br.blbl.cr/r/HtoutQP.a4KFdVtD3Qixgw--
35.190.32.124308 unknown 0 B URL HTTP/1.1 br.blbl.cr/r/HtoutQP.a4KFdVtD3Qixgw--
IP 35.190.32.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/HtoutQP.a4KFdVtD3Qixgw-- HTTP/1.1
Host: br.blbl.cr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 308 unknown
Cache-Control: private
Location: https://br.blbl.cr:443/r/HtoutQP.a4KFdVtD3Qixgw--
Content-Length: 0
Date: Fri, 03 Feb 2023 07:05:59 GMT
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Fri, 03 Feb 2023 07:59:54 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3287
Expires: Fri, 03 Feb 2023 08:00:46 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 06:43:34 GMT
content-type: application/json
age: 1345
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19254
Expires: Fri, 03 Feb 2023 12:26:53 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 57e0da53c804c369b9cc8aae975fec1a
a78090f06af3fd54d7f363a6438c75d5b33e66a9
74547cf8567c720544d5b75d16cff517f6e8c8a6c486e33f873d1135090b5db6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74547CF8567C720544D5B75D16CFF517F6E8C8A6C486E33F873D1135090B5DB6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=29
Expires: Fri, 03 Feb 2023 07:06:28 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rluQjmYkr8WCBrjecL+164IlLJEVG2J3XkNvDOVpqn/wX1dqNgAsTbcyB734O4C1MQpRcIvQ6SY=
x-amz-request-id: 05G0RXERQ836WDMR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 06:23:26 GMT
age: 2553
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:05:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7acbe97f8511140c9ed81feaa801ed22
e5a2055edf44751ebe7259206343e7003460f656
5731dca8ca582cbddad95bbdb8c6b8e93fee151ce4e36c0305a8e3cc2a9f1acf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5731DCA8CA582CBDDAD95BBDB8C6B8E93FEE151CE4E36C0305A8E3CC2A9F1ACF"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19602
Expires: Fri, 03 Feb 2023 12:32:41 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7acbe97f8511140c9ed81feaa801ed22
e5a2055edf44751ebe7259206343e7003460f656
5731dca8ca582cbddad95bbdb8c6b8e93fee151ce4e36c0305a8e3cc2a9f1acf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5731DCA8CA582CBDDAD95BBDB8C6B8E93FEE151CE4E36C0305A8E3CC2A9F1ACF"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19602
Expires: Fri, 03 Feb 2023 12:32:41 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2
35.244.237.205200 OK 60 kB URL HTTP/2 cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2
IP 35.244.237.205:0
File type Web Open Font Format (Version 2), CFF, length 60284, version 1.196\012- data
Hash 4f253ab35ffa9fe4ae6f4c29b11d9858
12028a8632d18f38b5f868f4d94c6762bdd46ce9
22cd63c31c10f1fa48f4a49958c82bb4b56e46e001c300a766f101d8f04f7344
GET /kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2 HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtpmdsID9BcjhfLksKL5nD9_1JhI4t7z4S0ciQ-FlNMt3ZaKIVS5-_gSog8QHgyJX_W8A_JWFa2niGR4-EUE95imEpB_QlR
x-goog-generation: 1667488407009008
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 60334
content-encoding: gzip
x-goog-hash: crc32c=u5AU6w==, md5=TyU6s1/6n+Sub0wpsR2YWA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 60334
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 08 Jan 2023 05:36:04 GMT
expires: Mon, 08 Jan 2024 05:36:04 GMT
cache-control: max-age=31536000,public,no-transform
last-modified: Thu, 03 Nov 2022 15:13:27 GMT
etag: "4f253ab35ffa9fe4ae6f4c29b11d9858"
content-type: font/woff2
age: 2251796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.datadome.co/tags.js
143.204.55.78200 OK 43 kB IP 143.204.55.78:0
File type ASCII text, with very long lines (65432)
Hash 75fee8645619b669e05eed0d332fb9ee
af9095cc20ce8f8d14052e87efb9de31fe43e803
e0f62f765af751d53cd8b045736f95f2d417c2ee9919c40a4ead1b0d6520f92e
GET /tags.js HTTP/1.1
Host: js.datadome.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 42836
server: Apache
strict-transport-security: max-age=15768000
last-modified: Wed, 01 Feb 2023 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
date: Fri, 03 Feb 2023 06:11:29 GMT
cache-control: max-age=3600, public
expires: Fri, 03 Feb 2023 07:11:29 GMT
etag: "33404-5f3a17fded07d-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lcv5Jl1OOs_5QQznbaM26ICnabCKMf1hiWLpXQk3GeNBM5f9cxgnNw==
age: 3270
X-Firefox-Spdy: h2
www.blablacar.com.br/login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03fe-6b82-8575-5b43dd08b183
35.190.32.124200 OK 149 kB URL HTTP/2 www.blablacar.com.br/login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03fe-6b82-8575-5b43dd08b183
IP 35.190.32.124:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15595)
Size 149 kB (148907 bytes)
Hash c15273972aa7d7db4d6ce11c654cec10
57f325b700a9c2ad62949ef1f17a55de35606b46
9c1240f9bf12feeb70e037b0bd95880b613ad2efc6e9c16f2f2788169218fdb7
GET /login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03fe-6b82-8575-5b43dd08b183 HTTP/1.1
Host: www.blablacar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: vstr_id=1da456af-a6ab-4ca9-ab75-76efd12e9750; app_token=a87e59e6-8e5c-4416-9c46-6b06c60dd95d; datadome=7mbWTO9D_tGwzpv7HwirydFA5hF090gHtnZnxiiTeETLvV0WHtEoaTyx_6T2MDkq_c8HjMbY-i3qFL4eJRdCSjdSzzyqDNXYCL-ZhCSZ6tAclcoHG6l_WXTr9p2Ane0w
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
x-robots-tag: noindex
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: vstr_id=1da456af-a6ab-4ca9-ab75-76efd12e9750; Domain=.blablacar.com.br; Path=/; Expires=Sun, 03 Mar 2024 07:06:00 GMT
blablacar_token=; Domain=.blablacar.com.br; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly; Secure
datadome=2T4OoXVGN8gVoeDkeVNipJtoWM7_2xoFE2n8idHHGmRhlxhFwZNbTQP4xFBUT9MMKeY1FabTlO3bjWCy~nxteqCbO4PYimuUwEyYzJfLWYR~bVyhEeHtOo_ntYnKqhI-; Max-Age=31536000; Domain=.blablacar.com.br; Path=/; Secure; SameSite=Lax
cache-control: private, no-cache, no-store, must-revalidate
content-type: text/html; charset=utf-8
etag: W/"517e6-VnkRq6udxsVW8579FJSepFgEhDY"
date: Fri, 03 Feb 2023 07:06:00 GMT
x-envoy-upstream-service-time: 56
content-encoding: gzip
vary: Accept-Encoding
server: istio-envoy
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
x-datadome: protected
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.blablacar.com/kairos/assets/7826-4d9732b0b17cce0429af-v1.js
35.244.237.205200 OK 335 kB URL HTTP/2 cdn.blablacar.com/kairos/assets/7826-4d9732b0b17cce0429af-v1.js
IP 35.244.237.205:0
File type Unicode text, UTF-8 text, with very long lines (65448)
Size 335 kB (334845 bytes)
Hash 4757d66d346e50c4dc9241ab9465a524
3c068a62a28393611e1762a5d35385da81c27294
7ad137a147e37d7c30922bec49b83bffd732adc8c1bee8467deaa4b6fe34a6c4
GET /kairos/assets/7826-4d9732b0b17cce0429af-v1.js HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvK3Qz1Odxg_7n7_4rKNXnVGnnwtCa2Dq5rPwrtaeEgrk_ZWFvwlZ0RNDuNb9plrrLOjcVT-dpWH6tucrAuJ7XqNw
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675334712465562
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 334845
content-encoding: gzip
x-goog-hash: crc32c=DDCo6Q==, md5=R1fWbTRuUMTckkGrlGWlJA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 334845
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 02 Feb 2023 14:52:22 GMT
expires: Fri, 02 Feb 2024 14:52:22 GMT
cache-control: max-age=31536000,public,no-transform
age: 58418
last-modified: Thu, 02 Feb 2023 10:45:12 GMT
etag: "4757d66d346e50c4dc9241ab9465a524"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.blablacar.com/kairos/assets/app-81016f610ed0eccf6d72-v1.js
35.244.237.205200 OK 153 kB URL HTTP/2 cdn.blablacar.com/kairos/assets/app-81016f610ed0eccf6d72-v1.js
IP 35.244.237.205:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 153 kB (152852 bytes)
Hash b58e3db534bded7e1bfaa305d3e22b3e
0de5a12713ab9671c9b82d37a778b34a4b22977b
3d50189b95618c6a06fd79c4394631be205add1ce524857a7e493c06b58a52c7
GET /kairos/assets/app-81016f610ed0eccf6d72-v1.js HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduTRhahkNOjKaFT5UUb1tG29hInXVW0Ya-8gQ0-cQv_CZnPgbPyJTfKPRd5Gp5QSR2XgnviEOLSSt1An2YvYBLmfA
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675336622795562
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 152852
content-encoding: gzip
x-goog-hash: crc32c=Uuzr0w==, md5=tY49tTS97X4b+qMF0+IrPg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 152852
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 02 Feb 2023 14:52:22 GMT
expires: Fri, 02 Feb 2024 14:52:22 GMT
cache-control: max-age=31536000,public,no-transform
age: 58418
last-modified: Thu, 02 Feb 2023 11:17:02 GMT
etag: "b58e3db534bded7e1bfaa305d3e22b3e"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.blablacar.com/kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js
35.244.237.205200 OK 18 kB URL HTTP/2 cdn.blablacar.com/kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js
IP 35.244.237.205:0
File type Unicode text, UTF-8 text, with very long lines (65321), with no line terminators
Hash 563e3391faa839c3f4f908d26238ef29
f47ad33dae19a5e1f6f854b912ad194ce3aac56e
8f4ab00c36a7ffac22c8e1b71672b839455ec0874c6249b07245dbd3989b559e
GET /kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvdwL1eYommN6qZaDQBVOVsXurhhItMUnCd6ADR8DvRkwPYxsYIK-paFP2Lk1l6rWlK2Mn6P4K4h4791t3SY59GpT_ZVLBX
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675319801501302
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18119
content-encoding: gzip
x-goog-hash: crc32c=fhoPcQ==, md5=Vj4zkfqoOcP0+QjSYjjvKQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18119
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 02 Feb 2023 13:46:14 GMT
expires: Fri, 02 Feb 2024 13:46:14 GMT
cache-control: max-age=31536000,public,no-transform
age: 62386
last-modified: Thu, 02 Feb 2023 06:36:41 GMT
etag: "563e3391faa839c3f4f908d26238ef29"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.blablacar.com/kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg
35.244.237.205200 OK 301 B URL HTTP/2 cdn.blablacar.com/kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg
IP 35.244.237.205:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (397), with no line terminators
Hash 3e741806e49fb58b4242ebe349f84830
2670c6d0b64eda4d78eb51ae953db5c2c31a5e55
cecc94b8491c648dbc67b2ca371de97ff350cbdff48740e0ac030b49dca596de
GET /kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdslifz7PXSzq8QriKq1fXrrVXWXzkx7tAmQnuJjJsGcYdO7_Mi8Hfa9x7pVo6z4xHfilaI7vJ4IUUkKinUPrEjLB4CPcAeU
x-goog-generation: 1652108917688155
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 301
content-encoding: gzip
x-goog-hash: crc32c=jA37zg==, md5=PnQYBuSftYtCQuvjSfhIMA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 301
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 11 Jan 2023 10:36:16 GMT
expires: Thu, 11 Jan 2024 10:36:16 GMT
cache-control: max-age=31536000,public,no-transform
age: 1974584
last-modified: Mon, 09 May 2022 15:08:37 GMT
etag: "3e741806e49fb58b4242ebe349f84830"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.blablacar.com/kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png
35.244.237.205200 OK 2.0 kB URL HTTP/2 cdn.blablacar.com/kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png
IP 35.244.237.205:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash a1c1bd4cae8fb49d08dab0d98b481214
0cade9202df60ddfff29b972b558df0df348ff1a
70dfe9d6458dde3000cb83d82fb8f81e132b52506bedb2ca0b465bfd6205438b
GET /kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtu2qUICVTC5Vn1sb_W1wHOUXCfgfp5x27SapdCeuYJlMZisvLzF-qKT5L3g_GxiGPIV0UZE1YQPwcwLC_24cOaXpCnyRsK
x-goog-generation: 1652108919518049
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2023
content-encoding: gzip
x-goog-hash: crc32c=mn7woQ==, md5=ocG9TK6PtJ0I2rDZi0gSFA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2023
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Mon, 16 Jan 2023 04:13:27 GMT
expires: Tue, 16 Jan 2024 04:13:27 GMT
cache-control: max-age=31536000,public,no-transform
last-modified: Mon, 09 May 2022 15:08:39 GMT
etag: "a1c1bd4cae8fb49d08dab0d98b481214"
content-type: image/png
age: 1565553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3800
Expires: Fri, 03 Feb 2023 08:09:20 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
cdn.blablacar.com/kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png
35.244.237.205200 OK 442 B URL HTTP/2 cdn.blablacar.com/kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png
IP 35.244.237.205:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 7fef94647abafd3934406e78c4efc848
32e149e4041b38869562eaf12f056416b27a8dde
945fb63b896acb2c0e34a6994a80255e211262637b9bc1ce32fd0a835cd0cc21
GET /kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsVDvskcI7wEdaid64XIrXwNPRVkyJP4hnOLSExVOO3mtSLSUViSO08f7CYKv2GUeUay61pW1alSUYE-fm471gE0iriAWcg
x-goog-generation: 1652108918722277
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 442
content-encoding: gzip
x-goog-hash: crc32c=YtGKFQ==, md5=f++UZHq6/Tk0QG54xO/ISA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 442
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 11 Jan 2023 10:33:58 GMT
expires: Thu, 11 Jan 2024 10:33:58 GMT
cache-control: max-age=31536000,public,no-transform
age: 1974722
last-modified: Mon, 09 May 2022 15:08:38 GMT
etag: "7fef94647abafd3934406e78c4efc848"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8582ac99ea77bf9ed27ea225dd5b6fd
86a286ec941e50f77e860528bc40720298fbd1f5
bd90e2825102d2bd6b9a72dd62131b549e1950ef5675461a5dd59f917af027c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD90E2825102D2BD6B9A72DD62131B549E1950EF5675461A5DD59F917AF027C6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4345
Expires: Fri, 03 Feb 2023 08:18:25 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
push.services.mozilla.com/
52.35.167.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.167.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5ekYDoL6xdEFVYFrkYcRcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Bhb08MAby3vQF+8arQbkDuKkz/0=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-PDQQND
142.250.74.8200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PDQQND
IP 142.250.74.8:0
File type ASCII text, with very long lines (9875)
Hash 3a00deec6acb6f15000b4ce09e0e5629
1c9a12061fdd3f19b1f0b73d1420360a7da698c1
fefa4e472eccd41e49fd6c7ab992768dce891d9d3d86967164c94fc53a73a834
GET /gtm.js?id=GTM-PDQQND HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 07:06:00 GMT
expires: Fri, 03 Feb 2023 07:06:00 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TVPFSZ
142.250.74.8200 OK 94 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TVPFSZ
IP 142.250.74.8:0
File type ASCII text, with very long lines (37169)
Hash 47d00f392eeadd98ec764e2a45e0f326
23dee7da1a3c68a20aba7e0d953f313832571449
2635db755ba39d1015316dc4a98c95664d76f4b197ee46d54d6303075834d8b2
GET /gtm.js?id=GTM-TVPFSZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 07:06:00 GMT
expires: Fri, 03 Feb 2023 07:06:00 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94491
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api-js.datadome.co/js/
13.51.192.216200 OK 237 B IP 13.51.192.216:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 67f3defd465e722bb927cfdf28e34510
729c3d96b154e55a56eac292763786816fbe9f6d
471ddcb8d9ad8afd81182f71a26a8cfbc36a2554277f5a6152484cde17bb8845
POST /js/ HTTP/1.1
Host: api-js.datadome.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 3847
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 07:06:00 GMT
content-type: application/json;charset=utf-8
content-length: 237
server: DataDome
access-control-allow-origin: *
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.teads.tv/teads-fellow.js
23.195.255.234200 OK 6.4 kB URL HTTP/1.1 p.teads.tv/teads-fellow.js
IP 23.195.255.234:0
File type ASCII text, with very long lines (19888), with no line terminators
Hash b6e227013e992031893f2833d1df522e
c6d55aba6762513c8a1eb320131cf46cfa932b4a
6338003a70f047fd7a382e87160754ab69d62edb039da75b4bfb331d16b20c71
GET /teads-fellow.js HTTP/1.1
Host: p.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Fvk0n/5LJz3nBotNQWoB41nnYa7EY38OhmFTP/DeBSktyLC0h63NyNDrx49W519ODkwt3KRvtik=
x-amz-request-id: C1F8TJNV6Q5MR03D
Last-Modified: Mon, 23 Jan 2023 13:03:00 GMT
ETag: "52a95d12f789e4537934e239a8adddcb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=271
Date: Fri, 03 Feb 2023 07:06:01 GMT
Content-Length: 6419
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 05:44:08 GMT
expires: Fri, 03 Feb 2023 07:44:08 GMT
cache-control: public, max-age=7200
age: 4913
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3999
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Last-Modified: Fri, 03 Feb 2023 05:59:22 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: dXuumcasAfRL65MR2mIuxtABMheRcq2D5DLFAHuaBjwIKK/Dz2iJZse28o2PI1kzDlo97ssIP9JOuUWnSIBj7g==
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 07:06:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3999
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Last-Modified: Fri, 03 Feb 2023 05:59:22 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq
23.36.79.17200 OK 1.2 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2332)
Hash 36fbb8e5a4e69e1a09b91757e729bc40
e8aa8e4eb32ba34493fc653eac37d5e67cbb1679
365209925986c0502458a97bb94b148ac84ccca58ed1d060f32c517fcfa2d348
GET /i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230203070601B040D3AA8B68019CE2E4
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a486ae05762c28410a6d62b5f2cf9f3ebc6acd23d2d4a9ad12c9b91ccc37f382ecfbb6258cc2195f2ca3ef2931c2526efb29acccc0cfde1eb6372e9f1bec099a9
content-encoding: gzip
expires: Fri, 03 Feb 2023 07:06:01 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 07:06:01 GMT
content-length: 1156
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LDaADPpICrSS7QErKAMpXOGM9T; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=1, origin; dur=97
x-origin-response-time: 97,23.36.79.13
x-akamai-request-id: b5aeee42
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 042de2a63d5a8b91254e76897baa7660
2f4ea30c91bc2b303e309286eaa2cea2065e1e0a
bb1d2e2b7866f9821938de8a16d77ce259c057d0a3d8233f3a624a26d8c426ae
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 07:06:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 08:24:00 GMT
Expires: Thu, 09 Feb 2023 08:23:59 GMT
Etag: "2f4ea30c91bc2b303e309286eaa2cea2065e1e0a"
Cache-Control: max-age=603310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7939524edb04b52d-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&gjid=2125833924&_gid=2062381990.1675407991&_u=YGBAgAABAAAAAEAAg~&z=741373762
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&gjid=2125833924&_gid=2062381990.1675407991&_u=YGBAgAABAAAAAEAAg~&z=741373762
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&gjid=2125833924&_gid=2062381990.1675407991&_u=YGBAgAABAAAAAEAAg~&z=741373762 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blablacar.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 07:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 09e9bdc02bd94387901641c0b3a1f8f0
7bf30498ae27e11f7fc60b438b090f15b67ca113
d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaADPpICrSS7QErKAMpXOGM9T
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
content-length: 68605
date: Fri, 03 Feb 2023 07:06:01 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=4
x-akamai-request-id: b5aef04e
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&gjid=215835656&_gid=2062381990.1675407991&_u=YGDAgAABAAAAAEAAg~&z=610914056
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&gjid=215835656&_gid=2062381990.1675407991&_u=YGDAgAABAAAAAEAAg~&z=610914056
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&gjid=215835656&_gid=2062381990.1675407991&_u=YGDAgAABAAAAAEAAg~&z=610914056 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blablacar.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 07:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mbswx52d.urjohmgbuuwi.com/x2/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/frqYifeYSVz
54.155.1.142200 OK 130 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/x2/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/frqYifeYSVz
IP 54.155.1.142:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7eff053cb780344d62e51150c4fc353f
7cba4e1b23818d24659984da36df1cfbdf87fd4e
11564b9908865d1ef3fd42041aacde8a0a563c45f24172a967c1d31c7f21554e
POST /x2/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/frqYifeYSVz HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 9
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 130
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
set-cookie: jzAt7mM5bLjGfsXv=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:01 GMT; secure; SameSite=None
l4mr3vq6c72zf8f5=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:01 GMT
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1, 1500;w=60
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaADPpICrSS7QErKAMpXOGM9T
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Fri, 03 Feb 2023 07:06:01 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: b5aef10d
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 873
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaADPpICrSS7QErKAMpXOGM9T
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230203070601B85AAAACAD36FD73C3D5
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a30c391b9ec3776879db28ff0cda8932f9fd83b86504c2cb7051c1a1f61eb9fa298e5a386af346c607f8f6f5853d25d0caf01c7fc8fe4286e7fb19c3cbfe1c034
expires: Fri, 03 Feb 2023 07:06:01 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 07:06:01 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=15, cdn-cache; desc=MISS, edge; dur=5, origin; dur=111
x-origin-response-time: 111,23.36.79.13
x-akamai-request-id: b5aef125
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8d777e9406316814b36e3c580cccd4c8
7653df86c61ff7c801e35da9eeca3ecc70c7d7e8
2c4bb952aa3359712306a7c20b845627ee26689aacdb2560a61fc175e7c0c731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found 390 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379)
Hash d96f4f7c42f52166d76e8a1785deacdf
2e8ff327965efccb2e777576d3aee1f7d53b492b
6c035d589ed347f0cc0c331a39fbd93cd39870f654713c2a0dd5e1d3e0e6a564
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Feb 2023 07:06:01 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S738288101%3A1675407961741478&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHcwgoYj609d1gSsmsie1WJ49qC_Vv-2F37Fhkyc5JF8bj318tknGSdUX1t_-uKnN3a8CVIIJQ
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-EBJPlM75IEsyYPW0NK9dqA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 390
server: GSE
set-cookie: __Host-GAPS=1:Ip1vGo5g8HO3liNnPLkupa0vdcj9Og:uAcUDhTzSRJPkccg;Path=/;Expires=Sun, 02-Feb-2025 07:06:01 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/x2/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/pVkeGn.js
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/x2/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/pVkeGn.js
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x2/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/pVkeGn.js HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 36
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 35
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /4.png?merchant_number=559691 HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cake,request-id
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1
access-control-allow-methods: GET
access-control-allow-headers: Origin, Content-Type, Accept, Request-Id, X-Retry, Cake, CCookie
access-control-expose-headers: ETag
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 32
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691
54.155.1.142200 OK 69 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691
IP 54.155.1.142:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash 729269c38816f40d2785748462d792a4
619f48279a7a409586913ccf22b288549327d362
28be8721060203ff30aeb37574a42e670fa3b285d2a51cf39f50e88f95b9427f
GET /4.png?merchant_number=559691 HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Request-Id: f11a4022-cfa9-4c0f-836d-6d563be8d85d
Cake: and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 02 Feb 2023 14:48:11 GMT
content-length: 69
etag: "and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X"
cache-control: must-revalidate, no-cache, private, proxy-revalidate
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 29
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 28
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17294
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17294
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17294
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=1690746297&cid=132636728.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&dt=Entre%20para%20fazer%20sua%20pr%C3%B3xima%20carona%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid=
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=1690746297&cid=132636728.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&dt=Entre%20para%20fazer%20sua%20pr%C3%B3xima%20carona%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid=
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=1690746297&cid=132636728.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&dt=Entre%20para%20fazer%20sua%20pr%C3%B3xima%20carona%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid= HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.blablacar.com.br
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 31919
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:37:24 GMT
age: 23318
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17294
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:08:32 GMT
age: 14250
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 32768
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 33481
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c1c2a5a291f23be6591c9b19db47b47
2f67cdba4a3d5a8cf6f6eb7951d2a1bda6e01619
327efb8c72421819992900ab0f8f267da7d28122c710b8694979116579d512c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3083
x-amzn-requestid: 7a4f094b-a423-401e-a9e7-8d9f130e2e40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi1drEtKIAMFuYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76924-66751080608a6cd2650b853d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:52:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UoXATdGOgEK3Unxszcp4ulAK3b1BuHS2MbUzTHe-qxjNZkb2eoxE-A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:49 GMT
age: 33673
etag: "2f67cdba4a3d5a8cf6f6eb7951d2a1bda6e01619"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&buyer_pixel_id=4831
23.195.255.234200 OK 139 B URL HTTP/1.1 cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&buyer_pixel_id=4831
IP 23.195.255.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 09eacd0cac66135a19987effe316aebe
3ff8430fe1aa9c65b7d002d06298b8f6c0b103cb
a193fc0a047baf819694d609661582c4a53097281846dd601246d9f48273345c
GET /v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&buyer_pixel_id=4831 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 139
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.blablacar.com.br
Observe-Browsing-Topics: ?1
Origin-Trial: Az9xQo/imzWWuauBg0JngENQMoxulJzGzdGQ0VfUZDk7et2DJfmfUxfOWnHlwQiZRFG+Grc8bH8xWgOPW2ltjQQAAAB+eyJvcmlnaW4iOiJodHRwczovL3RlYWRzLnR2OjQ0MyIsImZlYXR1cmUiOiJQcml2YWN5U2FuZGJveEFkc0FQSXMiLCJleHBpcnkiOjE2ODA2NTI3OTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
Expires: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
Set-Cookie: ar_debug=1; Path=/; HttpOnly; Secure; SameSite=None
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=132636728.1675407991&jid=1030424397&_u=YGDAgAABAAAAAEAAg~&z=455103790 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=132636728.1675407991&jid=1063557151&_u=YGBAgAABAAAAAEAAg~&z=1131568328 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992131&sw=1280&sh=1024&at=
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992131&sw=1280&sh=1024&at=
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992131&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992158.1296956056&it=1675407991256&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992158.1296956056&it=1675407991256&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992158.1296956056&it=1675407991256&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 38
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 36
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 34
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 32
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 30
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 28
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-retry
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1728000
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, X-Retry
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 26
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 25
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 38
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 34
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes
54.155.1.142200 OK 72 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes
IP 54.155.1.142:0
File type ASCII text, with no line terminators
Hash 82eaccd84d23c292da881bcf9fb75707
23c1b697912811a30d43f137d28ac4269043563f
269c3b7224bdb8bcfd5cfcb32d357154d3882a6d22907748b1a75dbea7cee5e7
POST /559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jEwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
X-retry: 0
Content-Length: 18621
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: jzAt7mM5bLjGfsXv=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
x-content-type-options: nosniff
content-length: 72
set-cookie: jzAt7mM5bLjGfsXv=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:03 GMT; secure; SameSite=None
l4mr3vq6c72zf8f5=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:03 GMT
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 36
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 33
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
54.155.1.142302 Found 218 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu
IP 54.155.1.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4f59d6a51a51074bda476c0505c227d1
544c5661c62f4f4a3fa9bd7fcdd1109d779a9e22
59fd33b6631a7a5892cca533bfd0359efd164e4d29af29209e6039f5be282968
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 31
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/f11a4022-cfa9-4c0f-836d-6d563be8d85d/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 29
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:03 GMT
X-Firefox-Spdy: h2
t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&user_session_id=63de0c0c-c468-4652-b5e6-6865bc4f8a0d
23.38.201.50200 OK 23 B URL HTTP/2 t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&user_session_id=63de0c0c-c468-4652-b5e6-6865bc4f8a0d
IP 23.38.201.50:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03fe-6b82-8575-5b43dd08b183&user_session_id=63de0c0c-c468-4652-b5e6-6865bc4f8a0d HTTP/1.1
Host: t.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 23
cache-control: max-age=0, no-cache, no-store
expires: Sat, 26 Jul 1997 05:00:00 GMT
date: Fri, 03 Feb 2023 07:06:03 GMT
X-Firefox-Spdy: h2
customer.fra-01.braze.eu/api/v3/data/
151.101.193.208502 Bad Gateway 728 B URL HTTP/2 customer.fra-01.braze.eu/api/v3/data/
IP 151.101.193.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 410d688c8d56262a1b959a9e2777c6e7
4055fa99505b9c26428e82f450cd0d0f07003479
4ca11648f057809f28f549961ecb31a7aaa26d1c7e2b42073702a4ff3452dd4d
POST /api/v3/data/ HTTP/1.1
Host: customer.fra-01.braze.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
X-Requested-With: XMLHttpRequest
X-Braze-Api-Key: b487f83e-4734-4356-83e4-3b4eb1d95f61
X-Braze-TriggersRequest: true
X-Braze-DataRequest: true
Content-Length: 567
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 502 Bad Gateway
content-type: text/html
server: nginx
etag: "63dc4b39-2d8"
accept-ranges: bytes
date: Fri, 03 Feb 2023 07:06:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1620-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675407964.647827,VS0,VE19
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
content-length: 728
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-retry
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1728000
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, X-Retry
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 38
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:06 GMT
X-Firefox-Spdy: h2
mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes
54.155.1.142200 OK 0 B URL HTTP/2 mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes
IP 54.155.1.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /559691/spa-attempt-dc6e6cbd-31e2-42d1-a78d-48f2a7050655/jCwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
X-retry: 0
Content-Length: 333
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: jzAt7mM5bLjGfsXv=and_feiM9lS_NYCgLc9l0yXLYrpIr-9ZlRyg6L_3Lt8OpkTFhmqbzVcAJ7vQljin0m8y7f9X
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:06 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 999a8004599bcfb6a7fe9238d607b94c
8af34bd0b92be1e3029747a154e78fe12cd6d885
4d8a2c503ecbd3b404a64c3d15614d37f5fcadc62f39b53039254d119de1ca6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6055
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:08 GMT
Last-Modified: Fri, 03 Feb 2023 05:25:13 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
br.blbl.cr/r/HtoutQP.a4KFdVtD3Qixgw--
35.190.32.124302 Found 0 B URL HTTP/2 br.blbl.cr/r/HtoutQP.a4KFdVtD3Qixgw--
IP 35.190.32.124:0
GET /r/HtoutQP.a4KFdVtD3Qixgw-- HTTP/1.1
Host: br.blbl.cr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: istio-envoy
date: Fri, 03 Feb 2023 07:05:59 GMT
content-type: text/html; charset=UTF-8
location: https://www.blablacar.com.br/rides/offer?source=CARPOOLING&id=1eda2eb5-03fe-6b82-8575-5b43dd08b183
x-application: redirector
cache-control: public, s-maxage=900
x-envoy-upstream-service-time: 3
content-security-policy: frame-ancestors none
feature-policy: camera 'none'; microphone 'none'; geolocation 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d1bc1vxcilyy41.cloudfront.net/s/559691/dNAKXV.js
54.230.245.192200 OK 0 B URL HTTP/2 d1bc1vxcilyy41.cloudfront.net/s/559691/dNAKXV.js
IP 54.230.245.192:0
GET /s/559691/dNAKXV.js HTTP/1.1
Host: d1bc1vxcilyy41.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
expires: Fri, 03 Feb 2023 06:39:55 GMT
cache-control: max-age=300, public
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 06:34:55 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fdtbbIYrAOo1bokhskPT17izNqstX9HZH6LEr3gzuhdvfeeFQD4WUg==
age: 1866
X-Firefox-Spdy: h2
customer.fra-01.braze.eu/api/v3/data/
151.101.193.208200 OK 0 B URL HTTP/2 customer.fra-01.braze.eu/api/v3/data/
IP 151.101.193.208:0
OPTIONS /api/v3/data/ HTTP/1.1
Host: customer.fra-01.braze.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 07:06:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1620-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675407961.362058,VS0,VE2275
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2