r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13846
Expires: Sat, 04 Feb 2023 09:46:41 GMT
Date: Sat, 04 Feb 2023 05:55:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11667
Expires: Sat, 04 Feb 2023 09:10:22 GMT
Date: Sat, 04 Feb 2023 05:55:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 05:36:14 GMT
content-type: application/json
age: 1181
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13509
Expires: Sat, 04 Feb 2023 09:41:04 GMT
Date: Sat, 04 Feb 2023 05:55:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9e7H8hL0Ut0ZO6sGCmgSzk4arGMrXYiAnLLzEEvjQf+EhV3tQkL9PhN713JZP7oTvO+U8aqnx/c=
x-amz-request-id: 8BAEDJ0D9CAFJ27E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 05:23:52 GMT
age: 1923
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 05:55:55 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd
170.82.174.30301 Moved Permanently 134 B URL HTTP/1.1 seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd
IP 170.82.174.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 05:55:55 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://seguro.liquidashoes.com.br:443/checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd
X-GoCache-CacheStatus: BYPASS
Server: gocache
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 05:07:19 GMT
age: 2916
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12439
Expires: Sat, 04 Feb 2023 09:23:14 GMT
Date: Sat, 04 Feb 2023 05:55:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 92a721806dc7bf925c9b41c9e6a94b2d
230865d34ca89a1ed924d45bc83994ac8dcb2fa4
ef2e811d2406fb7f5e0e98feeebd52218f105a6ace12226d9bd952a6e6cc375a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF2E811D2406FB7F5E0E98FEEEBD52218F105A6ACE12226D9BD952A6E6CC375A"
Last-Modified: Fri, 03 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 11:55:55 GMT
Date: Sat, 04 Feb 2023 05:55:55 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.119.23101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.119.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W4yyi9a22mcqDiL2oHVSrQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TzgVs1TzrwLmqAVVEV8TjQ9vs9o=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3904
Expires: Sat, 04 Feb 2023 07:01:01 GMT
Date: Sat, 04 Feb 2023 05:55:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3904
Expires: Sat, 04 Feb 2023 07:01:01 GMT
Date: Sat, 04 Feb 2023 05:55:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3904
Expires: Sat, 04 Feb 2023 07:01:01 GMT
Date: Sat, 04 Feb 2023 05:55:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 27936
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 28531
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 28213
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 27936
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:47:06 GMT
age: 29331
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b9c67fbf2d207afec78eb14b95d7ec
c0b7e9e9ca9ee71761489e738a3a308ff0b6e5c8
42ddfef2fc1e0200a1ff3d615fd6da42fd8bdea4551344580c13af07092d401f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa139f02-bb4d-4058-8a17-82e241e61bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5917
x-amzn-requestid: 095185b4-b608-4ac8-9041-6e5fcf9033d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW_EA4IAMFxVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f9-1d780a2a58fcc30613bdfdab;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -4TwLeMENj7WdI_QQWKgwxTj9MldN5z7qmo7_OX_eXIVba9zjDEoaA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:11:25 GMT
age: 27872
etag: "c0b7e9e9ca9ee71761489e738a3a308ff0b6e5c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3106
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Last-Modified: Sat, 04 Feb 2023 05:04:12 GMT
Server: ECS (amb/6B95)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3471d2f3669afa8e09a035baa80ab899
ef0877f7bb2d543724516cfc38f7451783206cdd
086a6e67ca882c5ce9a3c04d1b7536e8e911aa99b4e32b4a6cbe47b74efebafd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3106
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Last-Modified: Sat, 04 Feb 2023 05:04:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
142.250.74.164200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 8534ea093dd2b64a1acc25ef2164332a
8d8121017ad77bbb6f5a01733566abec063096e8
f666cec39400ad1bf6b56c2a8d87f9423d555a6a96cb897380a084e0e8d5ee34
GET /recaptcha/api.js?render=6LdxeuoUAAAAAP6iiKD6JZKojOflG8Z_w0Ebx6LC HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 04 Feb 2023 05:55:57 GMT
date: Sat, 04 Feb 2023 05:55:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8115
Expires: Sat, 04 Feb 2023 08:11:12 GMT
Date: Sat, 04 Feb 2023 05:55:57 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 90 kB IP 216.58.211.3:0
Hash 597049be0b1eeb62c9726f2fd02e82c6
12f013df75046a901a548801347cd5cb37dab2f9
62ea0863803f315bc4f22919a200365666879d1b2adc107f23227a5464db9ba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
142.250.74.174200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-N6QHJQM
IP 142.250.74.174:0
File type ASCII text, with very long lines (1759)
Hash 364b221d7cda35902ecac7939115a82f
15f57476682dd6f7281a7f970f788ceba985c20d
db478dd6c908f982e31386d4313324205359c35dd510a9246591921d0686f4ce
GET /optimize.js?id=OPT-N6QHJQM HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 05:55:57 GMT
expires: Sat, 04 Feb 2023 05:55:57 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44314
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shopify.com/s/files/1/0615/6189/7150/products/Designsemnome_64_78427e71-e11d-4f8a-a6ac-395f537b48af_250x250.png
23.227.60.200200 OK 12 kB URL HTTP/2 cdn.shopify.com/s/files/1/0615/6189/7150/products/Designsemnome_64_78427e71-e11d-4f8a-a6ac-395f537b48af_250x250.png
IP 23.227.60.200:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ISO Media, AVIF Image\012- data
Hash d439f5b2c956c188b2b1417d3eab0be5
aa8694b9ce957ac212c46b8935d6e578ab0a3d11
b84af82a6725f428662cbacfc5446cb8c731f41b71befbe40ba7800da2fb8248
GET /s/files/1/0615/6189/7150/products/Designsemnome_64_78427e71-e11d-4f8a-a6ac-395f537b48af_250x250.png HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:57 GMT
content-type: image/avif
content-length: 12496
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0615/6189/7150/products/Designsemnome_64_78427e71-e11d-4f8a-a6ac-395f537b48af_250x250.png>; rel="canonical"
source-length: 837776
source-type: image/png
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 03b7c983-7a83-46af-9a22-25d4fe987dea
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,gcp-us-east1
last-modified: Fri, 03 Feb 2023 21:26:49 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fT%2FUACh6Oq%2FVj2A5wTqHCs123pMVdv%2BakyUdTs%2BAn0EBHLCuq8TYGF2h5ms635ae5FOsPc5qctrNDYyq4sBGh1XwH8c73dxFkoeKjFh8RfF4984UviFJTSxzGfdrAXurag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=722.097, imageryFetch;dur=78.348, imageryProcess;dur=541.649;desc="image", cfRequestDuration;dur=157.000065
server: cloudflare
cf-ray: 7941290d986eb505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8de6c9e6cb2ee325eeac5809f781f7a9
504b1f5d5c40809063d88ea27a01ceccdcdd66d5
11377b0162a72c549688be1f2b03dbee2ee84c7e15c64c1079662bfdf338a052
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Etag: "63dbd2fa-118"
Server: ECS (amb/6B8A)
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b8ab867e6005f1cd323eae9f98fed36f
a9b6fc6d69ddc6c3abddc06eb395becf1350ba5e
8763c06fd7ef48de71c0594d782aad17845ddf264d4f01c93a379072f2f78cd5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8763C06FD7EF48DE71C0594D782AAD17845DDF264D4F01C93A379072F2F78CD5"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8115
Expires: Sat, 04 Feb 2023 08:11:12 GMT
Date: Sat, 04 Feb 2023 05:55:57 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-WWM7399
142.250.74.40200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WWM7399
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash 4a09b1bc3f3fa6e1d037ceeaf890d076
8d95dd09fd3555d7210c6c20e603cdf6b00759e4
8efd34cd64e2fc373cf5ef6d0e602da46f4598df3ab1d6b4c8e0bcd3659d525e
GET /gtm.js?id=GTM-WWM7399 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 05:55:57 GMT
expires: Sat, 04 Feb 2023 05:55:57 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46233
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:13:11 GMT
expires: Fri, 02 Feb 2024 00:13:11 GMT
cache-control: public, max-age=31536000
age: 193366
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 63b7ecdf44933ad5b0cf92c6bcd64aa6
8bbe78fd1ef82a3393832bd076b8409137cf67e0
560acfb6dc2299b5b9713fd3858ff19a9267018f4779e1cb7aa3419c0de4118c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:57 GMT
Etag: "63dd17b8-116"
Expires: Sun, 05 Feb 2023 14:18:32 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:32 GMT
Server: nginx
Content-Length: 278
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 63b7ecdf44933ad5b0cf92c6bcd64aa6
8bbe78fd1ef82a3393832bd076b8409137cf67e0
560acfb6dc2299b5b9713fd3858ff19a9267018f4779e1cb7aa3419c0de4118c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=116555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:58 GMT
Etag: "63dd17b8-116"
Expires: Sun, 05 Feb 2023 14:18:33 GMT
Last-Modified: Fri, 03 Feb 2023 14:18:32 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 6c3eb064d03373ee5151d7fcc22f1d86
3df00d6dbfec3c902b5f5887c6c185cb64eb652a
e053161d9c696d0f3e6e5ce011546d9673e646981a28167aa2dfccd2878ac7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142922
Date: Sat, 04 Feb 2023 05:55:58 GMT
Etag: "63dd667c-1d7"
Expires: Sun, 05 Feb 2023 21:38:00 GMT
Last-Modified: Fri, 03 Feb 2023 19:54:36 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VbO9vfHmqKS1gWoythCBZRNKiK0lVbdsv_fWNNPjChnj9t1YWUldag==
Age: 6204
fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
142.250.74.138200 OK 78 kB URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;700&display=swap
IP 142.250.74.138:0
Hash 08d46a31a0ea29e719aee2af0e81a1e9
c9696053530ee0b413885182eab6c8ae3b6938f1
bc0114f017cc25243f29c987cb3145399993e35b520a635ce9e5c3f8e3b31d39
GET /css2?family=Rubik:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 05:55:57 GMT
date: Sat, 04 Feb 2023 05:55:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.yampi.io/ana/ana.min.js?t=1675555200000
104.18.15.227200 OK 2.8 kB URL HTTP/2 cdn.yampi.io/ana/ana.min.js?t=1675555200000
IP 104.18.15.227:0
File type ASCII text, with very long lines (7571)
Hash 8c3e9458d420450fdf564c3f43848098
e4e8a532fc488cdb4c9cd444b632b6aa3f41fa7f
54c5426f5245f46b529a61c7f7a443ed8122df4297ab0375ed69c57a3a7fcf20
GET /ana/ana.min.js?t=1675555200000 HTTP/1.1
Host: cdn.yampi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: application/javascript
x-amz-id-2: Y4HCWoota7bOp6v/moCK5H/WC/r+RmQIUlHlg2BZxLVNlT66IrLLzi2s5jtzRim+yxXTE1tpHPQ=
x-amz-request-id: 066Q4S32AQQVQNV7
last-modified: Sun, 26 Jun 2022 23:28:17 GMT
x-amz-version-id: QVByH4DoJS5uOcK0PZ6NhcCV1oJEdR5U
etag: W/"e7cabc20ce5d56c20d8c4577a36e2525"
cf-cache-status: HIT
age: 3326
expires: Sun, 04 Feb 2024 05:55:58 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7941290fad35b4fd-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png
52.95.165.66200 OK 31 kB URL HTTP/1.1 s3.sa-east-1.amazonaws.com/king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png
IP 52.95.165.66:0
File type PNG image data, 512 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ecf4f2e6b6d9dcf8d957a8644390346b
f2eea0acd3fc6a4cb627fd5f716c2fcbc9a2c627
e69e62e673c41372a0327fda36146d4253269a7b900216848a8877027f9ec8b2
GET /king-assets.yampi.me/dooki/62f437984fc49/62f437984fc4b.png HTTP/1.1
Host: s3.sa-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: JtE3EoeD70r9DUd/NDSSfZJi2YVTWT3lLhyuVIPczuARxki+p498lnaiTArKFlWLYqV4F7dNoxc=
x-amz-request-id: EHP59WBTA8K1BCWG
Date: Sat, 04 Feb 2023 05:55:59 GMT
Last-Modified: Wed, 10 Aug 2022 22:56:25 GMT
ETag: "ecf4f2e6b6d9dcf8d957a8644390346b"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 31251
seguro.liquidashoes.com.br/cart/recomm
170.82.173.30200 OK 1.4 kB URL HTTP/2 seguro.liquidashoes.com.br/cart/recomm
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash e8449289bd4d6360fae92ab21c597882
118d030cdea4a56636646114a82a94e80710e2fb
b537fe864cd80b485a6d29036a1707c1794988d3ae2ad8d37291fd5391379990
Analyzer Verdict Alert fortinet Phishing
GET /cart/recomm HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjE0MmRkMGZmMGZjZDE3OGEiLCJ0ciI6ImI5NTM0MDUyMTY5MTc2ZTI3YjMyYjJjNzE2MjQxOWIwIiwidGkiOjE2NzU0OTAxOTIyMjN9fQ==
traceparent: 00-b9534052169176e27b32b2c7162419b0-142dd0ff0fcd178a-01
tracestate: 2935249@nr=0-1-2935249-1134170823-142dd0ff0fcd178a----1675490192223
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndVV3F0WlNiOVFxckp0NzBaeFl4SWc9PSIsInZhbHVlIjoiTTZod3RpWHNnUFZkNUN6cThQUHZiNXlZV1JDRmRidzljZlZzdHY0RTY0eVwveGhObFVLM2pIVVBJZ0ZaZ28zYlRjWUcxYXEwWXBTc05naVhMXC9XaDBMZz09IiwibWFjIjoiZmJlY2NjZDM3MDg5NjhhMDhmMTE1YWVkMzIxNDZiZDMyMmM5MTI5ZDk5YTBjZWI3OTFjNGJlODkxMjM4NmM1NSJ9; bubbstore_checkout=eyJpdiI6IjJORnRkZFwvRlY0R1lXek41dHo1c2tRPT0iLCJ2YWx1ZSI6IkJTeVFtcWxxaWhPcWdIdFNVdHUyU2NsV1ZkdXFGK0NzaU1YVmQ2T01EajNQcHlMR2hvUVBuaUNhbkdpQXd3R1MzWGRnbW9GRTdMNjRuMXB2MjlaMGdBPT0iLCJtYWMiOiI4NzhlMTdmNDM5NWEzMmUwNmU3OTU2MWE4MWQyMjYxZTMwNjY2ZjI5M2M3ZTU2NjllMWVkNjRjZjU1MWFkZTk3In0%3D; liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; cart_auth_311433890=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: application/json
x-protected-by: Sqreen
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6IjBZRnhYc3oxWXhyRkliSVwvMHpcL05EQT09IiwidmFsdWUiOiI5b3FPYlZlSTE2MnExSTdUMXdaV1NpVkZkZUtkbzJiVUl4NitXOTZSQWx2RzJTS3hyaDVTaG9mTnZObmJlamF2S0g0QmNwaXV6bEY5UVBiU1JTVlJRZz09IiwibWFjIjoiODg2MTRiZGRiZTMxYTM4MTIxOGZhZThmNmIyMWQyMTc2ZjRmNjJlMmEwNzhiZmM5NDYwOTllNzRlODI3YWJhMiJ9; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Ik42ZGlSRHhYbXhtNXNtU1pCTnMxbWc9PSIsInZhbHVlIjoiMXk0Y0FlZnY5SGgyU3VXNmVhK1Y4VVRGK0ZhbFZQNWpCV2toZWhSYjN0TCtrVW1ucnY4QklOS25QRHB2Z3hKMXI0VXV2UjlHQXo5OFREY0R3OEt6bFE9PSIsIm1hYyI6Ijk4NGI1ZDlmMDMxMjljZDM4ZmVmZDQwYTUzNGIzNmI0ZWI5NTdmZjJjODJiYmM5MDM5ZDUzYzdhOTY1YTRkZTUifQ%3D%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFtSQhBPEFJSWAsJExoDTFZTUgBSFFIWCAYEBVMVTABNEVJUDlRZUwcLBQVdUVADBQJESFdXXxEDPg==
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2482
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:58 GMT
Last-Modified: Sat, 04 Feb 2023 05:14:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
region1.google-analytics.com/g/collect?v=2&tid=G-D2W70TYMLK>m=45je3210&_p=1754914483&cid=693248753.1675490193&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675490192&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-D2W70TYMLK>m=45je3210&_p=1754914483&cid=693248753.1675490193&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675490192&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-D2W70TYMLK>m=45je3210&_p=1754914483&cid=693248753.1675490193&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675490192&sct=1&seg=0&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&dt=Finalizar%20compra%20-%20Liquida%20Shoes&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Sat, 04 Feb 2023 05:55:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/e/t
170.82.173.30200 OK 20 kB URL HTTP/2 seguro.liquidashoes.com.br/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
File type ASCII text, with very long lines (1490)
Hash 87b176cb4efd6756bddb2d76d458f591
9522d7196cdaf257ebf61c5dcce3055fb417a1f3
7502ec0ec1283c393f94b6ec8da7f7bb103a75e2d066f1a7469b92066c57b1e8
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjIyMmVhZTZiMzMyNTA4YzgiLCJ0ciI6IjZiYjI0N2YzNTdkYTNhZjhhZjRlM2VlMWY1ZDI3MTYwIiwidGkiOjE2NzU0OTAxOTIyNDV9fQ==
traceparent: 00-6bb247f357da3af8af4e3ee1f5d27160-222eae6b332508c8-01
tracestate: 2935249@nr=0-1-2935249-1134170823-222eae6b332508c8----1675490192245
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 366
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndVV3F0WlNiOVFxckp0NzBaeFl4SWc9PSIsInZhbHVlIjoiTTZod3RpWHNnUFZkNUN6cThQUHZiNXlZV1JDRmRidzljZlZzdHY0RTY0eVwveGhObFVLM2pIVVBJZ0ZaZ28zYlRjWUcxYXEwWXBTc05naVhMXC9XaDBMZz09IiwibWFjIjoiZmJlY2NjZDM3MDg5NjhhMDhmMTE1YWVkMzIxNDZiZDMyMmM5MTI5ZDk5YTBjZWI3OTFjNGJlODkxMjM4NmM1NSJ9; bubbstore_checkout=eyJpdiI6IjJORnRkZFwvRlY0R1lXek41dHo1c2tRPT0iLCJ2YWx1ZSI6IkJTeVFtcWxxaWhPcWdIdFNVdHUyU2NsV1ZkdXFGK0NzaU1YVmQ2T01EajNQcHlMR2hvUVBuaUNhbkdpQXd3R1MzWGRnbW9GRTdMNjRuMXB2MjlaMGdBPT0iLCJtYWMiOiI4NzhlMTdmNDM5NWEzMmUwNmU3OTU2MWE4MWQyMjYxZTMwNjY2ZjI5M2M3ZTU2NjllMWVkNjRjZjU1MWFkZTk3In0%3D; liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; cart_auth_311433890=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjlqYkxmcXo1SEhTSEVyTnRKQTVpMFE9PSIsInZhbHVlIjoiMEZCWXN4Vys5TjNKVERFWHQ0SUpEWHg3OWZmbGNxMFNFY0dUMWxJSUJRdUFTNFdPa2lRQ1UwSGJYeE5OWkFTSk1QamNnSzZOTHJkOElOdGpMUEZ3RUE9PSIsIm1hYyI6ImQwYmYzNzk3MmM5OGYzMWVjZDNiNTIyMDNhMjc1MGJiZTdhNzg3Y2E2MDc0NDczYTE0MDJjZDhhYjUyY2EyNWMifQ%3D%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6Ik9FcmtnYXU1Nm1XVWlkSXByRnkreVE9PSIsInZhbHVlIjoidEZlNGpsK054WkdreE9wTnJhajI2SlpJTHpkdDBkYVpTYTVxOWcwSXlabWJuTWZqSVdmblJYR3FVbktqUWJoWERKOHNCSUV2aHhDMUlzZk10Y0xvUkE9PSIsIm1hYyI6ImVkZWQ0MzJlZjQxY2ViMzAwNjczZWU1ZTNkNTM1ZmVjYjUxYWZjYmNmZWQwMDIwOWQ1MzY0MDBlNGViY2IyN2YifQ%3D%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86THlDQDg9KkNFRzo4clldFhQMDlwHShFkZGRTVABKIl4PRxALWlsEFCNMQVEHCgtZVhVKVB8GA1JWU04ATApTDggMHh5UFUMEUQUHAQMGBFYGDwYEUFdRFR1RBwhCU24=
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 334967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: PbaPGAItfpfQKSrkiMR67kAfdtNgqKEE2mwROiBKfGCvvHE9zvGgT6zT0XphqzKdLEnsyOs1cDUdWBOQVkCbpA==
content-length: 27843
x-fb-trip-id: 1904183273
date: Sat, 04 Feb 2023 05:55:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.96200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pVDyhwCgGuHQnQJoA3M2kEdzPmLV_SrI9LiAJxZcEtKFqvGxphkBcw==
age: 60352
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEATAAAAACAAI~&jid=705847771&gjid=1302042012&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1&_slc=1&z=1512320689
142.250.74.46200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEATAAAAACAAI~&jid=705847771&gjid=1302042012&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1&_slc=1&z=1512320689
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEATAAAAACAAI~&jid=705847771&gjid=1302042012&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1&_slc=1&z=1512320689 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=KCHAAEATAAAAACAAI~&jid=939814363&gjid=349876291&cid=693248753.1675490193&tid=UA-45745009-32&_gid=158607412.1675490193&_r=1&_slc=1&z=1848663712
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=KCHAAEATAAAAACAAI~&jid=939814363&gjid=349876291&cid=693248753.1675490193&tid=UA-45745009-32&_gid=158607412.1675490193&_r=1&_slc=1&z=1848663712
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=KCHAAEATAAAAACAAI~&jid=939814363&gjid=349876291&cid=693248753.1675490193&tid=UA-45745009-32&_gid=158607412.1675490193&_r=1&_slc=1&z=1848663712 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IAHAAEATAAAAACAAI~&jid=463060453&gjid=1052107650&cid=693248753.1675490193&tid=UA-45745009-5&_gid=158607412.1675490193&_r=1&_slc=1&z=1967364457
142.250.74.46200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IAHAAEATAAAAACAAI~&jid=463060453&gjid=1052107650&cid=693248753.1675490193&tid=UA-45745009-5&_gid=158607412.1675490193&_r=1&_slc=1&z=1967364457
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IAHAAEATAAAAACAAI~&jid=463060453&gjid=1052107650&cid=693248753.1675490193&tid=UA-45745009-5&_gid=158607412.1675490193&_r=1&_slc=1&z=1967364457 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aCHAAEATAAAAACAAI~&jid=1086531472&gjid=1469363596&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1>m=45He3210n81WWM7399&z=1958078867
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aCHAAEATAAAAACAAI~&jid=1086531472&gjid=1469363596&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1>m=45He3210n81WWM7399&z=1958078867
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j99&a=1754914483&t=pageview&_s=1&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&ul=en-us&de=UTF-8&dt=Finalizar%20compra%20-%20Liquida%20Shoes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aCHAAEATAAAAACAAI~&jid=1086531472&gjid=1469363596&cid=693248753.1675490193&tid=UA-160286241-2&_gid=158607412.1675490193&_r=1>m=45He3210n81WWM7399&z=1958078867 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2483
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Last-Modified: Sat, 04 Feb 2023 05:14:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9OKItsnjGhyKuUb3s3fu7VROA2vM2J51AYUNBKJjWJIxpTjYbxSLkA==
age: 60353
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
seguro.liquidashoes.com.br/api/v1/pixels/events
170.82.173.30200 OK 492 B URL HTTP/2 seguro.liquidashoes.com.br/api/v1/pixels/events
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash a833aaa52e018088f1786d1a58fd4ce7
2a9890894c4301635c063b73ec6630ee5d8f8709
cb46fe7ace2db30f49135955e75d4e58019fe47bbdcda9b5f3a9c9e8b72761eb
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6ImQ4NDMyZTZhZWY0NGI5MTIiLCJ0ciI6IjQxZWNjYjI2Yjg1N2E3ZjY0NWNiNDhjNTc0MmE4ZTAwIiwidGkiOjE2NzU0OTAxOTIyNDJ9fQ==
traceparent: 00-41eccb26b857a7f645cb48c5742a8e00-d8432e6aef44b912-01
tracestate: 2935249@nr=0-1-2935249-1134170823-d8432e6aef44b912----1675490192242
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 249
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndVV3F0WlNiOVFxckp0NzBaeFl4SWc9PSIsInZhbHVlIjoiTTZod3RpWHNnUFZkNUN6cThQUHZiNXlZV1JDRmRidzljZlZzdHY0RTY0eVwveGhObFVLM2pIVVBJZ0ZaZ28zYlRjWUcxYXEwWXBTc05naVhMXC9XaDBMZz09IiwibWFjIjoiZmJlY2NjZDM3MDg5NjhhMDhmMTE1YWVkMzIxNDZiZDMyMmM5MTI5ZDk5YTBjZWI3OTFjNGJlODkxMjM4NmM1NSJ9; bubbstore_checkout=eyJpdiI6IjJORnRkZFwvRlY0R1lXek41dHo1c2tRPT0iLCJ2YWx1ZSI6IkJTeVFtcWxxaWhPcWdIdFNVdHUyU2NsV1ZkdXFGK0NzaU1YVmQ2T01EajNQcHlMR2hvUVBuaUNhbkdpQXd3R1MzWGRnbW9GRTdMNjRuMXB2MjlaMGdBPT0iLCJtYWMiOiI4NzhlMTdmNDM5NWEzMmUwNmU3OTU2MWE4MWQyMjYxZTMwNjY2ZjI5M2M3ZTU2NjllMWVkNjRjZjU1MWFkZTk3In0%3D; liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; cart_auth_311433890=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ijl2WHY5dU42VFgrOTFZSHFTdlpkdWc9PSIsInZhbHVlIjoidDQrdmpHYXhETkZLXC9SMjN1bXBSUUtZZldFOEgrTDFGK1hLSjBUYWpibkNQMktGWHJhTk1jTGdMM2VmWG54ZFRrYXZWb0FcL1o4Y3pLbWRBd1Y4ZUhpdz09IiwibWFjIjoiZWQ1NWQyZDYxN2VjM2VmZGFiMmIzNWE5MjA2MWRkNTg0OTViY2YwMDFmZjNmOTBkOGQwNzBkYzE0ZDliMjUwMiJ9; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkVHZVl3OFJwZlB6THBUVGVRVzlLbFE9PSIsInZhbHVlIjoiK1hzc0VtQ04zZlo2eXZydHJiTEViNlNaWWhxVFpsZDRVeFpzemFpVVFFazk2WUpkd2pIdUpmRThubnVVUDhcL1hkTDJZNmYrQXRcL0QzVytSanNJSGtBQT09IiwibWFjIjoiMWE2M2E1NTgyZjcxMWI1YmEyYjcwZmVjNDIzMGJiNDZlYWEyZTEzMzY5OWU2MDNlMzgzMGZkM2YwZTk2MzQ4YSJ9; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFlDWUoRC09UWxVKRURSAQ0KDFdAFFIWCAQCA1UVUR9QAFJWDxtMV08aAgVQUlEPVA8HXFAAAVdfWkAcBFkOS11p
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&gjid=1302042012&_gid=158607412.1675490193&_u=IADAAEASAAAAACAAI~&z=1381770262
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&gjid=1302042012&_gid=158607412.1675490193&_u=IADAAEASAAAAACAAI~&z=1381770262
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&gjid=1302042012&_gid=158607412.1675490193&_u=IADAAEASAAAAACAAI~&z=1381770262 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&gjid=1469363596&_gid=158607412.1675490193&_u=aCHAAEATAAAAACAAI~&z=1564806493
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&gjid=1469363596&_gid=158607412.1675490193&_u=aCHAAEATAAAAACAAI~&z=1564806493
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&gjid=1469363596&_gid=158607412.1675490193&_u=aCHAAEATAAAAACAAI~&z=1564806493 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=693248753.1675490193&jid=463060453&gjid=1052107650&_gid=158607412.1675490193&_u=IAHAAEATAAAAACAAI~&z=811466351
64.233.165.156200 OK 110 kB URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=693248753.1675490193&jid=463060453&gjid=1052107650&_gid=158607412.1675490193&_u=IAHAAEATAAAAACAAI~&z=811466351
IP 64.233.165.156:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110181 bytes)
Hash 1be70ba246df836e921dabadc00e49db
0a82c904c5c55db1cb69a4fb182fbbc60af963e2
f5b8185448eaf50f2ef833e70e2988d1b361d406eb6702aa48b6caaa01604925
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-45745009-5&cid=693248753.1675490193&jid=463060453&gjid=1052107650&_gid=158607412.1675490193&_u=IAHAAEATAAAAACAAI~&z=811466351 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://seguro.liquidashoes.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&_u=IADAAEASAAAAACAAI~&z=1384730610
142.250.74.163200 OK 110 kB URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&_u=IADAAEASAAAAACAAI~&z=1384730610
IP 142.250.74.163:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110222 bytes)
Hash bb4ce2546f3c4eb1e1c59fcbb7951eb5
16af81c81ee79718965723cb469a2bfc869f4354
7c4184707a397143075c5d833a0d08d8a62d4c3409162a0a3b531a5d940f3a47
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=705847771&_u=IADAAEASAAAAACAAI~&z=1384730610 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&_u=aCHAAEATAAAAACAAI~&z=1271536991
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&_u=aCHAAEATAAAAACAAI~&z=1271536991
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-160286241-2&cid=693248753.1675490193&jid=1086531472&_u=aCHAAEATAAAAACAAI~&z=1271536991 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 05:55:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:55:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195017&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 551 kB URL HTTP/2 www.facebook.com/tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195017&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
File type gzip compressed data, from Unix\012- data
Size 551 kB (551000 bytes)
Hash 298979de7358b5e888fd6af8f1ab2453
b299a99d8791b93f953bdb82e7b6dfc6cb2d7373
46840f817b2221fd5ec0e078baf28bc9d86dab43691350b8bd1d765dd182c81f
GET /tr/?id=2023778768012994&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195017&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd
170.82.173.30302 Found 71 kB URL HTTP/2 seguro.liquidashoes.com.br/checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Hash 42a2e22b7bffb0d4aae665eafa9845d2
6b01f2f5c74fc0006e1a88695bf9a2ee69ea4e30
0778c93eefaabf383f832da5037a1723429c7d7fead767a9cfa803e409be9425
GET /checkout/payment?cart_token=shopify-781de93709a9b8a3c35abefbb15aac33&utm_source=SMS&utm_campaign=Carrinho+Abandonado+1&forceCheckout=1&skipToCheckout=1&store_token=898506b184a7362a0be5055399a9852ae782876a&customerToken=1ec02030-a420-11ed-96fa-ed2bb187c2fd HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 04 Feb 2023 05:55:56 GMT
content-type: text/html; charset=UTF-8
location: https://seguro.liquidashoes.com.br/checkout/address
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6IjZmc21HY2loQkJudWtIMjZ6K3c0YkE9PSIsInZhbHVlIjoiM1REREdOSGZTVFFBU0toMkFyc2doZktSMWZEeGgyMVNUMHFUUFR5d3BUMUN6UXJ3ZGp2XC9jUEhITFFxcjFkTFFJY1RjeEk1ZVZqMGVTODhBb05CNnh3PT0iLCJtYWMiOiIxYTNjYjNmNjkwYWU5MTg2MTYwNDVmZGNiMzk1NThmMTdiMTg1NGZlNGU5N2RiMTZhMTI2ODY4ZDVlNmMzNTYyIn0%3D; expires=Sat, 04-Feb-2023 08:55:56 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6InJHVkhFdWRxeHRTd0lmSFdyRE9Gc3c9PSIsInZhbHVlIjoidUlmbWNRaUczQm9ZR3ViQzNzMW4wcW1uMm9WbHRmVXVLYndEbTZOcE85WEIyZ1FcL3R2WlwvMDJjdHBrSkR2R3dNWVJDekF4UXJ5cTdXSXJJemJlTjlQQT09IiwibWFjIjoiZWM4ZDA3YTgyMTViNjg5NzQ0ZWNkM2Y4YmNmZGY2NjdjYTVjNDIxNWQ5MGFmNjg5ZDAyN2JlYzEwNmY2OWE3NCJ9; expires=Sat, 04-Feb-2023 08:55:56 GMT; Max-Age=10800; path=/; httponly
liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; expires=Thu, 09-Feb-2023 05:55:56 GMT; Max-Age=432000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195047&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_dj7lybhq8&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195047&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_dj7lybhq8&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=468457408732251&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195047&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_dj7lybhq8&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195028&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195028&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1099006614145513&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195028&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195034&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195034&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=468457408732251&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195034&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195036&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_o33egrrnf&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195036&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_o33egrrnf&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=2023778768012994&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195036&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_o33egrrnf&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195038&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_61vf5e85o&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195038&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_61vf5e85o&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5651366961619169&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195038&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_61vf5e85o&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195040&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_jxw58clb4&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195040&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_jxw58clb4&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=868944427431764&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195040&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_jxw58clb4&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195041&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_0q5x9qw77&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195041&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_0q5x9qw77&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1164386914177040&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195041&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_0q5x9qw77&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1099006614145513&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195042&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_4o6fl6oxy&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1099006614145513&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195042&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_4o6fl6oxy&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1099006614145513&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195042&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_4o6fl6oxy&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195044&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_8qgqjhopl&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195044&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_8qgqjhopl&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1125448238175204&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195044&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_8qgqjhopl&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_u44pnvtp3&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_u44pnvtp3&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1871385783226516&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_u44pnvtp3&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_zu1d4oobt&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_zu1d4oobt&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=613818883834321&ev=InitiateCheckout&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195046&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=InitiateCheckout_zu1d4oobt&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195021&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195021&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=5651366961619169&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195021&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195024&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 112 kB URL HTTP/2 www.facebook.com/tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195024&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Size 112 kB (111993 bytes)
Hash fbadb24f5ff42907688ff7302eff151c
10c300c0a1bb855c7d2708c38532448c630227c0
81672f3432f4f28cded0a0a858422f438a14ab0c42d6ff55e51bec3eed68ed8e
GET /tr/?id=868944427431764&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195024&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1164386914177040&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195026&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1164386914177040&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195026&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1164386914177040&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195026&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195030&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 110 kB URL HTTP/2 www.facebook.com/tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195030&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110260 bytes)
Hash 49b5163f88d294123ba4e44e5da0e41c
5f8b90a2f5530f9b311426a5ab49591fe1a01142
691a286458649d44126cdafa7e780f7ace2e49ac40c080711cdc39e24325f87b
GET /tr/?id=1125448238175204&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195030&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195031&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195031&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1871385783226516&ev=PageView&dl=https%3A%2F%2Fseguro.liquidashoes.com.br%2Fcheckout%2Faddress&rl=&if=false&ts=1675490195031&cd[content_ids]=%5B%227455632851134%22%5D&cd[content_type]=product_group&cd[value]=179.9&cd[currency]=BRL&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=29&cs_est=true&fbp=fb.2.1675490195015.1724053351&it=1675490193302&coo=false&eid=PageView_gma7jj3dp&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 05:56:00 GMT
X-Firefox-Spdy: h2
js-agent.newrelic.com/692.215647de-1223.js
151.101.66.137200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/692.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (2024), with no line terminators
Hash 1dc08a1beb61f5f16d5972c0bee130e4
9f79e0cdf3d763c3caa0c0be870c86b2d64a8dc9
cdd769feea442da1672ab541a2d9846e1561520bb24484e8ee09d1d5d17570f0
GET /692.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2yt9zIT4kPGAHbZR3GCMZ5QoLheWqVlcJX0f/njjzvUTTdDRBkBy06VpOX/u//lzjAgeAveu2U8=
x-amz-request-id: 29B921PPM35DC69W
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "2a9c8457fef96067bf92a4ec54fb10b8"
x-amz-version-id: I.n_PBR7fU5g2cmlAwgMlzr4Oik5bP_f
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1806
x-timer: S1675490161.022333,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1087
X-Firefox-Spdy: h2
js-agent.newrelic.com/112.215647de-1223.js
151.101.66.137200 OK 2.8 kB URL HTTP/2 js-agent.newrelic.com/112.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (7285), with no line terminators
Hash 51f26008d21e2bd91b8a9baa4c356ab9
59888996bcb03c11b1d2e61a868009e57846b8cb
feebd27b271ee3a7198d3dbc69610281a43503080d724ec0fcb7c4bfa13d42f6
GET /112.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 89jhP8k1dPBysMYdCzqbzxQ1KxABx3MYRt9LPVpreRIcgdqnpH5bT0LvyouOsXZFM+UKIfDjy0I=
x-amz-request-id: 29BA48WT782NR5G3
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "b225b095bddb200dcb67ba7625a14e0b"
x-amz-version-id: 9bSPwe8fMEYRcVSv2EMBWMHRAeUObfWk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1075
x-timer: S1675490161.022840,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2800
X-Firefox-Spdy: h2
js-agent.newrelic.com/960.215647de-1223.js
151.101.66.137200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/960.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (4860), with no line terminators
Hash e760ffc71afd5bd3c903e8f29818c668
11e73304cc011c73068a27c4ae873eb2adf85f7d
b3128fc00ad75d145325e82722ae64fb77919f398989850180eb5a821cbd4504
GET /960.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: gNdtGXUJfleX+6Y/31csogbPXnzsvAdQ2x0ORpMeZLnvhbSRfapicWEnWrmVHTcguxNTc34ROLE=
x-amz-request-id: 29B7ET22KYPXWQTJ
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "57e420fb6a7c52d0c27d5548fef4de16"
x-amz-version-id: iCdpSHjuiF_zf7kNvVpWKcwVkVeojeJa
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 858
x-timer: S1675490161.022980,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2233
X-Firefox-Spdy: h2
js-agent.newrelic.com/307.215647de-1223.js
151.101.66.137200 OK 3.6 kB URL HTTP/2 js-agent.newrelic.com/307.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (9700), with no line terminators
Hash ee729b93fd1e54d7c6108a4a252b67a2
e87fca8b97e56a89980ad6eb488ef1ac50116366
b48a5e5b92d4d04becc06d85a678fffe33bf31611398c217ec232171f6d11f8f
GET /307.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: xbAyM3B6Z/Ooy6PMw2GgjfE/Ir1lbwXjKVU7JKeSJnjmMgE/GpUd1AOACsKLCPxaWbQWAHrYzE0=
x-amz-request-id: KRHE8V2CFA00B292
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "cca13aa273adc25aced599968bea0601"
x-amz-version-id: ED2qEQGkNHGjLDyC2ELlsbsj8AXnsN9k
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 892
x-timer: S1675490161.023214,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3648
X-Firefox-Spdy: h2
js-agent.newrelic.com/817.215647de-1223.js
151.101.66.137200 OK 1.0 kB URL HTTP/2 js-agent.newrelic.com/817.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (2422), with no line terminators
Hash f899718de7c8c66eeb4bbfa0c22acf5e
ec2a6857256c2ed00c401b4888ff36871baf6b43
809f4867eaf293e35d10315d6e65aa69289d7eee0ab7e8de437b18c2a06fed94
GET /817.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: sWkU684Mr3Z5/fJ2O0srvU3HupQDLlairtucn7ucXJIoplwlZJHmVmeQSK82HUlRykCYQPaNYBk=
x-amz-request-id: 29BE804GA0J43Q99
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "a5dc24e5a104adfcf70621ff7fb620ff"
x-amz-version-id: fbj3lJUaysglBYTWHHCwffYncZ19MQ50
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 889
x-timer: S1675490161.025082,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1044
X-Firefox-Spdy: h2
js-agent.newrelic.com/378.215647de-1223.js
151.101.66.137200 OK 6.4 kB URL HTTP/2 js-agent.newrelic.com/378.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (17828), with no line terminators
Hash d58a3a565fc0bbaf659cdd5bf0c3cd4f
8cd110e6b7199e11de72368b73abb8a3afddfff8
bd6f2c9e271f74ce10d1ad05fdde0fa7bf0ffa34ea85f6076a58e50111df8de7
GET /378.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jhmNL7TL7NMx1UoOR5WpT5kMljdWRrYGpnmm3iqO7tDQcfjU0mie9CCq0LQCgRqufry0GCFQmEg=
x-amz-request-id: 93FTN287CT7M20VW
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "2705e6768fceda2e9c8355d65e268d7c"
x-amz-version-id: tRin0ET_go6ogNo.J2ffgT9M6xH6BEos
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 607
x-timer: S1675490161.028556,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6410
X-Firefox-Spdy: h2
js-agent.newrelic.com/779.215647de-1223.js
151.101.66.137200 OK 3.5 kB URL HTTP/2 js-agent.newrelic.com/779.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (8307), with no line terminators
Hash 411c3ac790a3a8f8f71906adf57df690
ceef347ad1356a868f3c371ffc84c205958aed6d
59a8f0bcbad548fd487a595f4a2c3642268a19437d80096f1f0e3a67301132ac
GET /779.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oJiVqgUxxXTGlb3WHfPODQ+0hnRNaK4Wu3C5q0qzLW1Wy1zUCv3lJDvZMbOZXlmpWlVHYmT68X8=
x-amz-request-id: 29B6GFQJDW5ETZPK
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "1f9dc6167676d6db728e844d20a97ad5"
x-amz-version-id: d0hMUd3mWD9ItciiSIXCSy8OWToOTtsf
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1805
x-timer: S1675490161.029667,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3516
X-Firefox-Spdy: h2
js-agent.newrelic.com/785.215647de-1223.js
151.101.66.137200 OK 2.1 kB URL HTTP/2 js-agent.newrelic.com/785.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (5141), with no line terminators
Hash 7fa55562924d9fae72bef9c581681545
2a9f69db97168913e41c20b42278f0b020f19e02
9ab186c1c3c7132d927edd774e14412550e0127ae67bcf04353f94ce22dd1b5f
GET /785.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +m4UupLkIm012wjkD0AOw3MWK5aT8Y0g0D4hdCiEX5xVgPPr8nsRchoPSx3Y9Rb4NP65eTC0O6I=
x-amz-request-id: 29B11CZV4JJHK42G
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "85340359c90104ea511047eb2b57ebb5"
x-amz-version-id: 24gfKeCbKAAA6djjTUpWk6gRfGGq6MlZ
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1797
x-timer: S1675490161.031093,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2103
X-Firefox-Spdy: h2
js-agent.newrelic.com/823.215647de-1223.js
151.101.66.137200 OK 1.4 kB URL HTTP/2 js-agent.newrelic.com/823.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (3147), with no line terminators
Hash 87de67cddb1db12fc7ee256669fcd9ba
5c882b5cc4bff34d8f4c603d6077f424b442a0df
42e88e7da2ca5f5fbd6fb461147d562a317c22508508c937cc57ad65c04e5986
GET /823.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5Fb4P8xJczd5vSJcDjiJeEIdldSbkECuaWyErtMTeAtEHKfdyrVuRuzSrltAg1+Dqn5ZyguqAlc=
x-amz-request-id: 29B2ND18W5AQM0T8
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "ce7762cf4b6665f79c15503dbccd6c68"
x-amz-version-id: W2tA0gkaWp6JlPnYeFhc2plzNBl_myPN
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1801
x-timer: S1675490161.031472,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1365
X-Firefox-Spdy: h2
js-agent.newrelic.com/325.215647de-1223.js
151.101.66.137200 OK 560 B URL HTTP/2 js-agent.newrelic.com/325.215647de-1223.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (1119), with no line terminators
Hash dbb8514b0fe73ed1c9a3bb94d6bd624b
083e321a63d3e24555e87c564d3b52588ed49ae1
10a720318922a38e6bf41921f3adc6f56bc61f215e251be7f5f37ec991d9b852
GET /325.215647de-1223.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y2K+rpeLF3Ym/3l6sNpa29RWC/g7TNS9+AlxD2Yrljl995Eo6bNRqMUpU5PNsi1SzBJybaX6onw=
x-amz-request-id: 5D6X5R0HEXVCYE0Y
last-modified: Fri, 27 Jan 2023 21:42:05 GMT
etag: "8bfb1318203f2143642fa7f2620e90b9"
x-amz-version-id: TZXfN40R6cv9QsF3fTfxRxppzwQ_LugL
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 05:56:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1803
x-timer: S1675490161.037460,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 560
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 511a81ddc5300e50f0bca90cd2e438d6
28322a98c7e3e738eb5baf49ca9d0f715bab4e77
4370ace82b76df0f6d6c5e82a93fa0c99ae11feea98d95f720faf28c3f407dd0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5033
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 05:56:01 GMT
Last-Modified: Sat, 04 Feb 2023 04:32:08 GMT
Server: ECS (amb/6BB8)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6286&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address&ap=236&be=2758&fe=3395&dc=437&perf=%7B%22timing%22:%7B%22of%22:1675490189019,%22n%22:0,%22f%22:1923,%22dn%22:1923,%22dne%22:1923,%22c%22:1923,%22s%22:1923,%22ce%22:1923,%22rq%22:1925,%22rp%22:2626,%22rpe%22:2626,%22dl%22:2632,%22di%22:3134,%22ds%22:3194,%22de%22:3259,%22dc%22:6149,%22l%22:6149,%22le%22:6168%7D,%22navigation%22:%7B%7D%7D&fcp=3121&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6286&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address&ap=236&be=2758&fe=3395&dc=437&perf=%7B%22timing%22:%7B%22of%22:1675490189019,%22n%22:0,%22f%22:1923,%22dn%22:1923,%22dne%22:1923,%22c%22:1923,%22s%22:1923,%22ce%22:1923,%22rq%22:1925,%22rp%22:2626,%22rpe%22:2626,%22dl%22:2632,%22di%22:3134,%22ds%22:3194,%22de%22:3259,%22dc%22:6149,%22l%22:6149,%22le%22:6168%7D,%22navigation%22:%7B%7D%7D&fcp=3121&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=6286&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address&ap=236&be=2758&fe=3395&dc=437&perf=%7B%22timing%22:%7B%22of%22:1675490189019,%22n%22:0,%22f%22:1923,%22dn%22:1923,%22dne%22:1923,%22c%22:1923,%22s%22:1923,%22ce%22:1923,%22rq%22:1925,%22rp%22:2626,%22rpe%22:2626,%22dl%22:2632,%22di%22:3134,%22ds%22:3194,%22de%22:3259,%22dc%22:6149,%22l%22:6149,%22le%22:6168%7D,%22navigation%22:%7B%7D%7D&fcp=3121&at=GhMHFwpIHx8%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:56:01 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 794129231d01b518-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7221&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7221&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/NRJS-1173a7bb9742e987ab2?a=926985131&v=1223.PROD&to=NlQEYUJSDBFUBkdZWQ8eJ1ZEWg0MGgZbVVUKXhNBHlIGBkcAQEM%3D&rst=7221&ck=0&s=50c53b1f3d09d55c&ref=https://seguro.liquidashoes.com.br/checkout/address HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1043
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 05:56:02 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 794129288ffdb518-OSL
Access-Control-Allow-Origin: https://seguro.liquidashoes.com.br
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
fonts.dooki.com.br/fa/4.7.0/fa.css
104.18.1.53200 OK 0 B URL HTTP/2 fonts.dooki.com.br/fa/4.7.0/fa.css
IP 104.18.1.53:0
GET /fa/4.7.0/fa.css HTTP/1.1
Host: fonts.dooki.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:57 GMT
content-type: text/css
x-amz-id-2: gGNPVnAVZsqONOCg389UDgsIhA1ObjBdpsJMkqSZGddyTo93S8XPm4wvAm36dYfVkX+Cf24ZYFI=
x-amz-request-id: G8BNNJCT1K1R1RT8
last-modified: Sat, 10 Nov 2018 14:21:37 GMT
x-amz-version-id: null
etag: W/"36688de682a76454417c56541b1cf51e"
cf-cache-status: HIT
age: 3326
expires: Sun, 12 Feb 2023 05:55:57 GMT
cache-control: public, max-age=691200
set-cookie: __cf_bm=.oFEI.OIxYH.XI8bUw_dSkd7rxCsMdV_zIWzvV9uZtE-1675490157-0-AWClHk/bcsEc1wUDa4Z/d/eYpa1/RgX8gFh+/XaRW5UqnHCpX+jxXetE0HinXNshcSCwxPkj65PRGTf/phLz8a0=; path=/; expires=Sat, 04-Feb-23 06:25:57 GMT; domain=.dooki.com.br; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7941290e8ff2b521-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/e/t
170.82.173.30200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/e/t
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /e/t HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjE1OWZlZGIyOWFlMGIxNGQiLCJ0ciI6ImEyNjNkNGY4NGEwNmI3ZDI1ZTZjNjA2MGUwNmM4ZGMwIiwidGkiOjE2NzU0OTAxOTIyNDd9fQ==
traceparent: 00-a263d4f84a06b7d25e6c6060e06c8dc0-159fedb29ae0b14d-01
tracestate: 2935249@nr=0-1-2935249-1134170823-159fedb29ae0b14d----1675490192247
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 358
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndVV3F0WlNiOVFxckp0NzBaeFl4SWc9PSIsInZhbHVlIjoiTTZod3RpWHNnUFZkNUN6cThQUHZiNXlZV1JDRmRidzljZlZzdHY0RTY0eVwveGhObFVLM2pIVVBJZ0ZaZ28zYlRjWUcxYXEwWXBTc05naVhMXC9XaDBMZz09IiwibWFjIjoiZmJlY2NjZDM3MDg5NjhhMDhmMTE1YWVkMzIxNDZiZDMyMmM5MTI5ZDk5YTBjZWI3OTFjNGJlODkxMjM4NmM1NSJ9; bubbstore_checkout=eyJpdiI6IjJORnRkZFwvRlY0R1lXek41dHo1c2tRPT0iLCJ2YWx1ZSI6IkJTeVFtcWxxaWhPcWdIdFNVdHUyU2NsV1ZkdXFGK0NzaU1YVmQ2T01EajNQcHlMR2hvUVBuaUNhbkdpQXd3R1MzWGRnbW9GRTdMNjRuMXB2MjlaMGdBPT0iLCJtYWMiOiI4NzhlMTdmNDM5NWEzMmUwNmU3OTU2MWE4MWQyMjYxZTMwNjY2ZjI5M2M3ZTU2NjllMWVkNjRjZjU1MWFkZTk3In0%3D; liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; cart_auth_311433890=eyJpdiI6IitNcVp4WTI1RmRNTmFJXC9nVDFMeXZnPT0iLCJ2YWx1ZSI6InJEb283dGViVEpFK3JpekxKU0NaMXNUUlljZXlIUGoyamRDS3dlSmt2YkUycEN2TVBjZFlpU2dBMFV4QTVCaEJ6MHlGcUpNS2tvTjE4SUZ5eUhOamkyQUtIdlh0b1Z1cStKRENFNk1MOTBUMDlBbDRKaGZRUUl2YjNcL0JJOUJQek1JcmxjcmsxT0xBZVV0bDl3ZVlUb0tvd2JUcUJ2XC8zeFRiMFZhMkxXSExGOUZSQUFaQ244dU8xYmd6bTI1UkluaFk1Q3JtTVFyZzZYXC9nQXhxdWk2OWxHYm5JQUFBbGRSallBamtIVzIrd1dQKzE1NlNMNzRSZFhMeWJBUGhcL0FlZWpzcUc0YUs3bGc1Y3J4U3M4SlBOY0dHdjJDYlliTGNHYkZBQ1U5OGpXblR0a3VuYzRnT3RMZFRIWmV6aUJjU1NzMm9taVBQbHl4SVRqRlI4UHI5djdkNDdtRHZ5amlvUG5QM040XC9SM0dqZUhDc1JIR2ttQVpmcjlTXC9nT2Y2NGxkUzkxTm9VcWxDZ2tzSHRtNjBPMmZLNUV3U3V3XC8zNjVISlExekpyT1ZwVjBzNm16dktsSk1nSEhDVmFxMVZyMW1xdGJnUkJ6WnU0WWFzeEgwNXNockM0S2oyaUNvQVo3citwZlhiMmtCQXlaWHR4QVVlOHlZd3JaXC9XZUhyNDdEdWduZzY0ckhwS1BEbDgrbHZQcUp0Uit6QVUreXJMbHduTUpuZ1V1cW9nMmF0MjNIWmF2eWlJQjF0MVFISmxNc3BrT2dlZmpudFI3RjJ5MHJ5Zm5GQT09IiwibWFjIjoiNmM1ZGRkMzU3ODczODc4Y2IxNTFmYmNjODdkNjBhMDAyODAxZGEwNzk3ODkzOWYxZDA5MTY5YTJmYTEzZjMyOCJ9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6InBmd05JRUZaeFlUTUtPOE9QN0JkQnc9PSIsInZhbHVlIjoic0NuSGN3KythNkVlXC93U2VnTG40dGJ4OFRBY25SMFBlOGFpOVdFU0I3WVcxVFQ2aTRMXC9EUVgweWpHOG5tTm9XbkVHNjFQMHBQR0N4U1JWMHYyMFZoQT09IiwibWFjIjoiODNiZDMxODk5ZjdlM2UzZGE0ZTIyNWJiNzZlZjMyYTUwZDhlY2IzYTRiZjI0NTA5M2FjYjEyNjBlMTE2MTdjZSJ9; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IkNpWm1GT0RpcmFzUVQxQWZpTHZaYmc9PSIsInZhbHVlIjoiMllqbldmYzBkTXpmM05KU3o2YjVxTStId1FDb1NcL0F3OGd1Vk9aK1B0SE9HK3BqR1MyVmVQUXNpYkJtK3k2QXBrMjdjbFZZdXdaTmxzVW5Ib1YrWHFnPT0iLCJtYWMiOiJkYWM1N2RiMGYyMDBjMDZlYTc4ZjBiZmZkZjU4NzU4MDc4ZmM2ZWVhZGJiNDYxMmIyZWI1NzVhZDU1YmI3M2VkIn0%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
172.67.72.14200 OK 0 B URL HTTP/2 awesome-assets.yampi.me/checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5
IP 172.67.72.14:0
GET /checkout/build/mix/assets/css/app.css?id=0f68d2669d40348ccb7bc9a9d17328f5 HTTP/1.1
Host: awesome-assets.yampi.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:57 GMT
content-type: text/css
x-amz-id-2: j/S4cRK7h2RJJ8oPBInTkUyHWMs2uLy5Y2k2gv7J5HVqK6+oYOtQiL9kw5ONDjsNoD1SA2PVHdI=
x-amz-request-id: CW5G8BWSRMPMAXS4
last-modified: Tue, 17 Jan 2023 17:16:35 GMT
x-amz-version-id: 6DNQN8Tr5zNrG9AbFAdSPatqVsIP8Y4C
etag: W/"0f68d2669d40348ccb7bc9a9d17328f5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3326
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yhekX2OZlqRIur6p5fiSvZcn7bbJ2HOK84xpH6Zg4bbH8yAsi1CbcgvbGYAt0dxt3l6i4tI10h0DUtXN5yEOwydRB%2Flk0R14S886VyilYgctL%2BTilOOLDL%2BBb62r9kAMFDfsqXu2AXi0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7941290d09bbb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
seguro.liquidashoes.com.br/api/v1/pixels/events
170.82.173.30200 OK 0 B URL HTTP/2 seguro.liquidashoes.com.br/api/v1/pixels/events
IP 170.82.173.30:0
ASN #266444 3L CLOUD INTERNET SERVICES LTDA - EPP
Analyzer Verdict Alert fortinet Phishing
POST /api/v1/pixels/events HTTP/1.1
Host: seguro.liquidashoes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg8EVFRXARAJVldbDwQGVVU=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5MzUyNDkiLCJhcCI6IjExMzQxNzA4MjMiLCJpZCI6IjA0ZGRmNzNmZmNhMzU4MjMiLCJ0ciI6IjNmYzMyZGFkNmUwZWNiMThjMDM5M2JkNjQ1NzgzZmYwIiwidGkiOjE2NzU0OTAxOTIyMzh9fQ==
traceparent: 00-3fc32dad6e0ecb18c0393bd645783ff0-04ddf73ffca35823-01
tracestate: 2935249@nr=0-1-2935249-1134170823-04ddf73ffca35823----1675490192238
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 249
Origin: https://seguro.liquidashoes.com.br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/checkout/address
Cookie: XSRF-TOKEN=eyJpdiI6IndVV3F0WlNiOVFxckp0NzBaeFl4SWc9PSIsInZhbHVlIjoiTTZod3RpWHNnUFZkNUN6cThQUHZiNXlZV1JDRmRidzljZlZzdHY0RTY0eVwveGhObFVLM2pIVVBJZ0ZaZ28zYlRjWUcxYXEwWXBTc05naVhMXC9XaDBMZz09IiwibWFjIjoiZmJlY2NjZDM3MDg5NjhhMDhmMTE1YWVkMzIxNDZiZDMyMmM5MTI5ZDk5YTBjZWI3OTFjNGJlODkxMjM4NmM1NSJ9; bubbstore_checkout=eyJpdiI6IjJORnRkZFwvRlY0R1lXek41dHo1c2tRPT0iLCJ2YWx1ZSI6IkJTeVFtcWxxaWhPcWdIdFNVdHUyU2NsV1ZkdXFGK0NzaU1YVmQ2T01EajNQcHlMR2hvUVBuaUNhbkdpQXd3R1MzWGRnbW9GRTdMNjRuMXB2MjlaMGdBPT0iLCJtYWMiOiI4NzhlMTdmNDM5NWEzMmUwNmU3OTU2MWE4MWQyMjYxZTMwNjY2ZjI5M2M3ZTU2NjllMWVkNjRjZjU1MWFkZTk3In0%3D; liquida-shoes_cart=eyJpdiI6ImY3dXZcL1h4VUZDNFBJdkNkZ0xJZVZRPT0iLCJ2YWx1ZSI6IjdUSnF3UFhRNEJveXJzNys5MWFHand1QWZuKzFqS1hMVWphbWluQlwvVzM2RGV6THN4RVduS2VsblREQ2djZjVxTmJhUUlLMVRZeE5NbzM4SUZuT0tFUT09IiwibWFjIjoiODgzOTdlNWExZTc3ODg5NzkyYWExYzczNDBkZDhmMGZlNDRlZjNkZjYzOTIzNWU1MDk0YzcyYTAwYzk3ZTlkYyJ9; cart_auth_311433890=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 05:55:58 GMT
content-type: text/html; charset=UTF-8
x-protected-by: Sqreen
set-cookie: XSRF-TOKEN=eyJpdiI6Ikc1c0lBandqWHBsZFRNdGx0Q2FiY0E9PSIsInZhbHVlIjoiSm9rQURDdWQ4ZVlwdjV2VHk0WmdLT0I2VXdaY1ZwYU1obUUrOEdwVGp1ZzVZVXlselJQeEt3ZDVrbGJZK1wvM1JIbkoweVRzdWpxVWlMaWdjK1Jub3V3PT0iLCJtYWMiOiI1YjZhZGFlYTNiYTI1OGFhZjllM2U5ZTdkODgzMTdjMjBkZDkzMjJiMGY3YmJiZDMzNjdmNTcyM2NmNGY2NjRkIn0%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/
bubbstore_checkout=eyJpdiI6IktEWmQwXC9xTnprR2taQUJlMVBmYTN3PT0iLCJ2YWx1ZSI6IlY4b0oydFBKVEVNTVZ3XC91RmYxdHl6YTk0R3JuRlFBcm1aQnBRaGRvU3Q1MWI1NFJRXC8zR05ac3RKUVErUXlBUCthZzVIMTl1YlprN0hyK0VYWHRYYVE9PSIsIm1hYyI6ImUyNDYyYmNjY2Q3MjQ5YzUwNGYxZTI1Y2M3Yzg2ZDNlMDY2ZmY2YmIwZjg5MTQ0OGE3YTljOThjOTI0NWUzZjgifQ%3D%3D; expires=Sat, 04-Feb-2023 08:55:58 GMT; Max-Age=10800; path=/; httponly
x-newrelic-app-data: PxQFWFVWCgcJR1hQAQgPU1UCBxFORDQHUjZKA1ZLVVFHDFYPbU5yARBfWA86TFlDWUoRC09UWxVKRURSAQ0KDFdAFFIWCAQCA1UVUR9QAVdXBhtMV08aVwhRBQAGUwYCVgcFC1VeVUAcBFkOS11p
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-gocache-cachestatus: BYPASS
server: gocache
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3285671.js?sv=6
143.204.55.54200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3285671.js?sv=6
IP 143.204.55.54:0
GET /c/hotjar-3285671.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://seguro.liquidashoes.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sat, 04 Feb 2023 05:55:15 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/e569ea119419cf48f86563d6cf9d426a
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gZMwtpASG9BSXwQNPTFznzuRi4ETdLXkgdOBaC4Y2gkJhog8iWpi8A==
age: 43
X-Firefox-Spdy: h2