| br.blbl.cr/r/HtoutQO_Y.GFdVtD3Qixgw-- |  35.190.32.124 | 308 unknown | 0 B |
URL HTTP/1.1br.blbl.cr/r/HtoutQO_Y.GFdVtD3Qixgw-- IP35.190.32.124:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/HtoutQO_Y.GFdVtD3Qixgw-- HTTP/1.1
Host: br.blbl.cr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 308 unknown
Cache-Control: private
Location: https://br.blbl.cr:443/r/HtoutQO_Y.GFdVtD3Qixgw--
Content-Length: 0
Date: Fri, 03 Feb 2023 07:05:58 GMT
Content-Type: text/html; charset=UTF-8
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3208
Expires: Fri, 03 Feb 2023 07:59:27 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17014
Expires: Fri, 03 Feb 2023 11:49:33 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 06:43:34 GMT
content-type: application/json
age: 1345
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7d2222d41721947297aaeb5a6e3d0714 04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065 de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9490
Expires: Fri, 03 Feb 2023 09:44:09 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash57e0da53c804c369b9cc8aae975fec1a a78090f06af3fd54d7f363a6438c75d5b33e66a9 74547cf8567c720544d5b75d16cff517f6e8c8a6c486e33f873d1135090b5db6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74547CF8567C720544D5B75D16CFF517F6E8C8A6C486E33F873D1135090B5DB6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12447
Expires: Fri, 03 Feb 2023 10:33:26 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rluQjmYkr8WCBrjecL+164IlLJEVG2J3XkNvDOVpqn/wX1dqNgAsTbcyB734O4C1MQpRcIvQ6SY=
x-amz-request-id: 05G0RXERQ836WDMR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 06:23:26 GMT
age: 2553
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash57e0da53c804c369b9cc8aae975fec1a a78090f06af3fd54d7f363a6438c75d5b33e66a9 74547cf8567c720544d5b75d16cff517f6e8c8a6c486e33f873d1135090b5db6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74547CF8567C720544D5B75D16CFF517F6E8C8A6C486E33F873D1135090B5DB6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12447
Expires: Fri, 03 Feb 2023 10:33:26 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 07:05:59 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash57e0da53c804c369b9cc8aae975fec1a a78090f06af3fd54d7f363a6438c75d5b33e66a9 74547cf8567c720544d5b75d16cff517f6e8c8a6c486e33f873d1135090b5db6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74547CF8567C720544D5B75D16CFF517F6E8C8A6C486E33F873D1135090B5DB6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12447
Expires: Fri, 03 Feb 2023 10:33:26 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 06:07:19 GMT
age: 3520
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3786
Expires: Fri, 03 Feb 2023 08:09:05 GMT
Date: Fri, 03 Feb 2023 07:05:59 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9277
Expires: Fri, 03 Feb 2023 09:40:37 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Fri, 03 Feb 2023 09:00:36 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9277
Expires: Fri, 03 Feb 2023 09:40:37 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9277
Expires: Fri, 03 Feb 2023 09:40:37 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9277
Expires: Fri, 03 Feb 2023 09:40:37 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| js.datadome.co/tags.js | 143.204.55.125 | 200 OK | 43 kB |
IP143.204.55.125:0
File typeASCII text, with very long lines (65432) Hash75fee8645619b669e05eed0d332fb9ee af9095cc20ce8f8d14052e87efb9de31fe43e803 e0f62f765af751d53cd8b045736f95f2d417c2ee9919c40a4ead1b0d6520f92e
GET /tags.js HTTP/1.1
Host: js.datadome.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 42836
server: Apache
strict-transport-security: max-age=15768000
last-modified: Wed, 01 Feb 2023 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
date: Fri, 03 Feb 2023 06:11:29 GMT
cache-control: max-age=3600, public
expires: Fri, 03 Feb 2023 07:11:29 GMT
etag: "33404-5f3a17fded07d-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C7HPcLQ04CO0tefxgu62Aig3f1bPCbN5nOjJUYRE_vgUTR_nsuXghg==
age: 3270
X-Firefox-Spdy: h2
|
|
| cdn.blablacar.com/kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js | 35.244.237.205 | 200 OK | 18 kB |
URL HTTP/2cdn.blablacar.com/kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js IP35.244.237.205:0
File typeUnicode text, UTF-8 text, with very long lines (65321), with no line terminators Hash563e3391faa839c3f4f908d26238ef29 f47ad33dae19a5e1f6f854b912ad194ce3aac56e 8f4ab00c36a7ffac22c8e1b71672b839455ec0874c6249b07245dbd3989b559e
GET /kairos/assets/authentication-5b07745e71f106450589-v1.chunk.js HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvdwL1eYommN6qZaDQBVOVsXurhhItMUnCd6ADR8DvRkwPYxsYIK-paFP2Lk1l6rWlK2Mn6P4K4h4791t3SY59GpT_ZVLBX
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675319801501302
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18119
content-encoding: gzip
x-goog-hash: crc32c=fhoPcQ==, md5=Vj4zkfqoOcP0+QjSYjjvKQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18119
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 02 Feb 2023 13:46:14 GMT
expires: Fri, 02 Feb 2024 13:46:14 GMT
cache-control: max-age=31536000,public,no-transform
age: 62386
last-modified: Thu, 02 Feb 2023 06:36:41 GMT
etag: "563e3391faa839c3f4f908d26238ef29"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Regular.woff2 | 35.244.237.205 | 200 OK | 57 kB |
URL HTTP/2cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Regular.woff2 IP35.244.237.205:0
File typeWeb Open Font Format (Version 2), CFF, length 57388, version 1.196\012- data Hash258725d5257caaf26c0358addda756ae 6c1cce6d60f6c4fb8ff5a76418fa1acacfcc04f8 62713ce26005390ee138da32fb562730d5242649a748b66f2d8d3b2db0697850
GET /kairos/assets/fonts/GT-Eesti-Pro-Display-Regular.woff2 HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt0VN5cLwU-QUplSZG31giZ6kRLR2Okv2z9_Qwcw8mNyGgVC7JawJPPeQcG3ga7QAz6rjR9liRL5UC4iisIVoJEOA
x-goog-generation: 1667488406968865
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57438
content-encoding: gzip
x-goog-hash: crc32c=TJAuEw==, md5=JYcl1SV8qvJsA1it3adWrg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 57438
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 24 Jan 2023 06:48:01 GMT
expires: Wed, 24 Jan 2024 06:48:01 GMT
cache-control: max-age=31536000,public,no-transform
last-modified: Thu, 03 Nov 2022 15:13:26 GMT
etag: "258725d5257caaf26c0358addda756ae"
content-type: font/woff2
age: 865079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.blablacar.com/kairos/assets/7826-4d9732b0b17cce0429af-v1.js | 35.244.237.205 | 200 OK | 335 kB |
URL HTTP/2cdn.blablacar.com/kairos/assets/7826-4d9732b0b17cce0429af-v1.js IP35.244.237.205:0
File typeUnicode text, UTF-8 text, with very long lines (65448) Size335 kB (334845 bytes) Hash4757d66d346e50c4dc9241ab9465a524 3c068a62a28393611e1762a5d35385da81c27294 7ad137a147e37d7c30922bec49b83bffd732adc8c1bee8467deaa4b6fe34a6c4
GET /kairos/assets/7826-4d9732b0b17cce0429af-v1.js HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvK3Qz1Odxg_7n7_4rKNXnVGnnwtCa2Dq5rPwrtaeEgrk_ZWFvwlZ0RNDuNb9plrrLOjcVT-dpWH6tucrAuJ7XqNw
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675334712465562
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 334845
content-encoding: gzip
x-goog-hash: crc32c=DDCo6Q==, md5=R1fWbTRuUMTckkGrlGWlJA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 334845
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 02 Feb 2023 14:52:22 GMT
expires: Fri, 02 Feb 2024 14:52:22 GMT
cache-control: max-age=31536000,public,no-transform
age: 58418
last-modified: Thu, 02 Feb 2023 10:45:12 GMT
etag: "4757d66d346e50c4dc9241ab9465a524"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2 | 35.244.237.205 | 200 OK | 60 kB |
URL HTTP/2cdn.blablacar.com/kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2 IP35.244.237.205:0
File typeWeb Open Font Format (Version 2), CFF, length 60284, version 1.196\012- data Hash4f253ab35ffa9fe4ae6f4c29b11d9858 12028a8632d18f38b5f868f4d94c6762bdd46ce9 22cd63c31c10f1fa48f4a49958c82bb4b56e46e001c300a766f101d8f04f7344
GET /kairos/assets/fonts/GT-Eesti-Pro-Display-Medium.woff2 HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvai-eoK0kPncI1zzqAfQm9zM_9lSqgQPdo8wkm33DcG5VWTHPirQCHYbCjsHt7ecnoT7cuM5lYKKLDDue2QHSRhw6hIR7K
x-goog-generation: 1667488407009008
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 60334
content-encoding: gzip
x-goog-hash: crc32c=u5AU6w==, md5=TyU6s1/6n+Sub0wpsR2YWA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 60334
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 11 Jan 2023 10:29:06 GMT
expires: Thu, 11 Jan 2024 10:29:06 GMT
cache-control: max-age=31536000,public,no-transform
age: 1975014
last-modified: Thu, 03 Nov 2022 15:13:27 GMT
etag: "4f253ab35ffa9fe4ae6f4c29b11d9858"
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.81.158.34 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.81.158.34:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EIaQwo1ccxB9yj4ckirxlQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ovXlWMPaUi7sjQlpIBQ2IME5WTU=
|
|
| cdn.blablacar.com/kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg | 35.244.237.205 | 200 OK | 301 B |
URL HTTP/2cdn.blablacar.com/kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg IP35.244.237.205:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (397), with no line terminators Hash3e741806e49fb58b4242ebe349f84830 2670c6d0b64eda4d78eb51ae953db5c2c31a5e55 cecc94b8491c648dbc67b2ca371de97ff350cbdff48740e0ac030b49dca596de
GET /kairos/assets/images/default-m-818bf2b20d4b06a052dd..svg HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdslifz7PXSzq8QriKq1fXrrVXWXzkx7tAmQnuJjJsGcYdO7_Mi8Hfa9x7pVo6z4xHfilaI7vJ4IUUkKinUPrEjLB4CPcAeU
x-goog-generation: 1652108917688155
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 301
content-encoding: gzip
x-goog-hash: crc32c=jA37zg==, md5=PnQYBuSftYtCQuvjSfhIMA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 301
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 11 Jan 2023 10:36:16 GMT
expires: Thu, 11 Jan 2024 10:36:16 GMT
cache-control: max-age=31536000,public,no-transform
age: 1974584
last-modified: Mon, 09 May 2022 15:08:37 GMT
etag: "3e741806e49fb58b4242ebe349f84830"
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd573980088aceb55619da34d0c749df7 03bf68504b6f0126a403d5bce1067753f7e4a7e8 f8a4540c754b0a54f2a54b9eee80085249c1dea00280ff0b9560af059a2ebbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8A4540C754B0A54F2A54B9EEE80085249C1DEA00280FF0B9560AF059A2EBBFA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6876
Expires: Fri, 03 Feb 2023 09:00:36 GMT
Date: Fri, 03 Feb 2023 07:06:00 GMT
Connection: keep-alive
|
|
| cdn.blablacar.com/kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png | 35.244.237.205 | 200 OK | 2.0 kB |
URL HTTP/2cdn.blablacar.com/kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png IP35.244.237.205:0
File typePNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data Hasha1c1bd4cae8fb49d08dab0d98b481214 0cade9202df60ddfff29b972b558df0df348ff1a 70dfe9d6458dde3000cb83d82fb8f81e132b52506bedb2ca0b465bfd6205438b
GET /kairos/assets/images/apple-touch-icon-85cdd2e845405e9b59ec..png HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtu2qUICVTC5Vn1sb_W1wHOUXCfgfp5x27SapdCeuYJlMZisvLzF-qKT5L3g_GxiGPIV0UZE1YQPwcwLC_24cOaXpCnyRsK
x-goog-generation: 1652108919518049
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2023
content-encoding: gzip
x-goog-hash: crc32c=mn7woQ==, md5=ocG9TK6PtJ0I2rDZi0gSFA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2023
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Mon, 16 Jan 2023 04:13:27 GMT
expires: Tue, 16 Jan 2024 04:13:27 GMT
cache-control: max-age=31536000,public,no-transform
last-modified: Mon, 09 May 2022 15:08:39 GMT
etag: "a1c1bd4cae8fb49d08dab0d98b481214"
content-type: image/png
age: 1565553
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.blablacar.com/kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png | 35.244.237.205 | 200 OK | 442 B |
URL HTTP/2cdn.blablacar.com/kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png IP35.244.237.205:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Hash7fef94647abafd3934406e78c4efc848 32e149e4041b38869562eaf12f056416b27a8dde 945fb63b896acb2c0e34a6994a80255e211262637b9bc1ce32fd0a835cd0cc21
GET /kairos/assets/images/favicon-16x16-28143ec5ff0376a80bec..png HTTP/1.1
Host: cdn.blablacar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsVDvskcI7wEdaid64XIrXwNPRVkyJP4hnOLSExVOO3mtSLSUViSO08f7CYKv2GUeUay61pW1alSUYE-fm471gE0iriAWcg
x-goog-generation: 1652108918722277
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 442
content-encoding: gzip
x-goog-hash: crc32c=YtGKFQ==, md5=f++UZHq6/Tk0QG54xO/ISA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 442
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 11 Jan 2023 10:33:58 GMT
expires: Thu, 11 Jan 2024 10:33:58 GMT
cache-control: max-age=31536000,public,no-transform
age: 1974722
last-modified: Mon, 09 May 2022 15:08:38 GMT
etag: "7fef94647abafd3934406e78c4efc848"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-PDQQND | 142.250.74.8 | 200 OK | 43 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-PDQQND IP142.250.74.8:0
File typeASCII text, with very long lines (9875) Hash3a00deec6acb6f15000b4ce09e0e5629 1c9a12061fdd3f19b1f0b73d1420360a7da698c1 fefa4e472eccd41e49fd6c7ab992768dce891d9d3d86967164c94fc53a73a834
GET /gtm.js?id=GTM-PDQQND HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 07:06:00 GMT
expires: Fri, 03 Feb 2023 07:06:00 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| api-js.datadome.co/js/ |  13.51.192.216 | 200 OK | 237 B |
IP13.51.192.216:0
File typeJSON data\012- , ASCII text, with no line terminators Hashf13059509ff7a7037f41003a85953a2d e8bd1e798d432376b4a7123e3406ce6db0df02c8 80c2b3c97c0ec5b598978b274f200eebd7748c727ecf6589e3b7d5e194ae5cd2
POST /js/ HTTP/1.1
Host: api-js.datadome.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 3866
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 07:06:00 GMT
content-type: application/json;charset=utf-8
content-length: 237
server: DataDome
access-control-allow-origin: *
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 05:44:08 GMT
expires: Fri, 03 Feb 2023 07:44:08 GMT
cache-control: public, max-age=7200
age: 4913
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| p.teads.tv/teads-fellow.js | 23.195.255.234 | 200 OK | 6.4 kB |
URL HTTP/1.1p.teads.tv/teads-fellow.js IP23.195.255.234:0
File typeASCII text, with very long lines (19888), with no line terminators Hashb6e227013e992031893f2833d1df522e c6d55aba6762513c8a1eb320131cf46cfa932b4a 6338003a70f047fd7a382e87160754ab69d62edb039da75b4bfb331d16b20c71
GET /teads-fellow.js HTTP/1.1
Host: p.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Fvk0n/5LJz3nBotNQWoB41nnYa7EY38OhmFTP/DeBSktyLC0h63NyNDrx49W519ODkwt3KRvtik=
x-amz-request-id: C1F8TJNV6Q5MR03D
Last-Modified: Mon, 23 Jan 2023 13:03:00 GMT
ETag: "52a95d12f789e4537934e239a8adddcb"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=271
Date: Fri, 03 Feb 2023 07:06:01 GMT
Content-Length: 6419
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashede42358dbe8cf2e6b7e6a2653774d01 5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb 8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Last-Modified: Fri, 03 Feb 2023 05:26:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js |  157.240.205.11 | 200 OK | 28 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP157.240.205.11:0
File typeASCII text, with very long lines (64348) Hashdd1f85cc598419df61e254e53f9ec1ef f86c0ee563f5b7a01e1d40b566f2bc184a32380f c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: dXuumcasAfRL65MR2mIuxtABMheRcq2D5DLFAHuaBjwIKK/Dz2iJZse28o2PI1kzDlo97ssIP9JOuUWnSIBj7g==
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 07:06:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&gjid=318704126&_gid=1152903591.1675407991&_u=YGDAgAABAAAAAEAAg~&z=431896733 | 64.233.165.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&gjid=318704126&_gid=1152903591.1675407991&_u=YGDAgAABAAAAAEAAg~&z=431896733 IP64.233.165.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&gjid=318704126&_gid=1152903591.1675407991&_u=YGDAgAABAAAAAEAAg~&z=431896733 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blablacar.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 07:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashede42358dbe8cf2e6b7e6a2653774d01 5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb 8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Last-Modified: Fri, 03 Feb 2023 05:26:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&gjid=1111832768&_gid=1152903591.1675407991&_u=YGBAgAABAAAAAEAAg~&z=582545466 | 64.233.165.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&gjid=1111832768&_gid=1152903591.1675407991&_u=YGBAgAABAAAAAEAAg~&z=582545466 IP64.233.165.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&gjid=1111832768&_gid=1152903591.1675407991&_u=YGBAgAABAAAAAEAAg~&z=582545466 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blablacar.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 07:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq | 23.36.79.32 | 200 OK | 1.2 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq IP23.36.79.32:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (2332) Hasha52fd4ca1836d78c68afb348689f38fc 57de9796ea2b0066a91fbe0c5e12181052299aec 15f8dc7874e244940e3c60ac4ca93e8acf64177615e85c5e4d6ffc5f42349ed3
GET /i18n/pixel/events.js?sdkid=C7RR1VD6KGKTT9CMD0JG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230203070601F8E18684891DA5BFEDE5
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf607a2bd1170f914eb0e196c9a96e9344e963d8afd9b2d35a4ef491214d418f362fefbdd125768b4ea3d8e7a35a526f05ac68586a5459e0977fdfc3930c68cdd4bc05a811fdd384e6968c64a88fe0174c4203a674039a8810fc91e0120b005efd5c
content-encoding: gzip
content-length: 1157
x-origin-response-time: 7,23.222.16.37
x-akamai-request-id: d49faa2c.c4793
expires: Fri, 03 Feb 2023 07:06:01 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 07:06:01 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LDaAKMoZT1wfeV0SPcdJDKwsFB; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-222-16-37.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=107, origin; dur=7, inner; dur=2
x-parent-response-time: 114,23.36.79.28
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js | 23.36.79.32 | 200 OK | 69 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js IP23.36.79.32:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (21891) Hash09e9bdc02bd94387901641c0b3a1f8f0 7bf30498ae27e11f7fc60b438b090f15b67ca113 d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaAKMoZT1wfeV0SPcdJDKwsFB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
date: Fri, 03 Feb 2023 07:06:01 GMT
content-length: 68605
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
x-akamai-request-id: c4897
X-Firefox-Spdy: h2
|
|
| ocsp.usertrust.com/ |  104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hash042de2a63d5a8b91254e76897baa7660 2f4ea30c91bc2b303e309286eaa2cea2065e1e0a bb1d2e2b7866f9821938de8a16d77ce259c057d0a3d8233f3a624a26d8c426ae
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 07:06:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 08:24:00 GMT
Expires: Thu, 09 Feb 2023 08:23:59 GMT
Etag: "2f4ea30c91bc2b303e309286eaa2cea2065e1e0a"
Cache-Control: max-age=603310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7939524eda25b529-OSL
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17299
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 07:06:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17299
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 07:06:01 GMT
Connection: keep-alive
|
|
| analytics.tiktok.com/i18n/pixel/static/identify_c4832.js | 23.36.79.32 | 200 OK | 31 kB |
URL HTTP/2analytics.tiktok.com/i18n/pixel/static/identify_c4832.js IP23.36.79.32:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hash85bd96a56a6a7f09e3e7dadc7980152e 37590c595abeb315046a293a9e53632ae2128ac4 c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaAKMoZT1wfeV0SPcdJDKwsFB
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
date: Fri, 03 Feb 2023 07:06:01 GMT
content-length: 30917
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: c494b
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17299
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 07:06:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17299
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 07:06:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17299
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 07:06:01 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 33480
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfe87e986c62630127a7fdd979c802947 28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf 770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:37:24 GMT
age: 23317
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| d1bc1vxcilyy41.cloudfront.net/s/559691/dNAKXV.js | 54.230.245.129 | 200 OK | 177 kB |
URL HTTP/2d1bc1vxcilyy41.cloudfront.net/s/559691/dNAKXV.js IP54.230.245.129:0
Size177 kB (176875 bytes) Hashb1ee33d19b2ab2b12022460bd41e1abe 156acfa6989b0e591cb296b41ff7f496d92b8481 f0dd46362cc8fba5d793f716381a5f5a23801408c243d3a987076c3c4a467481
GET /s/559691/dNAKXV.js HTTP/1.1
Host: d1bc1vxcilyy41.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
expires: Fri, 03 Feb 2023 06:39:55 GMT
cache-control: max-age=300, public
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 06:34:55 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yidBQMFe_c-7xFZx6UTMvQtbo9Y9bv6GDP9FkHZ-sXJ0iYmMntiwuQ==
age: 1866
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe706db8a6107758a148463e916f2532d 4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81 673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 31918
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg | 34.120.237.76 | 200 OK | 3.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0c1c2a5a291f23be6591c9b19db47b47 2f67cdba4a3d5a8cf6f6eb7951d2a1bda6e01619 327efb8c72421819992900ab0f8f267da7d28122c710b8694979116579d512c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9d26d7-b28f-485c-91d6-67a0813a0f3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3083
x-amzn-requestid: 7a4f094b-a423-401e-a9e7-8d9f130e2e40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi1drEtKIAMFuYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76924-66751080608a6cd2650b853d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:52:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UoXATdGOgEK3Unxszcp4ulAK3b1BuHS2MbUzTHe-qxjNZkb2eoxE-A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:49 GMT
age: 33672
etag: "2f67cdba4a3d5a8cf6f6eb7951d2a1bda6e01619"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2a6aaf87a867f93dc9268a8b27973b97 f52ccbe6cbced1994acb13a00b05436553b6813e 3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 32767
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg | 34.120.237.76 | 200 OK | 7.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd4242d4999b7b033873b81a482c319c2 bc4c004065ce9f558f210d508844c123a85737a1 ab35a5c1a7c1a0a548aee3b9c301893799680ec1922c13e7a16d44ca457cd91d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7237
x-amzn-requestid: f6aa0d26-8df4-40fe-8984-1aac7c76097e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVr4jEdeIAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2269c-58a038d6491d8f461e9168d4;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XNO6ArxsjiZTxcoSn1Fmhso5bpWNIvzT9nplF6UGTiHVxXlJiv7bJA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:58:40 GMT
age: 32841
etag: "bc4c004065ce9f558f210d508844c123a85737a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| analytics.tiktok.com/api/v2/pixel | 23.36.79.32 | 200 OK | 0 B |
URL HTTP/2analytics.tiktok.com/api/v2/pixel IP23.36.79.32:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 873
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: _ttp=2LDaAKMoZT1wfeV0SPcdJDKwsFB
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302030706017AB0D128F240517026FF
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf607a2bd1170f914eb0e196c9a96e9344e9c25b63d9780b0a36ea20f95fa7fce353b1ad6376c51fe46cf95c4fae83d9221480d7644fd222df3e180765bf80a093dd7d00de9b57ca9fc4d751c4553a412008bb7f6ad58a54d2555a26f461757e13a3
x-origin-response-time: 25,23.222.16.84
x-akamai-request-id: c652a8ff.c4972
expires: Fri, 03 Feb 2023 07:06:01 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 07:06:01 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_MISS from a23-222-16-84.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=110, origin; dur=25, inner; dur=20
x-parent-response-time: 132,23.36.79.28
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8d777e9406316814b36e3c580cccd4c8 7653df86c61ff7c801e35da9eeca3ecc70c7d7e8 2c4bb952aa3359712306a7c20b845627ee26689aacdb2560a61fc175e7c0c731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail | 142.250.74.109 | 302 Found | 393 B |
URL HTTP/2accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail IP142.250.74.109:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380) Hash9e83ce922a9c505596449b43eca97272 93be805b80366971028928a9bb897b5c154aa3ac 07b3da6a425930d3db6e67cbb0bda68dea2ae6cd3103aa547dafc8b8e7ad5897
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Feb 2023 07:06:01 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1896746979%3A1675407961721436&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHdS9qnef-CE6aLXxnv2oq21beFD_wLSbQCSnHlXowoCd8KMQcK32u_HxKz_nUgREJtJrJFKHw
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-q0u38dwmjfl6zpxCbRbVKg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 393
server: GSE
set-cookie: __Host-GAPS=1:uY7posLYY6rSrUmFPiyS3B7OvHXKjA:-3cfF_SbliBEKDs2;Path=/;Expires=Sun, 02-Feb-2025 07:06:01 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/x2/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/pVkeGn.js |  54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/x2/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/pVkeGn.js IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x2/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/pVkeGn.js HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 37
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 34
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash0c15fd84f4711d994724c35236542194 c47d77fe5b373a86bd9a116bd8baac07ec746add a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691 | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691 IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /4.png?merchant_number=559691 HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cake,request-id
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1
access-control-allow-methods: GET
access-control-allow-headers: Origin, Content-Type, Accept, Request-Id, X-Retry, Cake, CCookie
access-control-expose-headers: ETag
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 33
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 31
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691 | 54.155.1.142 | 200 OK | 69 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/4.png?merchant_number=559691 IP54.155.1.142:0
File typePNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data Hash729269c38816f40d2785748462d792a4 619f48279a7a409586913ccf22b288549327d362 28be8721060203ff30aeb37574a42e670fa3b285d2a51cf39f50e88f95b9427f
GET /4.png?merchant_number=559691 HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Request-Id: 9a9f1b69-4e9a-49c9-a1f7-968c81a9398e
Cake: 10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 02 Feb 2023 14:48:11 GMT
content-length: 69
etag: "10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM"
cache-control: must-revalidate, no-cache, private, proxy-revalidate
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 30
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:01 GMT
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=63731596&cid=986429137.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&dt=Viaje%20com%20a%20BlaBlaCar%20-%20Caronas%20de%20confian%C3%A7a%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid= | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=63731596&cid=986429137.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&dt=Viaje%20com%20a%20BlaBlaCar%20-%20Caronas%20de%20confian%C3%A7a%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid= IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-T1JT3ECD79>m=45je3210&_p=63731596&cid=986429137.1675407991&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675407991&sct=1&seg=0&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&dt=Viaje%20com%20a%20BlaBlaCar%20-%20Caronas%20de%20confian%C3%A7a%20%7C%20BlaBlaCar&en=page_view&_fv=1&_ss=1&ep.user_uuid=&ep.category_route=login&ep.current_route=login&ep.page=%2Flogin&ep.anonymizeIp=true&ep.cookieExpires=NaN&up.DL_user_uuid= HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.blablacar.com.br
date: Fri, 03 Feb 2023 07:06:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash4cf0ccf2909be74efd7a89dbe4228ffb b4993da334b48312584d116a3de4be4cd71962cf e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&buyer_pixel_id=4831 | 23.195.255.234 | 200 OK | 139 B |
URL HTTP/1.1cm.teads.tv/v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&buyer_pixel_id=4831 IP23.195.255.234:0
File typeJSON data\012- , ASCII text, with no line terminators Hash927ef89ec4faedb8f3fb61bebe233f14 a362b91018ac12d31b10678b5025c24ca6ebbbd7 419361bf54950eeb4d56bf7a7b5cf18e5efcd7d6914eb67fd700c51b58805860
GET /v2/advertiser?referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&buyer_pixel_id=4831 HTTP/1.1
Host: cm.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 139
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.blablacar.com.br
Observe-Browsing-Topics: ?1
Origin-Trial: Az9xQo/imzWWuauBg0JngENQMoxulJzGzdGQ0VfUZDk7et2DJfmfUxfOWnHlwQiZRFG+Grc8bH8xWgOPW2ltjQQAAAB+eyJvcmlnaW4iOiJodHRwczovL3RlYWRzLnR2OjQ0MyIsImZlYXR1cmUiOiJQcml2YWN5U2FuZGJveEFkc0FQSXMiLCJleHBpcnkiOjE2ODA2NTI3OTksImlzU3ViZG9tYWluIjp0cnVlLCJpc1RoaXJkUGFydHkiOnRydWV9
Expires: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 03 Feb 2023 07:06:02 GMT
Connection: keep-alive
Set-Cookie: ar_debug=1; Path=/; HttpOnly; Secure; SameSite=None
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash4cf0ccf2909be74efd7a89dbe4228ffb b4993da334b48312584d116a3de4be4cd71962cf e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 | 142.250.74.164 | 200 OK | 42 B |
URL HTTP/2www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 IP142.250.74.164:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 | 142.250.74.163 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 IP142.250.74.163:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-69013080-1&cid=986429137.1675407991&jid=2066269765&_u=YGBAgAABAAAAAEAAg~&z=1121864860 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 | 142.250.74.163 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 IP142.250.74.163:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 | 142.250.74.164 | 200 OK | 42 B |
URL HTTP/2www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 IP142.250.74.164:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-83824522-1&cid=986429137.1675407991&jid=119665964&_u=YGDAgAABAAAAAEAAg~&z=106654563 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 07:06:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2bef39ac599211fe23ad884ceacf1c9b c19b32a600412658c49a3e55d5d8353a5101c31d 0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.facebook.com/tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992138.996093841&it=1675407991162&coo=false&rqm=GET | 157.240.205.35 | 302 Found | 0 B |
URL HTTP/2www.facebook.com/tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992138.996093841&it=1675407991162&coo=false&rqm=GET IP157.240.205.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1516105582042726&ev=PageView&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.2.1675407992138.996093841&it=1675407991162&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
date: Fri, 03 Feb 2023 07:06:02 GMT
set-cookie:
location: /tr/?coo=false&cs_est=true&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&ec=0&ev=PageView&fbp=fb.2.1675407992138.996093841&id=1516105582042726&if=false&it=1675407991162&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675407992139&v=2.9.95
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-type: text/plain
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&at= | 157.240.205.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&at= IP157.240.205.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=123152947759014&ev=fb_page_view&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&rl=&if=false&ts=1675407992159&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?coo=false&cs_est=true&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&ec=0&ev=PageView&fbp=fb.2.1675407992138.996093841&id=1516105582042726&if=false&it=1675407991162&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675407992139&v=2.9.95 | 157.240.205.35 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?coo=false&cs_est=true&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&ec=0&ev=PageView&fbp=fb.2.1675407992138.996093841&id=1516105582042726&if=false&it=1675407991162&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675407992139&v=2.9.95 IP157.240.205.35:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?coo=false&cs_est=true&dl=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&ec=0&ev=PageView&fbp=fb.2.1675407992138.996093841&id=1516105582042726&if=false&it=1675407991162&o=30&r=stable&redirect=0&rl=&rqm=GET&sh=1024&sw=1280&ts=1675407992139&v=2.9.95 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 37
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 35
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 33
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 31
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 29
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-retry
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1728000
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, X-Retry
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 27
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes | 54.155.1.142 | 200 OK | 72 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes IP54.155.1.142:0
File typeASCII text, with no line terminators Hashae11cc4c61dab9534d98d3aec57d0a62 05a2bd59369ab03acceb663768cd6bbe19814b12 a7f7d3983863f94fbe53b7b350a1fa041b5ceb393e287ae951b826e7e9c62d66
POST /559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jEwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
X-retry: 0
Content-Length: 18619
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: jzAt7mM5bLjGfsXv=10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
x-content-type-options: nosniff
content-length: 72
set-cookie: jzAt7mM5bLjGfsXv=10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:03 GMT; secure; SameSite=None
l4mr3vq6c72zf8f5=10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM; Max-Age=315360000; Path=/; expires=Mon, 31-Jan-2033 07:06:03 GMT
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 37
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 35
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 32
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 30
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu | 54.155.1.142 | 302 Found | 218 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu IP54.155.1.142:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text Hash96eeb54cabdea4b3c944e6018b49e85c 469ac0c27d6a751af189551ca690a12989de3525 8dd5a53096c4a211371b924eac7c24d3544403632c687e26de6ed16b3e7a2b23
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jDjSu HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
location: https://mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
content-length: 218
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 28
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:02 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /559691/9a9f1b69-4e9a-49c9-a1f7-968c81a9398e/jkDfy HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.blablacar.com.br
Referer: https://www.blablacar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 27
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:03 GMT
X-Firefox-Spdy: h2
|
|
| t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&user_session_id=1e22b382-1343-403a-b4d5-e4bf7174b8ac | 23.38.201.50 | 200 OK | 23 B |
URL HTTP/2t.teads.tv/track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&user_session_id=1e22b382-1343-403a-b4d5-e4bf7174b8ac IP23.38.201.50:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashda5b449fff36752a93779fa4067cd2eb 71a96eea77f21ab5f1819b96c4cedd5cd34476ca 328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /track?action=pageView&env=js-web&tag_version=6.12.0_51a1e72&buyer_pixel_id=4831&referer=https%3A%2F%2Fwww.blablacar.com.br%2Flogin%3Fredirect%3D%252Frides%252Foffer%253Fsource%253DCARPOOLING%2526amp%253Bid%253D1eda2eb5-03bf-63e1-8575-5b43dd08b183&user_session_id=1e22b382-1343-403a-b4d5-e4bf7174b8ac HTTP/1.1
Host: t.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 23
cache-control: max-age=0, no-cache, no-store
expires: Sat, 26 Jul 1997 05:00:00 GMT
date: Fri, 03 Feb 2023 07:06:03 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-retry
Referer: https://www.blablacar.com.br/
Origin: https://www.blablacar.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-max-age: 1728000
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, X-Retry
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 39
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:06 GMT
X-Firefox-Spdy: h2
|
|
| mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes | 54.155.1.142 | 200 OK | 0 B |
URL HTTP/2mbswx52d.urjohmgbuuwi.com/559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes IP54.155.1.142:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /559691/spa-attempt-292281f4-4ef8-4c83-a263-b74c492d072f/jCwNes HTTP/1.1
Host: mbswx52d.urjohmgbuuwi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
X-retry: 0
Content-Length: 332
Origin: https://www.blablacar.com.br
Connection: keep-alive
Referer: https://www.blablacar.com.br/
Cookie: jzAt7mM5bLjGfsXv=10u1DfjftiIYWbNZoYD6YcErH_DjPWIQlNUayTXuTszXAVcR_vbbcGV6TmB96IU1L7m1UAhM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.blablacar.com.br
access-control-allow-credentials: true
x-ratelimit-limit: 40, 40;w=1
x-ratelimit-remaining: 37
x-ratelimit-reset: 1
date: Fri, 03 Feb 2023 07:06:06 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash999a8004599bcfb6a7fe9238d607b94c 8af34bd0b92be1e3029747a154e78fe12cd6d885 4d8a2c503ecbd3b404a64c3d15614d37f5fcadc62f39b53039254d119de1ca6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5286
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 07:06:08 GMT
Last-Modified: Fri, 03 Feb 2023 05:38:02 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| br.blbl.cr/r/HtoutQO_Y.GFdVtD3Qixgw-- | 35.190.32.124 | 302 Found | 0 B |
URL HTTP/2br.blbl.cr/r/HtoutQO_Y.GFdVtD3Qixgw-- IP35.190.32.124:0
GET /r/HtoutQO_Y.GFdVtD3Qixgw-- HTTP/1.1
Host: br.blbl.cr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: istio-envoy
date: Fri, 03 Feb 2023 07:05:59 GMT
content-type: text/html; charset=UTF-8
location: https://www.blablacar.com.br/rides/offer?source=CARPOOLING&id=1eda2eb5-03bf-63e1-8575-5b43dd08b183
x-application: redirector
cache-control: public, s-maxage=900
x-envoy-upstream-service-time: 3
content-security-policy: frame-ancestors none
feature-policy: camera 'none'; microphone 'none'; geolocation 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blablacar.com.br/login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03bf-63e1-8575-5b43dd08b183 | 35.190.32.124 | 200 OK | 0 B |
URL HTTP/2www.blablacar.com.br/login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03bf-63e1-8575-5b43dd08b183 IP35.190.32.124:0
GET /login?redirect=%2Frides%2Foffer%3Fsource%3DCARPOOLING%26amp%3Bid%3D1eda2eb5-03bf-63e1-8575-5b43dd08b183 HTTP/1.1
Host: www.blablacar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: vstr_id=377790b9-ad88-484d-bf8c-447427daa59c; app_token=58e75fe1-79b9-47f4-bfd9-4cbc0aa0841f; datadome=5v3Bt2Tw2Wo8M8wwFaVKBwxYrOZ_ZcAi4084lQTc9_ZR3TTpj_rNPXtMpo1MPvHWVsASspkrWn-f3VXSwVmoph-DW7E0kLzb4YI6miN2Et4TdwR~YnFuEFJGkLlCu0Xv
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
x-robots-tag: noindex
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: vstr_id=377790b9-ad88-484d-bf8c-447427daa59c; Domain=.blablacar.com.br; Path=/; Expires=Sun, 03 Mar 2024 07:05:59 GMT
blablacar_token=; Domain=.blablacar.com.br; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly; Secure
datadome=2wNn9V6g_Qxwx~KSG1mRaQt2BCxLMqaMZHPCj~GDgLO5kEA66HC~qFu8HubXvlSmg9Wtpd~SMrra~EXxkNjyHP6AJ7t~vBGAvnBeMI~B7EO6iTPKVw8YxSVQGwPzCCwh; Max-Age=31536000; Domain=.blablacar.com.br; Path=/; Secure; SameSite=Lax
cache-control: private, no-cache, no-store, must-revalidate
content-type: text/html; charset=utf-8
etag: W/"517ed-Q6Z1pyT1NQcIP4RtwNaT2dH3Qac"
date: Fri, 03 Feb 2023 07:05:59 GMT
x-envoy-upstream-service-time: 450
content-encoding: gzip
vary: Accept-Encoding
server: istio-envoy
x-datadome: protected
accept-ch: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|