVQSWY5RENxaU5aa3ZBPT0iLCJtYWMiOiI0MzgwNjRhZDViZmYzNzUxYzIzZDk3N2IxM2QxOGYxYmEyMTZhNGMyZDAwOGY1MGNmMDRkZDBkYjBkZTkyZWYzIn0%3D; bubbstore_checkout=eyJpdiI6IlwvZjQzcjBEMUFzUXBpYmpxcEZYdkd3PT0iLCJ2YWx1ZSI6IkkxTm81SDBnREp0Q0pcL1c1VWVqWHMwNzNCQ0U2WXcreE45Z25hMTN3aFJNc3F6WU5hMkhyYjRjQnNpbDNVakhWT2ljaldtUExscEEyUEltMnBLazJjdz09IiwibWFjIjoiZTA2YTAyN2I1ZjRiMDFiMDU2Y2I5OWU5YThiYmYyYTNjMTAzYjFiNjViM2MxYzIzMzRmM2ZmMjI2ZTRjMzc5YSJ9; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; expires=Thu, 02-Feb-2023 04:55:17 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; expires=Thu, 02-Feb-2023 04:55:17 GMT; Max-Age=10800; path=/; httponly
cart_auth_310622102=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; expires=Thu, 02-Feb-2023 02:05:17 GMT; Max-Age=600; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04
200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04
IP
GET /checkout/build/mix/assets/js/app.js?id=8b7536cdfd4408a4b16bbd105453ab04 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: application/javascript
x-amz-id-2: H6wc1KJ0l7vY6nHfuqoQ7NhT/dUOZiEYJ2bf0dEmwZibsjmsrrJWZS00OtTSdIrO93b8qeaXqDs=
x-amz-request-id: CBDE1ERD0EWS8EHD
last-modified: Mon, 30 Jan 2023 17:14:01 GMT
x-amz-version-id: .PJTNmukiGo4sVi.cB2in6eHA0WVFZtD
etag: W/"d294d7e1e0f31ad881021de44009ab13"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2953
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1TU7GP%2BWQLy0H4HOk5%2BU2otyKBNzQa6e4GW%2BphQvWKaVfKpC1SPjZXqpFfvc44a5EfFIAm0Z0QKBrZDgA3ZhRTug5tt6PIZ8oXig5Z%2F1ODmdIEZf6ZHywpv1nEieA7DamU010hq3Ojxj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792f4dc36d6eb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.yampi.me/jquery/jquery.js
200 OK 0 B URL HTTP/2 cdn.yampi.me/jquery/jquery.js
IP
GET /jquery/jquery.js HTTP/1.1
Host: cdn.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: application/javascript
x-amz-id-2: cvnt6Bg7zbti5Bm8Lp0rAGY7y345bRB4T32MulxMxGJI1GHuapNQjUTBRTBFSQUT3nXc9o650NA=
x-amz-request-id: TP7GXVJKXZ65D2ZZ
last-modified: Tue, 24 Sep 2019 11:23:34 GMT
x-amz-version-id: 6XhfNvj9UGB1eWzPJf8PFJnclFrAQqDF
etag: W/"9f7c65c84c8e8c3e317945e8fd89899b"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DExfkEq63ETZjDxNWIyTy6Jb2xn2bF5ThwfUGoG%2BKTKZcaaIs%2FaCq9%2FnxxElFVVav9RdbvtPmBurFwYHHR9kUIUBbGjfPyisB48MkS%2F7ZThWbPC%2F7A1QzVds1%2BptmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792f4dc39d80b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/api/v1/pixels/events
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/api/v1/pixels/events
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImFjZTVjNDFlMjliNDNlZTgiLCJ0ciI6IjcyOWFmMjkwZjM4OTAxMTJlN2Q5YTM4MjlhNjcwYjMwIiwidGkiOjE2NzUzMDI5NDIxMzF9fQ==
traceparent: 00-729af290f3890112e7d9a3829a670b30-ace5c41e29b43ee8-01
tracestate: 2935249@nr=0-1-2935249-1134170823-ace5c41e29b43ee8----1675302942131
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 249
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; cart_auth_310622102=eyJpdiI6InhYQkJzMGg4NnF0S0dNMG9GMXFKQ3c9PSIsInZhbHVlIjoiVWgrTVVSUllGbTVIMUhZd2NjRnp3c0JxU0VVQjJCRWlyZlBvcTdzWUs1bHRJdHYrZ3hyUTBGMEYxTlwvMjNMbml3bmliU1VPdXo4amx2WVZ1UlkwTEtXcEFWTGtEMzA2eTRCKzVGSGNmcTVRSjdKV1NUUWRaN3pLWW8yNm56aGdrc2xvblcrY29zWXVhY1BcL25xQ0NFeVBtSlBXTW56UVJzMjdcL0NUelpNNXlBd0RDVUN3RW9FVVZOQjFNWU1wditCOEZMQ1pURHRiazZBYnFZZ1RDRG9IMUVZXC92RnBSdTZ5OCt2NUJrRFdrZ2lrTkE2SzBjT09qY3dCbUNBZWlwVDhyK05uTDZKU21QaElZZ2hIcUNUTWs4dm9PYzE5eXJmT3FwdHBWN013ZUhaVnVwVWVoNExKUkpIaFFDem5BWDUrQjQ1VEdtTmNNaUMyYmp0eGVYcjBaMlVpV0ZqcWMxVDVVdzZJbTFkSVluSW5GK0lXa3lmQzlQWFAzclkyU1Y4dldvN0ZGcGdBejM0dzdXc2xmQTBuK0FCeTJBT1FsRndIajc1OHN0QnBRbE5CY3UxSmFpZlpSV1dFNVZYYUlCbkF1TjdWXC9Wc0tjR3FObEJWVnlzZzVpdHBRdVBCTjRCaVYwR1pyTjYwdkNVR0tQZlgwRkVhbUJSQUZ2YVRSMDU5NFpMS0h6QWlseExlUkpjNXpaOFVRTk9ETHlPZUl2OFVzb0hoT3V2Rm5aUHV2Zll3T1FZSSt6V2pQbTJIUnlvYVNBTTZnTTZvVzRvSmptVkVcL1JxeTV1dz09IiwibWFjIjoiMjUyMmE0NjE4ZWIxZGZiYzVhZGNlNmI5MTg2NWVjNDkzOGViZWUyNGU3ODIxNjhjZTE4MWJkZGY5MTM2OGNhZCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6ImVSXC93QUFKdExaayttZE9cL1EwaWwwdz09IiwidmFsdWUiOiJBNDQ1aWZBQjdSMDJmVHhrRlwveHJ6OVpzRDQ2a3dlODJuKzNvNHc3bURBcnJNeSsrWHk0eDJ0WDdqbUxcL3RPcEZacmRwSThnWFYzWjBsbUVpc0hLZXZBPT0iLCJtYWMiOiJhZmFhOTU0Zjg1NmRkMmQ2ZGQ0NjQ2NzcxYTYxOThhMTQ3ZGIxNzcyMjgyYzQzYzg2MzhlYWU4OTY0NmNkMDJkIn0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlwvT0F6OGpyUVl4bGFLd200bStBa0Z3PT0iLCJ2YWx1ZSI6IkxqQW1PREdFck9BcUFEdWhyMFRoenRlU0wrZ3NoMVVjUEIwemRuUTVLWm50bXhZVXJcL0Y0cEZySiswWXFUcjVCaVJtcHlFYjgzTVZ4RWJ3S1BRaHpsUT09IiwibWFjIjoiMmE0MGQzODYxYzIxNzg3N2I3MTAwNDllNzQ1OWNiNWRiMzIwOGNiNzFiNzYzZThkNGQxYTVlZTg5OWM0YTJhNSJ9; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/cart/recomm
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/cart/recomm
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjhmOTlkNTU4OGQwZDlmNjkiLCJ0ciI6ImFjZjVkZDNlODEzZWIxYzU4ZjNjYzlhNWQ5MzViMjUwIiwidGkiOjE2NzUzMDI5NDIxMTd9fQ==
traceparent: 00-acf5dd3e813eb1c58f3cc9a5d935b250-8f99d5588d0d9f69-01
tracestate: 2935249@nr=0-1-2935249-1134170823-8f99d5588d0d9f69----1675302942117
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; cart_auth_310622102=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IlJJeUhaSmh2ODR1MHQwT1lvSnZ1c1E9PSIsInZhbHVlIjoicW1kQ1Y1QXBqbGUzdmtJSVwvRitpbUlUbW1kSWZjSVV5dFwvaUhONEwxaG5HUlcrajM4MFwvbDg2YmNiVmVDMGVDWDB1V3kxcVwvVnozTjNoaFZkU3UzdFlBPT0iLCJtYWMiOiI5YzRhYTBkMmVhOGVlYzA1NjNjZGY5MmNkYmM0Y2FjZDllNzkwZTVmNGJlZWU4ZmY5MGQ1MWRiMjE1M2UxNGMzIn0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IlZ4OGdJc2RhSGU2dGphV1ZueSs2N3c9PSIsInZhbHVlIjoiamIyZ25paUxvTlwvbDFZUGc1TVFQRzFwVjlUdlwvQURyK2FOcEVKUjBVajU0TWZWbGUwQ3ZSTGpVNXFGZDRMbk1RRnRDdEFkbG9odTV2eWFJT1Z3NEpmQT09IiwibWFjIjoiOTRmNmYzNDAzOTk0NDYzNGYzYzI0MTZlZTliODU5YzRiYzQ0MmQ0YWJhNTliMTYyOWViMTZiYjE1YTZmMWVjNiJ9; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/api/v1/pixels/events
200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/api/v1/pixels/events
IP
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjI5MGU4ZTlhMzdjNGY3Y2EiLCJ0ciI6ImQzZTM0N2VmNjNkZGQ5YmY5ZGE2NzNhNzdlOGIxZDgwIiwidGkiOjE2NzUzMDI5NDIxMjl9fQ==
traceparent: 00-d3e347ef63ddd9bf9da673a77e8b1d80-290e8e9a37c4f7ca-01
tracestate: 2935249@nr=0-1-2935249-1134170823-290e8e9a37c4f7ca----1675302942129
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 249
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IjBUa1R5Rms3K0VVRU42cllqdG1CSUE9PSIsInZhbHVlIjoiazlyaGl1eXgxMmEwc25sVFwvYXBxYnVBTWVUUTNtSjNYUlErZFk1RFVcL0xmSVZwMWpBUGtQZVZCazN6TU1rbjNkcjlkWTVUalpDWnB4aDRINVFHRGo5QT09IiwibWFjIjoiZTNmNTQzNDlmOTFhZmQ4NjIzYTMxZWMwYTA1ZmVlY2ZlMGM2NjZlYjQ0ODI0OWZjZmNiZDgzNzNjM2E0MGZiYSJ9; bubbstore_checkout=eyJpdiI6IlE2YWxOdysxeUpiZWZrSjh0NW94TlE9PSIsInZhbHVlIjoiTDliNmQ1aGZCa1ZYMGpiVGN5N2FFREpGUGg1YitUUFdkbVRjT1E1NVc1c2pTNUtLTFNJTmE5TW9KOHhjZDhLVzh5bm1CZ2thMElTMkdqY0c0TVwvUVR3PT0iLCJtYWMiOiIyODBhZmMzZGI5NmM4Y2MzNzQ4MGQwNDM5NmNkOTJjNTAxMGZiYTZkYzhhYmJlNDI0N2JlZDIxZGQ3MjQ1MDI3In0%3D; liquida-shoes_cart=eyJpdiI6IkhQcVJBREVkXC9WWVwvS281RVpVbXRrdz09IiwidmFsdWUiOiJpQTdTYngrMDd4TXdnRHFsU3dkYmt6UmM0Z3dUVXBwdzRsNFdNMXRjcEJPSnd0ZEU3R2tHTTRNQ2JcL2RhWFgyTHBlVUJuaXRWWlhPallMTG1TQzE0OHc9PSIsIm1hYyI6ImM0NTgwOTIzMWY3YWU3MjBmZTUzZmFjYTc2MGVkODUxYTYxMTUzNWQzYmYyZjNlNGJiOTgwNjNiOTczYTc2N2UifQ%3D%3D; cart_auth_310622102=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:18 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InZ2SWFZS21RcXFhZnA3OFJ2QXd0eHc9PSIsInZhbHVlIjoiOStheWRxUGF4TGU5NldjbEFPbFRTWFwvMDh0Kzd0MktLRlR3MnN6d3dqbG1pUkJaelJOUVQ5UGY0OHg0YkRKMVBTcklNd1VyZ0dZUzlXR2JoZnRkU1dRPT0iLCJtYWMiOiIwYzRmMDAzNzJiMDJhZDQ2NTIwNzk3MmQ0MTBkYjVmNDY1MWI5NTZmYjIwMDA1MDA2NzU4ZjkxYWM0NDhkYzQ4In0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6ImFYRG1FK0JBUEFWNm8xWTRwSWZFVUE9PSIsInZhbHVlIjoibG84bWoyakRFVEl3bU52cVZBdkp0N2xwWm1OZ3R5bkRtSTZFaUJFRmtFT2ZhSDIrcHUyNGl5dVwvbjNZVUlLcENEdVo3OVVBTW1PV2F5bkFhb1M1OE5RPT0iLCJtYWMiOiI3YmZlZTE4YjY1Yjk2MzRjODc1NWViN2U4MjU5NDg1ZjI3NTMzNmFmZWFmZDc0YjM1NjhmYWRhMjM1YzM0ZmZlIn0%3D; expires=Thu, 02-Feb-2023 04:55:18 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFlDWUoRC09UWxVKRURSAQ0KDFdAFFIWCAQCA1UVUR9QAlpWABtMV08aCgUHVlZUCAdVVgYBClpUUUAcBFkOS11p
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.dooki.com.br/fa/4.7.0/fa.css
200 OK 0 B URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 01:55:17 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 5775
expires: Fri, 10 Feb 2023 01:55:17 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=UCq00nGYQLAuNKBkruRoSRVC0haTJBbbzARpso8EAtQ-1675302917-0-Aald8HEALehyYjuLctwvK7DEwUspRKCgvobaGc+mbf0bqCErfPRwoN43d6aoka7FePVYJMbU5pJUo8ADWXE7hZM=; path=/; expires=Thu, 02-Feb-23 02:25:17 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792f4dc47f1db503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3285671.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3285671.js?sv=6
IP
GET /c/hotjar-3285671.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 01:54:32 GMT
cache-control: max-age=60
etag: W/4274f974d3c06052dd3bb3f296325211
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nPsdecc1c1C2E3GRaLGmCP7g617jy7-4m6sDvOw8h55o8wuZwuxKHA==
age: 47
X-Firefox-Spdy: h2
172.67.157.46
16.12.2.12
23.36.76.226
104.18.0.53
23.227.60.200
93.184.220.29
157.240.205.35