Overview

URL lescherokeesdancers.wifeo.com/liens.php
IP194.146.225.153
ASNAS13193 Nerim SAS
Location France
Report completed2017-11-10 15:02:27 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-11-10 2 d3lvr7yuk4uaui.cloudfront.net/d.html?c=dW5kZWZpbmVkOnVuZGVmaW5lZDp1bmRlZmlu (...) Malware
2017-11-10 2 d3lvr7yuk4uaui.cloudfront.net/d.html?c=dW5kZWZpbmVkOnVuZGVmaW5lZDp1bmRlZmlu (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 5 reports on IP: 194.146.225.153

Date UQ / IDS / BL URL IP
2018-06-25 15:36:09 +0200
0 - 0 - 4 www.lechaletdeno.com/ 194.146.225.153
2018-02-13 15:40:18 +0100
0 - 0 - 1 www.groupefolkloriquepontevallois.com/nos-cos (...) 194.146.225.153
2018-02-13 14:56:34 +0100
0 - 0 - 1 michaelnativel.wifeo.com/ 194.146.225.153
2018-02-13 14:11:06 +0100
0 - 0 - 1 mondovi.wifeo.com/ 194.146.225.153
2018-01-26 00:28:27 +0100
0 - 0 - 0 www.universal-led.com 194.146.225.153

Last 10 reports on ASN: AS13193 Nerim SAS

Date UQ / IDS / BL URL IP
2018-10-18 06:56:45 +0200
4 - 0 - 0 persorepro.nerim.net/legaem/quisommesnous/ind (...) 194.79.128.128
2018-10-12 18:11:03 +0200
0 - 0 - 2 leonina.nerim.net/0001.html 194.79.128.128
2018-10-12 01:21:26 +0200
0 - 2 - 4 www.toulouseweb-coquin.com/annonces-coquines/ (...) 194.242.114.96
2018-10-12 01:05:47 +0200
0 - 2 - 4 toulouseweb-coquin.com/annonces-coquines/renc (...) 194.242.114.96
2018-10-11 16:36:11 +0200
0 - 0 - 0 www.mytelecom.fr/ 194.79.128.128
2018-10-11 16:24:23 +0200
6 - 0 - 4 persorepro.nerim.net/renod/index.html 194.79.128.128
2018-10-11 14:33:35 +0200
6 - 0 - 4 persorepro.nerim.net/renod/les_activites.html 194.79.128.128
2018-10-09 17:34:02 +0200
6 - 0 - 4 persorepro.nerim.net/renod/les_activites.html 194.79.128.128
2018-10-09 15:08:02 +0200
0 - 0 - 3 leonina.nerim.net/index.html 194.79.128.128
2018-10-09 12:10:21 +0200
0 - 0 - 4 mips.nerim.net/pmk/c_download.php 194.79.128.128

No other reports on domain: wifeo.com



JavaScript

Executed Scripts (33)


Executed Evals (1)

#1 JavaScript::Eval (size: 2725, repeated: 1) - SHA256: b26c494c9242c0ee6e154d58f1da2911a05471661e15bc4dd84e149219f01dd7

                                        (function() {
    var isIE = window.navigator.userAgent.indexOf("MSIE ") > 0;

    var ifr = document.createElement('iframe');
    ifr.setAttribute('id', 'cto_iframe_c91686e4d0');
    ifr.setAttribute('frameBorder', 0);
    ifr.setAttribute('allowtransparency', true);
    ifr.setAttribute('hspace', 0);
    ifr.setAttribute('marginwidth', 0);
    ifr.setAttribute('marginheight', 0);
    ifr.setAttribute('scrolling', 'no');
    ifr.setAttribute('vspace', 0);
    ifr.setAttribute('width', '728px');
    ifr.setAttribute('height', '390px');

    var container = document.getElementById('wctamrebot');
    if (container) {
        container.appendChild(ifr);
    }
    var ifc = "\n";
    ifc += "<" + "!DOCTYPE html>\n";
    ifc += "<" + "html>\n";
    ifc += "  <" + "head>\n";
    ifc += "    <" + "meta name=\"format-detection\" content=\"telephone=no\"><" + "meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge,chrome=1\">\n";
    ifc += "  <" + "/head>\n";
    ifc += "  <" + "body><" + "div id=\'beacon_c91686e4d0\' style=\'position: absolute; left: 0px; top: 0px; visibility: hidden;\'>\n";
    ifc += "<" + "img width=\"0\" height=\"0\" src=\"http://cat.nl.eu.criteo.com/delivery/lg.php?cppv=1&cpp=OLNGHHxRV0ZsOFBhNCtMSzdGR3NpVkZsVmY5TkRleVBURG1yOEo1NmJaWkgyNFdmUXNtRDJ2NUk4aE1hcERaZDJIaDVuWlk1Z2hBSnB2TW11d1cycUZLclBtRDk0MDlmazFBK004T3hJMDk3b29qOEpPSEpkTmZETHYrN2szSTI4Z3VGdDY2UWp6K1E1cHo0QWhzWmVKRHlKd0orcDFnb0RhUFRWS283NWw1SnRXMThvc0JHekpzUHdLS2Z2MDUxWloySzJmNXFJLzFxMk00ZFNreDFxWm5WTGJJdjRhdHhPTUdsenpXTWswUWYyZHQ0QkJxRFVHRGc2WEdXcmpqVXBBMGtlfA%3D%3D\"/>\n";
    ifc += "<" + "/div>\n";
    ifc += "<" + "a href=\"http://www.wifeo.com/faire-un-site-gratuitement.php\" target=\"_parent\"><" + "img src=\"http://www.wifeo.com/infos_wifeo/img/728x250_2.jpg\" border=\"0\" style=\"width:728px;height:200px\"><" + "/a>\n";
    ifc += "<" + "/body>\n";
    ifc += "<" + "/html>\n";

    var fillIframe = function(ifrd) {
        var getDocument = function(iframe) {
            var result_document = iframe.contentWindow || iframe.contentDocument;
            if (result_document && result_document.document)
                result_document = result_document.document;
            return result_document;
        };
        var c = getDocument(ifrd);
        if (c) {
            c.open();
            c.write(ifc);
            c.close();
        }
    };


    var maxRetryAttempts = 100;
    var loaded = false;
    var pollIframe = function() {
        var ifrd = document.getElementById('cto_iframe_c91686e4d0');
        if (ifrd && isIE) {
            ifrd.onload = function() {
                if (!loaded) {
                    loaded = true;
                    fillIframe(ifrd);
                }
            };
        } else if (ifrd) {
            loaded = true;
            fillIframe(ifrd);
        } else if (maxRetryAttempts-- > 0) {
            setTimeout(pollIframe, 10);
        }
    };
    pollIframe();
})();
                                    

Executed Writes (4)

#1 JavaScript::Write (size: 928, repeated: 1) - SHA256: a7dd78048d79847a75a339fb4862fcb6151dfd1619a6b8f38df060f3b93826f2

                                        < !DOCTYPE html >
    < html >
    < head >
    < meta name = "format-detection"
content = "telephone=no" > < meta http - equiv = "X-UA-Compatible"
content = "IE=edge,chrome=1" >
    < /head> < body > < div id = 'beacon_c91686e4d0'
style = 'position: absolute; left: 0px; top: 0px; visibility: hidden;' >
    < img width = "0"
height = "0"
src = "http://cat.nl.eu.criteo.com/delivery/lg.php?cppv=1&cpp=OLNGHHxRV0ZsOFBhNCtMSzdGR3NpVkZsVmY5TkRleVBURG1yOEo1NmJaWkgyNFdmUXNtRDJ2NUk4aE1hcERaZDJIaDVuWlk1Z2hBSnB2TW11d1cycUZLclBtRDk0MDlmazFBK004T3hJMDk3b29qOEpPSEpkTmZETHYrN2szSTI4Z3VGdDY2UWp6K1E1cHo0QWhzWmVKRHlKd0orcDFnb0RhUFRWS283NWw1SnRXMThvc0JHekpzUHdLS2Z2MDUxWloySzJmNXFJLzFxMk00ZFNreDFxWm5WTGJJdjRhdHhPTUdsenpXTWswUWYyZHQ0QkJxRFVHRGc2WEdXcmpqVXBBMGtlfA%3D%3D" / >
    < /div> < a href = "http://www.wifeo.com/faire-un-site-gratuitement.php"
target = "_parent" > < img src = "http://www.wifeo.com/infos_wifeo/img/728x250_2.jpg"
border = "0"
style = "width:728px;height:200px" > < /a> < /body> < /html>
                                    

#2 JavaScript::Write (size: 1054, repeated: 1) - SHA256: 71cd96e7683d4e6ad9b22df10dc540f156f705abe256169672335139e34a1190

                                        < !DOCTYPE html >
    < html >
    < head >
    < meta name = "format-detection"
content = "telephone=no" > < meta http - equiv = "X-UA-Compatible"
content = "IE=edge,chrome=1" >
    < /head> < body > < div id = 'beacon_e797974820'
style = 'position: absolute; left: 0px; top: 0px; visibility: hidden;' >
    < img width = "0"
height = "0"
src = "https://us-u.openx.net/w/1.0/cm?id=5c627885-3475-4ed8-a54e-8d0222f57cbe&d=MACRO&r=https%3a%2f%2fdis.criteo.com%2frex%2fmatch.aspx%3fc%3d31%26uid%3d" / >
    < img width = "0"
height = "0"
src = "http://cat.nl.eu.criteo.com/delivery/lg.php?cppv=1&cpp=8DCuRnxoWVd4NlQ5aytCQ0RYenVPdWt2VDBWcWtXN2pWRFhFRHI3YWJ0MmxzcFdOY2V3TCs3VHRnVVdOTFQ5YlN1V280QkVYenpPWjdDNkQ0d0tiQkZnZElOdkhLczY0anNvSzhjc0tGQXphTVBZNUNKb1VWbW5FUDlub2NldFlRanljSldjajg0bi9wUWxJYmZ2Z0t1SUNXOXpsUzBaT1EvbkMyME5vM1o5SWlod1NtbzE4QjdnUityeGdXbk9KeEVjVEFheHZhdW5yaktOUGdFL0MxYlVnVnNjNjV2ckR0UkxjRjJ6dzQvSEVVb3BpVWU5N2dBcmEwNkdUMXoxSEJYOEJmfA%3D%3D" / >
    < /div> < object data = "http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h"
type = "text/html"
style = "width:728px; height:90px; " > < /object> < /body> < /html>
                                    

#3 JavaScript::Write (size: 1724, repeated: 1) - SHA256: 24fc4693d350d8b27ed51fbfa4df83ec8a897ea33b7cb9e817f5ab073c54a672

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-5439285203515723"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20171106/r20170110/zrt_lookup.html#" > < /iframe><script>google_ad_slot="2123531750";google_ad_client="ca-pub-5439285203515723";google_adsbygoogle_status="done";google_ad_width=728;google_ad_height=90;google_ad_modifications={"plle":true,"eids":["38893302","21061122"],"loeids":["38893312"]};google_loader_used="aa";google_reactive_tag_first=false;google_ad_format="728x90";google_ad_unit_key="230926929";google_ad_dom_fingerprint="359694579";google_sailm=false;google_unique_id=1;google_async_iframe_id="aswift_0";google_start_time=1510322912761;google_pub_vars="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";google_bpp=9;google_async_rrc=0;google_iframe_start_time=new Date().getTime();</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20171106/r20170110/show_ads_impl.js" > < /script></body > < /html>
                                    

#4 JavaScript::Write (size: 1337, repeated: 1) - SHA256: 9f435dc6b2d9e06978bf30bd91d3f824fbc521d783c6758f68283b364b274eb9

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "728"
height = "90"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-5439285203515723&amp;output=html&amp;h=90&amp;slotname=2123531750&amp;adk=230926929&amp;adf=359694579&amp;w=728&amp;loeid=38893312&amp;format=728x90&amp;url=http%3A%2F%2Flescherokeesdancers.wifeo.com%2Fliens.php&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;dt=1510322912761&amp;bpp=9&amp;fdt=20&amp;idt=212&amp;shv=r20171106&amp;cbv=r20170110&amp;saldr=aa&amp;correlator=3506262370136&amp;frm=8&amp;ga_vid=444521739.1510322913&amp;ga_sid=1510322913&amp;ga_hid=1256632439&amp;ga_fc=0&amp;pv=2&amp;icsg=0&amp;nhd=3&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=60&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=-12245933&amp;ady=-12245933&amp;biw=-12245933&amp;bih=-12245933&amp;isw=728&amp;ish=90&amp;ifk=2029978203&amp;eid=38893302%2C21061122%2C26835106%2C188690903&amp;oid=3&amp;nmo=1&amp;zm=1.62&amp;rx=0&amp;eae=6&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C728%2C90&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=1&amp;dtd=247"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    


HTTP Transactions (59)


Request Response
                                        
                                            GET /liens.php HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 10 Nov 2017 14:08:30 GMT
Server: WIFEO
Set-Cookie: statcountlescherokeesdancers10=ok; expires=Sat, 11-Nov-2017 14:08:30 GMT; Max-Age=86400; path=/; domain=lescherokeesdancers.wifeo.com
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7711
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7711
Md5:    33a5b84a67bd376ca9344ba66ba9040c
Sha1:   f906a8548a1f148b8b2f8b40f8f426ba9d9fdaeb
Sha256: 18cd9549c9f2c9ebe91a71bc8c6dd8303a98be0aebbbfb6097e50962c35a0792
                                        
                                            GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         64.233.165.95
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30028
Date: Thu, 09 Nov 2017 14:04:07 GMT
Expires: Fri, 09 Nov 2018 14:04:07 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 86663


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30028
Md5:    543b05db46ecc6a1312a23e7e7a8820e
Sha1:   aff453218f0b6c281ed53da6997d4b1b9e990007
Sha256: 31c0d9866a5018d56375949c0222370a5b48d6ea6442d04b0c689217a68dffac
                                        
                                            GET /format.css?1509693961 HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Tue, 07 Nov 2017 19:42:25 GMT
Etag: "15da-55d69c5427d1d-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Varnish: 154191192
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1305
Md5:    4dc48df860a1a6f2a04859007b7b60fc
Sha1:   1057ca8589b8bcadb600b81a61da1e48d62d2803
Sha256: 444153d6e721736303d294117dbf6ee6548f8937f48db1006904e231bcd5150e
                                        
                                            GET /images/c/cow/cowboy-computer.gif HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Fri, 08 Oct 2010 21:41:45 GMT
Etag: "2bb7-49221e0817840"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 150463249
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Content-Length: 11191
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 218 x 216
Size:   11191
Md5:    0bdfc78cf2e0061834f8069c7f0bc0a1
Sha1:   298f4d7882600beb9e44480108bc158014ff6c2a
Sha256: b7c85a6c6296f53104c3eb4ae9e7762242471ed964023f5a45e231e90c8bf35c
                                        
                                            GET /images/c/chi/chico-cam.gif HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Sat, 16 Oct 2010 19:05:59 GMT
Etag: "4657-492c0a22bd3c0"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 156008473
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Content-Length: 18007
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 150 x 125
Size:   18007
Md5:    69eafd6c6c2c477a669fa6ed8a06ff29
Sha1:   e365486a5f9d857e0b15a9801e3b708b02c14948
Sha256: ce925e2253b448bac556937d95802bc2f9fa5607f98ce61e5bac5f11a95d0892
                                        
                                            GET /favicon-defaut.ico HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Fri, 08 Jul 2016 07:27:42 GMT
Etag: "13e-5371abcf74628"
Vary: User-Agent
X-Varnish: 150463255
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Content-Length: 318
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   318
Md5:    c94e8785f438295d0ad739fbcb8f5a52
Sha1:   351618b89006dc436ba44a41f02d478f05c15f9f
Sha256: f35ca1fa165fecc632ae1b4d3c1fa2427a6bf8e1ddd35fd5363b5f687c23cd27
                                        
                                            GET /wifeostatic-s3/ressources/modules/diaporama/lib.min.js HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Mon, 26 Jun 2017 12:20:58 GMT
Etag: "2ddc-552dbfbb92688-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 156008476
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2871
Md5:    69b86adc42e0a4eac12212456419cd76
Sha1:   0fbe0531bc79088d521f49a43c47ed1dfb454330
Sha256: a43cf679482b0506b59d7922534849fad7f6f6b47b0c2b95db8fd6fab3f212df
                                        
                                            GET /images/p/pas/pas-animes.gif HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Mon, 25 Oct 2010 19:11:04 GMT
Etag: "78df-49375c0ec2200"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 150583714
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 84 x 128
Size:   30943
Md5:    5f646c997477f77e04867c4b28b8bf62
Sha1:   de2a3b24cbe156a6be842f131eca86efb0d79f4b
Sha256: b5945b02eaff2001396ca9407c2c4a002c1d244d4e286869b0837467aa1e0ed5
                                        
                                            GET /v5/img/logo-wifeo-160.svg HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Thu, 22 Sep 2016 07:10:30 GMT
Etag: "1963-53d135b636155"
Accept-Ranges: bytes
Content-Length: 6499
Vary: User-Agent
Connection: close


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   6499
Md5:    e036707eac2a661d5e7a7d8950fc6e7f
Sha1:   dbec14ebd1fa8d3fe6c8cdddbc4355f93605e808
Sha256: 8291f64e8fb978d4ad3024326d1f4af37aaf998dc1bb8293ad0a96628640a49d
                                        
                                            GET /ads/promo/showads.js HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Sun, 07 Aug 2016 13:34:56 GMT
Etag: "16-5397b5d84d85a"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 150463258
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Content-Length: 22
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   22
Md5:    980a6c3dda1f57bedff29b069d7394e1
Sha1:   5d303a833981c96a17b06b1177010ba04c2f1736
Sha256: 3a769c0c24dc5601ec54f39b6a608148dd6664a9378eb888fa9e72da3206c92f
                                        
                                            GET /wifeostatic-s3/ressources/wifeobootstrap/css/bootstrap-custom.css?v1 HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Tue, 03 Oct 2017 13:29:43 GMT
Etag: "1bfc6-55aa47beb9f19-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Varnish: 155914266
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16057
Md5:    c2d193d213c93746a6b5599e3c15d1cc
Sha1:   1c22ec3960725161564dede244c32d27fefb7ad0
Sha256: 5bd6fa7f6a939d38171b4fa4352b8be3cf2438b188229e1a92542ee844e0466e
                                        
                                            GET /ui/1.12.1/jquery-ui.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         151.139.237.113
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2016 16:34:16 GMT
Vary: Accept-Encoding
Etag: W/"57d97c08-3dee4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Server: NetDNA-cache/2.2
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   83774
Md5:    ecd6894f51622e86cb5fbf4b5b76fa3e
Sha1:   c153c836d34a21a0f3cd7f493057afa4e70530bb
Sha256: 6e73982fc6ce2f215fd90c977d6f71839a438dd8633f19c5743d51eb1a59566b
                                        
                                            GET /js/ld/publishertag.js HTTP/1.1 
Host: static.criteo.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         178.250.0.74
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx
Date: Fri, 10 Nov 2017 14:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5a00736a-ef13"
Expires: Sat, 11 Nov 2017 14:08:31 GMT
Cache-Control: max-age=86400, public
Last-Modified: Wed, 19 Sep 2007 08:50:25 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17307
Md5:    60f4e488db66cdaed261d0cc6c36ccd8
Sha1:   8cf264f98cb37a4d05d175b2fea8f23dc5e3c4f0
Sha256: 488575f53a510e21f19031fe3f98d8d8eada1cd8f12c60b15a42af94eac1223b
                                        
                                            GET /wifeostatic-s3/ressources/wifeocss/common.min.css HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Wed, 29 Mar 2017 14:22:59 GMT
Etag: "1792-54bdf50443a8e-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 154819288
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1868
Md5:    babe79be18c34e2fc65b20ac8c2aba06
Sha1:   e7f77cc020e4ca60c434044ecbea48414a9f3054
Sha256: d6bf20d0e234d9377792ef6a72ef92ebb465413a7fe11664da19477881524892
                                        
                                            GET /wifeolib.js?v10 HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Tue, 07 Nov 2017 19:42:25 GMT
Etag: "1c2-55d69c5417765-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Varnish: 155914288
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Content-Length: 296
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   296
Md5:    488fa183cd71c5e3a5d7df28b301715e
Sha1:   b487fa1a22c7de619827eed453d9642e177c4ebb
Sha256: bbf6021d61648130c130202c6f04249f56ee63ac203cff38726ac0bb236d35c5
                                        
                                            GET /wifeostatic-s3/ressources/wifeojs/common.min.js?v5 HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Thu, 19 Oct 2017 05:30:22 GMT
Etag: "308d-55bdfa70fc475-gzip"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Varnish: 154191208
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4050
Md5:    d578b130555f514f574f720bc9f8e9b5
Sha1:   334faf0803eb75511381521d69a5d3313031a2d7
Sha256: 8f51db84fb4705150abee9e608913ee0f58b3fa14473e0f835099273d351677f
                                        
                                            GET /images/c/cli/Clint.jpg HTTP/1.1 
Host: lescherokeesdancers.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/format.css?1509693961
Cookie: statcountlescherokeesdancers10=ok

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Access-Control-Allow-Origin: http://shop.wifeo.com
Last-Modified: Mon, 24 Dec 2012 15:45:50 GMT
Etag: "3c7f-4d19b176d0780"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:31 GMT
Cache-Control: max-age = 2592000
X-Varnish: 154819305
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15487
Md5:    2c86e19de904301438e673bc515f3f70
Sha1:   aab543d192e2598601b4ac64afe7d90c7df65826
Sha256: 42347b10bd6c32e1ed3b07779909dd02f9ed5a51395befe92d2ecc69e059364c
                                        
                                            GET /d.html?c=dW5kZWZpbmVkOnVuZGVmaW5lZDp1bmRlZmluZWQ6MTAzNjoxMjc2ODp1bmRlZmluZWQ6 HTTP/1.1 
Host: d3lvr7yuk4uaui.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         13.33.99.56
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 0
Connection: keep-alive
Date: Thu, 20 Jul 2017 07:51:21 GMT
Last-Modified: Tue, 21 Feb 2012 22:06:14 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-meta-cb-modifiedtime: Fri, 03 Feb 2012 19:53:42 GMT
Accept-Ranges: bytes
Server: AmazonS3
Age: 14445
X-Cache: Hit from cloudfront
Via: 1.1 17d39c528c9f270fca3ce7bdfec60ecd.cloudfront.net (CloudFront)
X-Amz-Cf-Id: DrzxeSFuwNOLkZAAwx8k--xfyKDNZba4jHQIWK1TcFaUWCpvPwCVdg==


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: Apache
Last-Modified: Tue, 07 Nov 2017 08:37:59 GMT
Expires: Tue, 14 Nov 2017 08:37:59 GMT
Etag: 7BAE47F38008D33947A6F84F62684281E5A52B62
Cache-Control: max-age=325167,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp20
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    76ddd64242c9ae6cff619ff6cb56f849
Sha1:   7bae47f38008d33947a6f84f62684281e5a52b62
Sha256: dba41f871366cd6f74061e036c7ba2e3a0f4e3f2464a6d72bd5c4e418b95a3e4
                                        
                                            GET /v5/img/logo-wifeo-160.svg HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Range: bytes=0-
If-Range: "1963-53d135b636155"

                                         
                                         194.146.225.153
HTTP/1.1 206 Partial Content
Content-Type: image/svg+xml
                                        
Date: Fri, 10 Nov 2017 14:08:31 GMT
Server: WIFEO
Last-Modified: Thu, 22 Sep 2016 07:10:30 GMT
Etag: "1963-53d135b636155"
Accept-Ranges: bytes
Content-Length: 6499
Vary: User-Agent
Content-Range: bytes 0-6498/6499
Connection: close


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012 XML document text
Size:   6499
Md5:    e036707eac2a661d5e7a7d8950fc6e7f
Sha1:   dbec14ebd1fa8d3fe6c8cdddbc4355f93605e808
Sha256: 8291f64e8fb978d4ad3024326d1f4af37aaf998dc1bb8293ad0a96628640a49d
                                        
                                            GET /delivery/ajs.php?zoneid=43594&containerid=wctamreprim&ctonumcatci=2&loc=http%3A%2F%2Flescherokeesdancers.wifeo.com%2Fliens.php&cb=16739498900 HTTP/1.1 
Host: cas.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         178.250.2.71
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
P3P: CP='CUR ADM OUR NOR STA NID'
Set-Cookie: uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; domain=.criteo.com; expires=Sat, 10-Nov-2018 14:08:31 GMT; path=/ uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; domain=.criteo.com; expires=Sat, 10-Nov-2018 14:08:31 GMT; path=/ zdi=*1b25DezqsyF%2bTd6nkubEBmw%3d%3d; domain=.criteo.com; expires=Thu, 10-May-2018 14:08:31 GMT; path=/
X-Powered-By: ASP.NET
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1000
Date: Fri, 10 Nov 2017 14:08:30 GMT
Content-Length: 1658


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1658
Md5:    7f07fba8f453327f66d84dd1da638e67
Sha1:   844f734898186702fb4fe480dff507b29bfe67ea
Sha256: 9d1872e1d698daa366b7c453f901eb09ae38fdd1beae77c6e0d6ae8109ac7dd4
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 10 Nov 2017 13:51:47 GMT
Expires: Fri, 10 Nov 2017 15:51:47 GMT
Last-Modified: Fri, 20 Oct 2017 23:46:20 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 16615
Cache-Control: public, max-age=7200
Age: 1004


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16615
Md5:    35b5f4ce166821a2bf0477079a931144
Sha1:   8dc20b8b0bdb98de491a74246ead5ba3306015ee
Sha256: 4023bd853d5d297718309eafc53af1c88852bfadd2af68676914d3a1f270aa9d
                                        
                                            OPTIONS /delivery/ajs.php?ptv=34&containerid=wctamrebot&zoneid=471433&width=728&height=390&cb=34707440707&nodis=1&charset=UTF-8&ctonumcatci=2&dc=3&atfr=0&loc=http%3A%2F%2Flescherokeesdancers.wifeo.com%2Fliens.php HTTP/1.1 
Host: cas.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: http://lescherokeesdancers.wifeo.com
Access-Control-Request-Method: POST

                                         
                                         178.250.2.71
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: http://lescherokeesdancers.wifeo.com
P3P: CP='CUR ADM OUR NOR STA NID'
Set-Cookie: uid=b1e2acd0-aae0-4688-9c31-e1e7ad9098aa; domain=.criteo.com; expires=Sat, 10-Nov-2018 14:08:32 GMT; path=/ uid=b1e2acd0-aae0-4688-9c31-e1e7ad9098aa; domain=.criteo.com; expires=Sat, 10-Nov-2018 14:08:32 GMT; path=/ zdi=*1tdVb0MostDKFZHhIciOhog%3d%3d; domain=.criteo.com; expires=Thu, 10-May-2018 14:08:32 GMT; path=/
X-Powered-By: ASP.NET
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1000
Date: Fri, 10 Nov 2017 14:08:31 GMT
Content-Length: 1558


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1558
Md5:    814ed6037e5bbb2de6ec8c53337a3113
Sha1:   acef40650e3ab1a6d8710e383c63d90ae8701870
Sha256: 2203ccb2b2db05e48d3dab0799bb8e5cfd7739151daf252e3bf82937124f6bf7
                                        
                                            GET /d.html?c=dW5kZWZpbmVkOnVuZGVmaW5lZDp1bmRlZmluZWQ6MTAzNjoxMjc2ODp1bmRlZmluZWQ6 HTTP/1.1 
Host: d3lvr7yuk4uaui.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
If-Modified-Since: Tue, 21 Feb 2012 22:06:14 GMT
If-None-Match: "d41d8cd98f00b204e9800998ecf8427e"

                                         
                                         13.33.99.56
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Fri, 10 Nov 2017 14:08:32 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-meta-cb-modifiedtime: Fri, 03 Feb 2012 19:53:42 GMT
Server: AmazonS3
Age: 14446
X-Cache: Hit from cloudfront
Via: 1.1 17d39c528c9f270fca3ce7bdfec60ecd.cloudfront.net (CloudFront)
X-Amz-Cf-Id: UuYH960RJw5Z9TL2HpPI9k1vuuCSbJ4oeQfY9jRM0wwcwqv5Oxpmdw==


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /r/__utm.gif?utmwv=5.7.0&utms=1&utmn=371311650&utmhn=lescherokeesdancers.wifeo.com&utme=8(affpub)9(oui)&utmcs=UTF-8&utmsr=1176x885&utmvp=1159x737&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=liens%20-%20lescherokeesdancers&utmhid=1487199584&utmr=-&utmp=%2Flescherokeesdancers%2Fliens.php&utmht=1510322912476&utmac=UA-607176-1&utmcc=__utma%3D1.1984325153.1510322912.1510322912.1510322912.1%3B%2B__utmz%3D1.1510322912.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2045172279&utmredir=1&utmu=qzCAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 10 Nov 2017 14:08:32 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /tool/diff_pub/objbanc2.php?format=h HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 10 Nov 2017 14:08:32 GMT
Server: WIFEO
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 395
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   395
Md5:    3fa09de1dd36f52946965c287a53f52f
Sha1:   cbb9d77234a1abc0d9ba78d95b8bfd5400b463f2
Sha256: a7f58702ffd1f0e9245b3746a1d233c87c2c6a960d981bc1794fcbba37617b5b
                                        
                                            GET /delivery/lg.php?cppv=1&cpp=8DCuRnxoWVd4NlQ5aytCQ0RYenVPdWt2VDBWcWtXN2pWRFhFRHI3YWJ0MmxzcFdOY2V3TCs3VHRnVVdOTFQ5YlN1V280QkVYenpPWjdDNkQ0d0tiQkZnZElOdkhLczY0anNvSzhjc0tGQXphTVBZNUNKb1VWbW5FUDlub2NldFlRanljSldjajg0bi9wUWxJYmZ2Z0t1SUNXOXpsUzBaT1EvbkMyME5vM1o5SWlod1NtbzE4QjdnUityeGdXbk9KeEVjVEFheHZhdW5yaktOUGdFL0MxYlVnVnNjNjV2ckR0UkxjRjJ6dzQvSEVVb3BpVWU5N2dBcmEwNkdUMXoxSEJYOEJmfA%3D%3D HTTP/1.1 
Host: cat.nl.eu.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; zdi=*1b25DezqsyF%2bTd6nkubEBmw%3d%3d

                                         
                                         178.250.2.66
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache
Pragma: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: Microsoft-IIS/8.5
P3P: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
X-Powered-By: ASP.NET
Date: Fri, 10 Nov 2017 14:08:32 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            POST /delivery/ajs.php?ptv=34&containerid=wctamrebot&zoneid=471433&width=728&height=390&cb=34707440707&nodis=1&charset=UTF-8&ctonumcatci=2&dc=3&atfr=0&loc=http%3A%2F%2Flescherokeesdancers.wifeo.com%2Fliens.php HTTP/1.1 
Host: cas.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Content-Length: 3323
Origin: http://lescherokeesdancers.wifeo.com
Cookie: uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; zdi=*1b25DezqsyF%2bTd6nkubEBmw%3d%3d
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         178.250.2.71
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Cache-Control: private
Pragma: no-cache
Content-Encoding: gzip
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: http://lescherokeesdancers.wifeo.com
P3P: CP='CUR ADM OUR NOR STA NID'
Set-Cookie: zdi=*1y80SGGsfGuuApap8G4Z9AHBUxssKrwiMGta9e6aqNEQ%3d; domain=.criteo.com; expires=Thu, 10-May-2018 14:08:32 GMT; path=/
X-Powered-By: ASP.NET
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1000
Date: Fri, 10 Nov 2017 14:08:32 GMT
Content-Length: 1563


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1563
Md5:    e840091de183ff50ed87f48fef399484
Sha1:   b5a2c5797bc27a81b9f8bc1c0e3a461e679a397a
Sha256: 5d785736964e139b0db1bcf400bc0fa9eda8501df833515d0d5f259491cf9aa1
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Nov 2017 14:08:32 GMT
Expires: Fri, 10 Nov 2017 14:08:32 GMT
Cache-Control: private, max-age=3600
Etag: 8854400957566561896
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 25081
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   25081
Md5:    df0a1c7f0ea78aadcc28e1951c38edd9
Sha1:   18819f883a1c6cb95227f9fcec492a21da995731
Sha256: 047f738cce9f494dc2671f9b4ceb839613be8f8ed1f44918a8d75fabd721f5e9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:32 GMT
Server: Apache
Last-Modified: Thu, 09 Nov 2017 23:43:12 GMT
Expires: Thu, 16 Nov 2017 23:43:12 GMT
Etag: 5EDA96BC38215DAA085B8DF93974F85EA3A3A176
Cache-Control: max-age=552279,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp20
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    957e70ae8eafad41a8f023f365b098f5
Sha1:   5eda96bc38215daa085b8df93974f85ea3a3a176
Sha256: dbf5350b16bf8a8047d7cc1417f55188323cc3302bf51802bc398df0ef8afbae
                                        
                                            GET /delivery/lg.php?cppv=1&cpp=OLNGHHxRV0ZsOFBhNCtMSzdGR3NpVkZsVmY5TkRleVBURG1yOEo1NmJaWkgyNFdmUXNtRDJ2NUk4aE1hcERaZDJIaDVuWlk1Z2hBSnB2TW11d1cycUZLclBtRDk0MDlmazFBK004T3hJMDk3b29qOEpPSEpkTmZETHYrN2szSTI4Z3VGdDY2UWp6K1E1cHo0QWhzWmVKRHlKd0orcDFnb0RhUFRWS283NWw1SnRXMThvc0JHekpzUHdLS2Z2MDUxWloySzJmNXFJLzFxMk00ZFNreDFxWm5WTGJJdjRhdHhPTUdsenpXTWswUWYyZHQ0QkJxRFVHRGc2WEdXcmpqVXBBMGtlfA%3D%3D HTTP/1.1 
Host: cat.nl.eu.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; zdi=*1y80SGGsfGuuApap8G4Z9AHBUxssKrwiMGta9e6aqNEQ%3d

                                         
                                         178.250.2.66
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache
Pragma: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: Microsoft-IIS/8.5
P3P: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
X-Powered-By: ASP.NET
Date: Fri, 10 Nov 2017 14:08:32 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /infos_wifeo/img/728x250_2.jpg HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 10 Nov 2017 14:08:32 GMT
Server: WIFEO
Access-Control-Allow-Origin: http://shop.wifeo.com
Last-Modified: Thu, 03 Sep 2015 11:44:18 GMT
Etag: "8f45-51ed64dac0805"
Vary: User-Agent
Expires: Tue, 09 Jan 2018 14:08:32 GMT
Cache-Control: max-age = 2592000
X-Varnish: 154336429
Age: 0
Via: 1.1 varnish-v4
X-Cache: HIT
Transfer-Encoding: chunked
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   36677
Md5:    427b8f544c2062b8fa73c88eceb4cef4
Sha1:   44763bda69710e214f74dc5b5b0c9bf56bb3285a
Sha256: 2751f07db03cec055c5af5ac596e1fc8519d9e41e51310da7e5f542ccb22621d
                                        
                                            GET /pagead/js/r20171106/r20170110/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 10 Nov 2017 14:08:32 GMT
Expires: Fri, 10 Nov 2017 14:08:32 GMT
Cache-Control: private, max-age=1209600
Etag: 7816145809007620695
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67717
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   67717
Md5:    0087a681d4ec4984d30ddaa0e265a294
Sha1:   f1195018b7875ff629b32c5e708f760bb4a2873d
Sha256: 722784ff494ac8e3b9ea898cab586946548b9afad44319ece791d470f7657d9a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: Apache
Last-Modified: Thu, 09 Nov 2017 23:43:12 GMT
Expires: Thu, 16 Nov 2017 23:43:12 GMT
Etag: 6885266066D53690577ED6AE29E4C0A499E93B69
Cache-Control: max-age=552278,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp20
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d39e2a9401661ee1786fdb11a4a9832d
Sha1:   6885266066d53690577ed6ae29e4c0a499e93b69
Sha256: 4a9f254184a7c139ef8d8d468b5194c8ef50a0822fcf3961eb0defcf3e882bf7
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Expires: Tue, 14 Nov 2017 14:08:33 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3f2ef4707187ca29645bf29d8c35613f
Sha1:   050bf071afed3743733ae4c6ed00c719921e30e2
Sha256: e194a61ea77c8dd33f28f3e7f4734d5f812b282f92e555b56f4c31f88ffee9c2
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Expires: Tue, 14 Nov 2017 14:08:33 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            POST / HTTP/1.1 
Host: gn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1419
Content-Transfer-Encoding: binary
Cache-Control: max-age=548804, public, no-transform, must-revalidate
Last-Modified: Thu, 9 Nov 2017 22:33:44 GMT
Expires: Thu, 16 Nov 2017 22:33:44 GMT
Date: Fri, 10 Nov 2017 14:08:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1419
Md5:    2e25892a3249c18d99e660ba07adc81a
Sha1:   240a1d017e387fffd9150d6a970eca3841dd1a44
Sha256: 61834395ba6eaddbf9b5b72da4101709afcb7ae24b57c22c6a59282cac1bbe3b
                                        
                                            GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         94.31.29.16
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 25 Jul 2016 16:08:02 GMT
Etag: W/"5869c96cc8f19086aee625d670d741f9"
Server: NetDNA-cache/2.2
Expires: Mon, 05 Nov 2018 14:08:33 GMT
Cache-Control: max-age=31104000
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Hello-Human: Say hello back! @getBootstrapCDN on Twitter
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11109
Md5:    b8f22b04382a248281904e13f55865c5
Sha1:   d7f309978d2b6a35a946d6e7b4d95474289c013e
Sha256: 50a9b13a3ac502a2fa918c3573f2cf98f362076037df6caf0149ca5a74737def
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Expires: Tue, 14 Nov 2017 14:08:33 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    96c37c3ad5d51a3be445b45a4ced8ce5
Sha1:   1b7e92748ee5c878d6a9d190b15ca6a0347f1d05
Sha256: e19f315908a08af6034a7f412b742ea271509ffea1791cb92156f274dc2f4d4e
                                        
                                            GET /w/1.0/cm?id=5c627885-3475-4ed8-a54e-8d0222f57cbe&d=MACRO&r=https%3a%2f%2fdis.criteo.com%2frex%2fmatch.aspx%3fc%3d31%26uid%3d HTTP/1.1 
Host: us-u.openx.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         173.241.240.143
HTTP/1.1 302 Moved Temporarily
                                        
Set-Cookie: i=d84e34a0-4249-4ff7-82bc-bf2a15ff73fb|1510322913; Version=1; Expires=Sat, 10-Nov-2018 14:08:33 GMT; Max-Age=31536000; Domain=.openx.net; Path=/
Server: OXGW/11.155.7
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://us-u.openx.net/w/1.0/cm?cc=1&id=5c627885-3475-4ed8-a54e-8d0222f57cbe&d=MACRO&r=https%3a%2f%2fdis.criteo.com%2frex%2fmatch.aspx%3fc%3d31%26uid%3d
Date: Fri, 10 Nov 2017 14:08:33 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Expires: Tue, 14 Nov 2017 14:08:33 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    8bebc0cf1fd5ad81b2a3ba84c322f520
Sha1:   d9dcd31022db23c6b66f130ffb8d00d9ef983920
Sha256: ddcaf637eac1d53726e55ea62e07cd936b38f9036bbc138082e13fba6a8268cd
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=601573, public, no-transform, must-revalidate
Last-Modified: Fri, 10 Nov 2017 13:13:50 GMT
Expires: Fri, 17 Nov 2017 13:13:50 GMT
Date: Fri, 10 Nov 2017 14:08:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    60fd6409c97b1402cced06cdf9f8cba9
Sha1:   e406c70d654a0204ec13d5fad576bc2ffa7ee4f9
Sha256: 7702ba7e6b800573556c1004e3096f34b7a737ecf84b8ee878131693a2577fde
                                        
                                            GET /tool/publicite_subsitution_adsense.php?format=h HTTP/1.1 
Host: www.wifeo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         194.146.225.153
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: WIFEO
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 336
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   336
Md5:    7aeae841eb8de1ff54eaeabc7192e670
Sha1:   26a767ee3a02af326968a6636cbcd2f450e18988
Sha256: 1c7c5ccd205f9b6423efea706df7c44ba68351c5e2b25ba1ce5590e4cd73636d
                                        
                                            GET /adsid/integrator.js?domain=www.wifeo.com HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET /w/1.0/cm?cc=1&id=5c627885-3475-4ed8-a54e-8d0222f57cbe&d=MACRO&r=https%3a%2f%2fdis.criteo.com%2frex%2fmatch.aspx%3fc%3d31%26uid%3d HTTP/1.1 
Host: us-u.openx.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: i=d84e34a0-4249-4ff7-82bc-bf2a15ff73fb|1510322913

                                         
                                         173.241.240.143
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Vary: Accept
Set-Cookie: i=d84e34a0-4249-4ff7-82bc-bf2a15ff73fb|1510322913; Version=1; Expires=Sat, 10-Nov-2018 14:08:33 GMT; Max-Age=31536000; Domain=.openx.net; Path=/
Server: OXGW/11.155.7
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://dis.criteo.com/rex/match.aspx?c=31&uid=e74ec51f-cf32-4f8a-b0f9-713c31c4ffef
Date: Fri, 10 Nov 2017 14:08:33 GMT
Content-Length: 0


--- Additional Info ---
                                        
                                            GET /pagead/js/r20171106/r20170110/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Wed, 08 Nov 2017 06:33:02 GMT
Expires: Wed, 22 Nov 2017 06:33:02 GMT
Etag: 14619453758857579914
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 29534
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 200131
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29534
Md5:    3270e0ed4ab89ebe5952046eefc27fd1
Sha1:   408f1a993e98923e17449759c34f4c5f997c858c
Sha256: 1e2e5ca8a21f5be9de454d8170a329496f19965138fde166cfb570c1c7869c05
                                        
                                            GET /pub-config/r20160913/ca-pub-5439285203515723.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 227
Date: Fri, 10 Nov 2017 10:39:54 GMT
Expires: Fri, 10 Nov 2017 22:39:54 GMT
Last-Modified: Thu, 09 Nov 2017 21:19:01 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=43200
Age: 12519
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   227
Md5:    b365f3c00e0b2b73d92ced29f8febe3a
Sha1:   ba95530d306f9eefc0f410b3097472b2022cd89e
Sha256: 690260ac346d81f4b7fc0c2f390b679dd362845242696b331a0ec33198adc34f
                                        
                                            GET /pagead/html/r20171106/r20170110/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Wed, 08 Nov 2017 06:03:06 GMT
Expires: Wed, 22 Nov 2017 06:03:06 GMT
Etag: 6418741575122187315
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6881
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 201927
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6881
Md5:    23c17ee6d2d9b616f6e577cfb564510b
Sha1:   9901bde0396b3f544ca06e452d02cf6a55472034
Sha256: 088d427f05b00a47bc7b6baf8888b625cb01001f70349d792720ae991f649008
                                        
                                            POST / HTTP/1.1 
Host: ss.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1609
Content-Transfer-Encoding: binary
Cache-Control: max-age=375106, public, no-transform, must-revalidate
Last-Modified: Tue, 7 Nov 2017 22:19:17 GMT
Expires: Tue, 14 Nov 2017 22:19:17 GMT
Date: Fri, 10 Nov 2017 14:08:33 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1609
Md5:    7571b25e608ff9d81836879b91ad2226
Sha1:   beb850b46fa681b0af48eea24c2d64b630add58a
Sha256: 23257575e4fc0ca83b97d790b9aa6a86f908f8fb6db863b404fd450a09ed3ee6
                                        
                                            GET /design/promo/messageimportant_recommandes_hor.gif HTTP/1.1 
Host: www.merci-facteur.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/publicite_subsitution_adsense.php?format=h

                                         
                                         194.146.226.53
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: Apache
Location: https://www.merci-facteur.com/design/promo/messageimportant_recommandes_hor.gif
Cache-Control: max-age=7200
Expires: Fri, 10 Nov 2017 16:08:33 GMT
Content-Length: 287
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   287
Md5:    a000ed61b42f026d99c63347774d7627
Sha1:   78d36b1bd8b8ab30cadcd3faaeb3057e15d3c50c
Sha256: b506bf3377429d3d622ca8aea6d618b28de45789ed6acfbd7e0b73a52315cbae
                                        
                                            GET /adsid/integrator.js?domain=www.wifeo.com HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET /rex/match.aspx?c=31&uid=e74ec51f-cf32-4f8a-b0f9-713c31c4ffef HTTP/1.1 
Host: dis.criteo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php
Cookie: uid=2ee92372-aa30-45b4-91f1-7f22ab7ebb79; zdi=*1y80SGGsfGuuApap8G4Z9AHBUxssKrwiMGta9e6aqNEQ%3d

                                         
                                         178.250.2.76
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private
Pragma: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Server: Microsoft-IIS/8.5
P3P: CP='CUR ADM OUR NOR STA NID'
Set-Cookie: eid=*1qZi2zD6Lnl4Vc7c2Ke%2fvB4Mpt8qLOzpTHf13dIFG3gP9ZSPb6lZuV6QenUsW0xD%2f; domain=.criteo.com; expires=Thu, 10-May-2018 14:08:34 GMT; path=/
X-Powered-By: ASP.NET
Date: Fri, 10 Nov 2017 14:08:33 GMT
Content-Length: 43


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "56BC359AB64ADDDF45DFAEDB6A9F87AE2771838419752865D0A6AD96564C561F"
Last-Modified: Thu, 09 Nov 2017 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20508
Expires: Fri, 10 Nov 2017 19:50:22 GMT
Date: Fri, 10 Nov 2017 14:08:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    9e2557893a6f4753f41a8189744bca2d
Sha1:   f20666ba6a4d083ada3307418e290781394df400
Sha256: 56bc359ab64adddf45dfaedb6a9f87ae2771838419752865d0a6ad96564c561f
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         192.35.177.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 10 Nov 2017 14:08:33 GMT
Content-Transfer-Encoding: Binary
Last-Modified: Fri, 10 Nov 2017 08:39:23 GMT
Etag: "ebc630546bb035d461eccdfbb1c2ec63f618a559"
Expires: Sat, 11 Nov 2017 08:39:23 GMT
Cache-Control: max-age=43200,public,no-transform,must-revalidate
Content-Length: 1398
Connection: close


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    d05e9abea821ab2bb07e84cead78ff83
Sha1:   ebc630546bb035d461eccdfbb1c2ec63f618a559
Sha256: ed0ee6bf381a8862d85fa7c096e35a21b3577e0610c9e619289e99a6201cda0e
                                        
                                            GET /design/promo/messageimportant_recommandes_hor.gif HTTP/1.1 
Host: www.merci-facteur.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/publicite_subsitution_adsense.php?format=h

                                         
                                         194.146.226.53
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=ISO-8859-15
                                        
Date: Fri, 10 Nov 2017 14:08:34 GMT
Server: Apache
Set-Cookie: PHPSESSID=89v4kmomq07ovq9e19fa4vgdt4; path=/ idctemp=2e2ce8a80289d1fd8e9d9901b395cc1f51562a35; expires=Mon, 20-Nov-2017 14:08:34 GMT; path=/; domain=www.merci-facteur.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5198
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5198
Md5:    d7191f468f2cfbee4b78d64284be877b
Sha1:   9a4ccd7c84c5dc42247a511245f9f4def1866ea3
Sha256: b1af0ac95db8221433f38c2659a776b2f4006c3c8e05349631990394c5ea77f9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=172800
Date: Fri, 10 Nov 2017 14:08:36 GMT
Etag: "5a056208-1d7"
Expires: Sun, 12 Nov 2017 14:08:36 GMT
Last-Modified: Fri, 10 Nov 2017 08:23:36 GMT
Server: ECS (arn/45E2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6d4963933af0ce4263454db76bfe384f
Sha1:   22a14a1a47b5ff6e4a3c46f9d369592c085e270f
Sha256: 3b353db9e7ab4e4653d3bc52c0b52199f9a45489921f8e9b76614dc71e934af9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=172800
Date: Fri, 10 Nov 2017 14:08:36 GMT
Etag: "5a055a46-1d7"
Expires: Sun, 12 Nov 2017 14:08:36 GMT
Last-Modified: Fri, 10 Nov 2017 07:50:30 GMT
Server: ECS (arn/4692)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    26fb73349bfcb248cd65f0b0b05f6bf4
Sha1:   7b6340a80f26eeefe4c5e48a4785f5f6e1b3559b
Sha256: 66d32423da913dc4cc4c7de4b7b4e0e39b19e0f788de11bcc6f98948dfb97e92
                                        
                                            GET /edacead583.js HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://lescherokeesdancers.wifeo.com/liens.php

                                         
                                         23.111.9.35
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 10 Nov 2017 14:08:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: Bc2oUz+XRbsnrMCC4ybAsercuy+KFFZr253qgjmQ03zZcig0vtvr6ZZR72ZGxfP/CG5T/NxEClQ=
x-amz-request-id: 4A644E1FA1F61D08
Last-Modified: Fri, 24 Feb 2017 10:38:02 GMT
Etag: W/"a4e19008187b98c3adaeeba10a5cda8a"
Server: NetDNA-cache/2.2
Cache-Control: max-age=0, private, must-revalidate
X-Cache: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3860
Md5:    de3c523e35fced54fbee82fa93fad81a
Sha1:   ee8b93670e2c6ffb0cb713f616bfe93bbf0363d8
Sha256: 58460d8be64a9fd1826ed33519d7b000764714fef4cc17e97099a91e696979d2
                                        
                                            GET /pagead/ads?client=ca-pub-5439285203515723&output=html&h=90&slotname=2123531750&adk=230926929&adf=359694579&w=728&loeid=38893312&format=728x90&url=http%3A%2F%2Flescherokeesdancers.wifeo.com%2Fliens.php&ea=0&flash=10.0.45&wgl=0&dt=1510322912761&bpp=9&fdt=20&idt=212&shv=r20171106&cbv=r20170110&saldr=aa&correlator=3506262370136&frm=8&ga_vid=444521739.1510322913&ga_sid=1510322913&ga_hid=1256632439&ga_fc=0&pv=2&icsg=0&nhd=3&dssz=0&mdo=0&mso=0&u_tz=60&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=-12245933&ady=-12245933&biw=-12245933&bih=-12245933&isw=728&ish=90&ifk=2029978203&eid=38893302%2C21061122%2C26835106%2C188690903&oid=3&nmo=1&zm=1.62&rx=0&eae=6&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C728%2C90&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=1&dtd=247 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.wifeo.com/tool/diff_pub/objbanc2.php?format=h

                                         
                                         216.58.209.98
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Location: http://www.wifeo.com/tool/publicite_subsitution_adsense.php?format=h
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 10 Nov 2017 14:08:33 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 10-Nov-2017 14:23:33 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="41,39,38,37,35",quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---