| www.frsim-sfn.net/verification/login.php | 217.160.0.114 | 302 Moved Temporarily | 138 B |
URL HTTP/1.1www.frsim-sfn.net/verification/login.php IP217.160.0.114:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /verification/login.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 08 Feb 2023 17:23:24 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://www.frsim-sfn.net/verification/login.php
Expires: Wed, 08 Feb 2023 17:43:24 GMT
Cache-Control: max-age=1200
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hashb7407cc102d62a5acd5e61f8a79bed36 c2f4890a62454e514962b55b7fc14228339c8e90 be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10305
Expires: Wed, 08 Feb 2023 20:15:09 GMT
Date: Wed, 08 Feb 2023 17:23:24 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17531
Expires: Wed, 08 Feb 2023 22:15:35 GMT
Date: Wed, 08 Feb 2023 17:23:24 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 16:34:13 GMT
content-type: application/json
age: 2951
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hashcc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Wed, 08 Feb 2023 18:26:42 GMT
Date: Wed, 08 Feb 2023 17:23:24 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4yeKvJSG18QzmOxAN80G17mgpPsbUZM804re3IlSzxH7dluw4/OzNieUNm2J1L1kFbuBcWW5ygmtODYLyXK9mA==
x-amz-request-id: XHSH8K0E9CTZSQ6C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 16:36:00 GMT
age: 2844
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 17:23:24 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/verification/res/arr.js | 217.160.0.114 | 200 OK | 178 B |
URL HTTP/2www.frsim-sfn.net/verification/res/arr.js IP217.160.0.114:0
Hash37df270b122ffedcfac1c777e844e5f5 7c0062132677b446fbddc43b0094a7ee7d002441 91b1e8ba39a81cdec6c3708a1389982575905f781af172749529e16174ca3688
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /verification/res/arr.js HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 178
date: Wed, 08 Feb 2023 17:23:24 GMT
server: Apache
last-modified: Mon, 30 Jan 2023 18:50:09 GMT
etag: "b2-5f37faf2e5a40"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/js/mire-v2-script.js | 93.20.64.1 | 200 OK | 971 B |
URL HTTP/2static.s-sfr.fr/cas/js/mire-v2-script.js IP93.20.64.1:0
Hashcb512b065efb84f9e47a075bf73258de 13b8a44da5260e400e5219d15dea5acbd784723e 19659b6fe89ada25d9372222a8ba57b8514423e05586cd84add4eab4b80eef95
GET /cas/js/mire-v2-script.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C2B:F214_0A2C4E9E:1F94_63E3D7DB_1615079:15135
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 17:11:55 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 19:11:55 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 01 Sep 2021 15:55:30 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 971
x-varnish: 510939621 516558713, 760323748 658104059
age: 688
via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/js/mire-jquery.placeholder.js | 93.20.64.1 | 200 OK | 1.1 kB |
URL HTTP/2static.s-sfr.fr/cas/js/mire-jquery.placeholder.js IP93.20.64.1:0
File typeASCII text, with very long lines (963) Hash024650c9ca75fcedce8a5ffa764e11f1 56ea8e24233e15b4bc8799648a8f3ccc4cd0cdcf dcb867b0988fc47fa8b1f32cf4614eed04326d0a0120dcb2f53bf0a551a52008
GET /cas/js/mire-jquery.placeholder.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:7720_0A2C4E9E:1F94_63E3D4C3_15731FE:15135
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:58:43 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 18:58:43 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 12 Sep 2018 16:12:50 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 1055
x-varnish: 302676276 349409378, 760323749 749625424
age: 1480
via: front200-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/ist/loader.sfr.min.js | 93.20.64.1 | 200 OK | 1.6 kB |
URL HTTP/2static.s-sfr.fr/resources/ist/loader.sfr.min.js IP93.20.64.1:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (1030) Hashec178213f1214771267c6d0b6dd83d28 6190adefc716f56c60dce3f43668753812837418 a4adfc1826180bca2496ebec32f2d7b0b43970b58ac7b1f476f305765c577b88
GET /resources/ist/loader.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:E33A_0A18065E:1F90_63E3D7AF_15F5A7F:1458F
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=900, public
content-type: text/javascript
content-encoding: br
date: Wed, 08 Feb 2023 17:11:11 GMT
expires: Wed, 08 Feb 2023 17:26:11 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
last-modified: Tue, 18 Oct 2022 17:01:26 GMT
content-length: 1565
x-varnish: 788737087 790369772, 760323750 730438362
age: 732
via: front100-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/verification/res/jq.js | 217.160.0.114 | 200 OK | 90 kB |
URL HTTP/2www.frsim-sfn.net/verification/res/jq.js IP217.160.0.114:0
File typeASCII text, with very long lines (65446), with CRLF line terminators Hash3e4bb227fb55271bfe9c9d4a09147bd8 156837f75f6600ccb602b4efcbd393636c33f35e ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /verification/res/jq.js HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 89501
date: Wed, 08 Feb 2023 17:23:24 GMT
server: Apache
last-modified: Mon, 30 Jan 2023 18:50:10 GMT
etag: "15d9d-5f37faf3d9c80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/stats/header.js | 93.20.64.1 | 200 OK | 50 kB |
URL HTTP/2static.s-sfr.fr/stats/header.js IP93.20.64.1:0
File typeUnicode text, UTF-8 text, with very long lines (1827) Hash9d0a20db3df4f9ea78aff36816ffc800 92689fe5447ea8430269a8c9180d36871a820add 93984ef3123922f578158b8a87087bc34346560cba497c2428a592c0a1946968
GET /stats/header.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C5B:177A_0A2C4E71:1F90_63E3DA5D_161A938:4253
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=300, public
content-type: text/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 17:22:37 GMT
expires: Wed, 08 Feb 2023 17:27:37 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 50158
x-varnish: 296302505 303485272, 760323751 749627812
age: 47
via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.sfr.fr/cas/css/push-download-app/push-download-app-mobile.css?v0.0.1 | 80.125.163.172 | 200 OK | 2.6 kB |
URL HTTP/2www.sfr.fr/cas/css/push-download-app/push-download-app-mobile.css?v0.0.1 IP80.125.163.172:0
Hash9174433651d27997ba382a0afc68770a 5deec7d1a580d9623c6e94014ec7b768f78f5f26 121aee4c204350cbd43e32fc39946bc81db553a7779c029e40b03faf7d3ff4e2
GET /cas/css/push-download-app/push-download-app-mobile.css?v0.0.1 HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: SFR Reverse Proxy
content-type: text/css;charset=UTF-8
strict-transport-security: max-age=15768000
date: Wed, 08 Feb 2023 17:23:24 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
accept-ranges: bytes
etag: W/"2580-1672826132000"
via: front200-piw-pr
set-cookie: X-Mapping-oejdnnie=6EDCA8497280AC04CCF8DA1AB27AB37C; path=/
last-modified: Wed, 04 Jan 2023 09:55:32 GMT
content-length: 2580
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/stats/footer.js | 93.20.64.1 | 200 OK | 38 kB |
URL HTTP/2static.s-sfr.fr/stats/footer.js IP93.20.64.1:0
Hasha94768403fb0ea32c1af9ceeadd834d7 65a2dde6c1d6554afe92fa1eac81a50b751360f0 b42c73a8faa2c559f988623780a1cecafad33d58b6da7ae9320af36dc8d6f589
GET /stats/footer.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C5B:A186_0A18065E:1F90_63E3DA73_1687AA9:1458F
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=300, public
content-type: text/javascript
content-encoding: br
date: Wed, 08 Feb 2023 17:22:59 GMT
expires: Wed, 08 Feb 2023 17:27:59 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 08 Feb 2023 11:30:22 GMT
content-length: 38256
x-varnish: 301791588 303830502, 760323752 765201049
age: 24
via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/app-store-app.svg | 93.20.64.1 | 200 OK | 10 kB |
URL HTTP/2static.s-sfr.fr/media/app-store-app.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (13599) Hash0529a719cb62dbcd561b7481654571cd fb3bbcabf3716dbb4884523c15e3f3a5e95d7725 dada6a0b8a62fe3661431b65b04e4e34fb3b2cebef38598309573855f20e119a
GET /media/app-store-app.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:752E_0A18065E:1F94_63E05154_983CE69:12D3B
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Mon, 06 Feb 2023 01:01:08 GMT
expires: Mon, 13 Feb 2023 01:01:08 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 10544
x-varnish: 228544467 219996301, 760323754 492318262
age: 231735
via: front100-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/layer-content-1.jpg | 93.20.64.1 | 200 OK | 28 kB |
URL HTTP/2static.s-sfr.fr/media/layer-content-1.jpg IP93.20.64.1:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x111, components 3\012- data Hash43d37376f3e9f6de565652ca90e43a7b 85b1055063df606d2ceeeb2e5bd49c30260e1f82 149aa738b1cd062359330f7705f4a22684fa3f14e647120e28067a0a4fb064f2
GET /media/layer-content-1.jpg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:2BF8_0A2C4E71:1F95_63E07909_9DA0C6B:8864
server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/jpeg
date: Mon, 06 Feb 2023 03:50:33 GMT
expires: Mon, 13 Feb 2023 03:50:33 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 28047
x-varnish: 677907856 668344446, 760323755 496477715
age: 221570
via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/css/layer-responsive.css | 93.20.64.1 | 200 OK | 1.1 kB |
URL HTTP/2static.s-sfr.fr/cas/css/layer-responsive.css IP93.20.64.1:0
File typeASCII text, with very long lines (655) Hashf1e5908b329a41bee564f5bcb384e69f 77e63f2ebd11197570098f040899f9a2e1117863 99994f08c3b7b72446fb042925d8646aa99d24688969d1f96c9a8c172212d457
GET /cas/css/layer-responsive.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C5B:CF96_0A18065E:1F94_63E3C08C_116A0B6:1458F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 15:32:28 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 17:32:28 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 12 Sep 2018 16:12:50 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 1064
x-varnish: 304003658 301379676, 760323756 766052036
age: 6655
via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/css/buttons.css | 93.20.64.1 | 200 OK | 4.3 kB |
URL HTTP/2static.s-sfr.fr/cas/css/buttons.css IP93.20.64.1:0
File typeASCII text, with very long lines (650) Hash032734f4607f8f85f7edd91bcb911939 95404f701de4910e4ba252df21ac33ea660c443c 58cb3c86fe8ef7c374b02b1d852e65262d85775f8678076f1d361467d5814985
GET /cas/css/buttons.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C1B:1D88_0A2C4E71:1F90_63E3C3B1_11A1478:4253
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 15:45:53 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 17:45:53 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 12 Sep 2018 16:12:50 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 4286
x-varnish: 778073525 778072899, 760323757 745249693
age: 5851
via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr//cas/css/style-responsive.css | 93.20.64.1 | 200 OK | 4.4 kB |
URL HTTP/2static.s-sfr.fr//cas/css/style-responsive.css IP93.20.64.1:0
File typeASCII text, with very long lines (583) Hash216ebb25326ebd8838f7c64412612fc5 18e06473e710972cb447d27d53a8c715efab7ca2 b1d5cce2e7c9496a057ab699f4cd3e96478358a1d2603e3ab49c5e64d79b40cd
GET //cas/css/style-responsive.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C3B:6E32_0A18063A:1F95_63E3D98E_1691487:1DA81
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 17:19:10 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 19:19:10 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 01 Sep 2021 15:55:30 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 4445
x-varnish: 342912718 350000239, 760323758 763824750
age: 253
via: front101-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/css/style-responsive-update.css | 93.20.64.1 | 200 OK | 723 B |
URL HTTP/2static.s-sfr.fr/cas/css/style-responsive-update.css IP93.20.64.1:0
File typeASCII text, with very long lines (336) Hashbdaa73a65f5fb9294f694c65296e654c 030445443d94410382892242fd3d4cfd0ae34103 d1e3ffd5eebbdc23962448974576f4ff1d6cb7e7f5492979f8fbbc3a8f459f5b
GET /cas/css/style-responsive-update.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C5B:A566_0A2C4E9E:1F90_63E3CC44_13B1909:15135
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:22:28 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 18:22:28 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 12 Sep 2018 16:12:50 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 723
x-varnish: 294940547 305594442, 760323759 743906666
age: 3655
via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 17:14:52 GMT
age: 512
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/cas/js/jquery-1.10.2.min.js | 93.20.64.1 | 200 OK | 33 kB |
URL HTTP/2static.s-sfr.fr/cas/js/jquery-1.10.2.min.js IP93.20.64.1:0
File typeASCII text, with very long lines (32072) Hash77a1d94d025e9cfb326ac37221c33133 b7a053fbcdd053617d281e4bf4d79f9c70098735 dd955b97912f12ed81cc766aeee350a236db8149bbbe427be1be80c0f34b34fc
GET /cas/js/jquery-1.10.2.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
response-id: 5D119C5B:E7C4_0A18065E:1F94_63E3C488_122C347:1458F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
date: Wed, 08 Feb 2023 15:49:28 GMT
access-control-max-age: 1000
expires: Wed, 08 Feb 2023 17:49:28 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
last-modified: Wed, 12 Sep 2018 16:12:50 GMT
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-allow-headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token, access-control-allow-origin
content-length: 32825
x-varnish: 302686388 300529449, 760323760 728627220
age: 5635
via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/js/frameworks/jquery/sfr.jquery.js | 93.20.64.1 | 200 OK | 42 kB |
URL HTTP/2static.s-sfr.fr/resources/js/frameworks/jquery/sfr.jquery.js IP93.20.64.1:0
File typeASCII text, with very long lines (32023) Hash383b8fb742201058e6d3a698bcf49ee1 642d71e6ef8e833d4b60ab8d10c21031dae39c16 28007056fdfc97a9c38ea3f581e70830061a2d210ea16029021a770d1d86a3eb
GET /resources/js/frameworks/jquery/sfr.jquery.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C5B:1F5E_0A2C4E71:1F95_63E3D1F6_146DE87:4253
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:46:46 GMT
expires: Wed, 08 Feb 2023 18:46:46 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
last-modified: Sat, 14 Jan 2023 04:51:54 GMT
content-length: 41883
x-varnish: 298741107 305466588, 760323761 761269792
age: 2198
via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/ist/ist.sfr.min.js | 93.20.64.1 | 200 OK | 7.2 kB |
URL HTTP/2static.s-sfr.fr/resources/ist/ist.sfr.min.js IP93.20.64.1:0
File typeHTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (728) Hashd137472ce32130ea1c1ee68b413e9df1 c0bc9a56a96e15046c809f1d0a3683318d09cdb6 a227779d9338912be3a7357a11157a5829542e0e30894f4a6e2653bc4ed9687c
GET /resources/ist/ist.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:371A_0A18063A:1F94_63E3C795_12E3F30:1DA81
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:02:29 GMT
expires: Wed, 08 Feb 2023 18:02:29 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 7244
x-varnish: 345784658 342872128, 760323762 752720763
age: 4855
via: rtm, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/ist/param.sfr.min.js | 93.20.64.1 | 200 OK | 3.5 kB |
URL HTTP/2static.s-sfr.fr/resources/ist/param.sfr.min.js IP93.20.64.1:0
File typeUnicode text, UTF-8 text, with very long lines (1687) Hashabd5827ebd4d9c6f4c9d1160cf418fa9 39163aa8533ba3e8c1acf7b6139c802e8fdb4b2e 8b93467bb534908f42d252c725a6e296f898109afc653377cafb0ff91fd42ab8
GET /resources/ist/param.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:4654_0A2C4E71:1F90_63E3D44D_14E50EA:4253
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:56:45 GMT
expires: Wed, 08 Feb 2023 18:56:45 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 3488
x-varnish: 517479339 517279586, 760323763 763725605
age: 1598
via: rtm, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/js/global.sfr.min.js | 93.20.64.1 | 200 OK | 62 kB |
URL HTTP/2static.s-sfr.fr/resources/js/global.sfr.min.js IP93.20.64.1:0
File typeUnicode text, UTF-8 text, with very long lines (532) Hash0f40c1bbc56c0057cca3342ee79a4c61 49c21306667e5de47f32e0928e775bb96b2bc459 70a5b87842359110ca414263e52ef8b4df702015b466f013d4d7afa5ecc1bde3
GET /resources/js/global.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:A920_0A18065E:1F90_63E3C3CA_12068BF:1458F
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=utf-8
content-encoding: br
date: Wed, 08 Feb 2023 15:46:18 GMT
expires: Wed, 08 Feb 2023 17:46:18 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
content-length: 62345
x-varnish: 342410848 344273430, 760323764 754231045
age: 5826
via: rtm, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9907
Expires: Wed, 08 Feb 2023 20:08:32 GMT
Date: Wed, 08 Feb 2023 17:23:25 GMT
Connection: keep-alive
|
|
| www.sfr.fr/eTagP/log.jsp?d=XDom&r=https%3A//www.frsim-sfn.net/verification/login.php | 80.125.163.172 | 200 OK | 1 B |
URL HTTP/2www.sfr.fr/eTagP/log.jsp?d=XDom&r=https%3A//www.frsim-sfn.net/verification/login.php IP80.125.163.172:0
File typevery short file (no magic) Hash68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /eTagP/log.jsp?d=XDom&r=https%3A//www.frsim-sfn.net/verification/login.php HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: SFR Reverse Proxy
content-type: text/javascript;charset=UTF-8
date: Wed, 08 Feb 2023 17:23:25 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
via: http60-piw-pr, front101-piw-pr
set-cookie: X-Mapping-oejdnnie=D923753C31F9981FEE60839E6A3CDF63; path=/
JSESSIDETP=C7D4B572A3EED634A9D62BD9B32C9B03.etagproxy11; Path=/; Secure; HttpOnly
content-length: 1
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh | 93.20.64.1 | 200 OK | 8.1 kB |
URL HTTP/2static.s-sfr.fr/export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh IP93.20.64.1:0
File typeHTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30093), with no line terminators Hashae103db9f993a2cdcef9b80824d21977 78182ea1e1be5da791fe05753eb7b7486bb36a5d 2087513b24261d9e341b8a13214e4f32c1f2a3c5753883e9801b6dd953037d4e
GET /export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:2980_0A2C4E71:1F94_63E3CDED_139C5CB:4253
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:29:33 GMT
expires: Wed, 08 Feb 2023 18:29:33 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
last-modified: Sat, 14 Jan 2023 04:53:19 GMT
content-length: 8090
x-varnish: 781331419 783339416, 760323766 755045864
age: 3231
via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/export/bloc/django/ckcsfrg.json?callback=_eT.IstF | 93.20.64.1 | 200 OK | 2.1 kB |
URL HTTP/2static.s-sfr.fr/export/bloc/django/ckcsfrg.json?callback=_eT.IstF IP93.20.64.1:0
File typeHTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (4511), with no line terminators Hash52f7fe792bc62c3ba0ce628c90726b0e b0a8e59f28755c35e0f7260f67ebc199f4ab1c10 fa9832b20f564070cec5f16295ee9054095da1dec06c0d2de9dd183d2de2b918
GET /export/bloc/django/ckcsfrg.json?callback=_eT.IstF HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:1B2E_0A2C4E9E:1F94_63E3D4AE_156E891:15135
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 16:58:22 GMT
expires: Wed, 08 Feb 2023 18:58:22 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
last-modified: Sat, 14 Jan 2023 04:53:36 GMT
content-length: 2075
x-varnish: 347973850 349930220, 760323767 730758577
age: 1502
via: front200-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/sprite-mire-2016.png | 93.20.64.1 | 200 OK | 30 kB |
URL HTTP/2static.s-sfr.fr/media/sprite-mire-2016.png IP93.20.64.1:0
File typePNG image data, 100 x 2180, 8-bit/color RGBA, non-interlaced\012- data Hashd45496ab3134c90d2e04415304fb7efb 8e19a165c085024c1e8a495acd8a364c0701c0f3 4adf762670da7e1a8bc8e7a0de36f2b61742fe02fe23234e57f5a206263f40bf
GET /media/sprite-mire-2016.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.s-sfr.fr//cas/css/style-responsive.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:5F8C_0A2C4E9E:1F94_63E0EB50_48CCD5:9FA4
server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 06 Feb 2023 11:58:08 GMT
expires: Mon, 13 Feb 2023 11:58:08 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 30033
x-varnish: 683481598 683248874, 760323768 494828517
age: 192315
via: front200-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/eye.svg | 93.20.64.1 | 200 OK | 1.3 kB |
URL HTTP/2static.s-sfr.fr/media/eye.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1347) Hash340280eceabb01abb8266c9160250956 3dbc77a586a1edcfc14f90c2b194befed9a42e8d 5ecc9ec54fe119077d44b80c10055bb66a77deaa80ae7e560040ba0d2a6c3e2a
GET /media/eye.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.s-sfr.fr//cas/css/style-responsive.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:6AD6_0A2C4E9E:1F90_63E0C71A_371DF:196D3
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Mon, 06 Feb 2023 09:23:38 GMT
expires: Mon, 13 Feb 2023 09:23:38 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 1326
x-varnish: 399403388 388581633, 760323769 518590839
age: 201585
via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/bg-croix.png | 93.20.64.1 | 200 OK | 1.7 kB |
URL HTTP/2static.s-sfr.fr/media/bg-croix.png IP93.20.64.1:0
File typePNG image data, 320 x 71, 8-bit/color RGBA, interlaced\012- data Hash575c7ef0886bd7f88649ad0b9ac4cc8d 877ba085951289e3c190f256a6d6e8c3a90289b7 1cc4c0a338c295fbf4578a1c4a6b8a9a49bbf7b8aa0a673da0d9d025c8f921af
GET /media/bg-croix.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.s-sfr.fr//cas/css/style-responsive.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:7282_0A18063A:1F90_63E1CFC6_241D209:12534
server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Tue, 07 Feb 2023 04:12:54 GMT
expires: Tue, 14 Feb 2023 04:12:54 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 1672
x-varnish: 437957274 435587753, 760323770 590788121
age: 133830
via: front101-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/resources/css/global.sfr.min.css | 93.20.64.1 | 200 OK | 49 kB |
URL HTTP/2static.s-sfr.fr/resources/css/global.sfr.min.css IP93.20.64.1:0
Hash56898f3ce3805aa121dbfe8e22f5e9ab 80c36b0ea4154f5a9deab0d35b4382358a6d1654 093d1d54394cb75a8a99044bc452b80976953b75c9cffc547a8b2db940c3cdf0
GET /resources/css/global.sfr.min.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:E6C8_0A2C4E9E:1F94_63E3C54B_12505BE:15135
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=utf-8
content-encoding: br
date: Wed, 08 Feb 2023 15:52:43 GMT
expires: Wed, 08 Feb 2023 17:52:43 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 66124
x-varnish: 783370614 784870917, 760323765 759039650
age: 5440
via: rtm, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.sfr.fr/export/bloc/django/listes.html?D=www.frsim-sfn.net | 80.125.163.172 | 200 OK | 8.0 kB |
URL HTTP/2www.sfr.fr/export/bloc/django/listes.html?D=www.frsim-sfn.net IP80.125.163.172:0
Hashc87b2bbb07aa30a51059fc9050b726d4 d76d3a203279282504a253923237a926393675de f69f98a1c09b5a95fa5dbcca13fa423259451331d16676f9a204193cbcb88194
GET /export/bloc/django/listes.html?D=www.frsim-sfn.net HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/html;charset=UTF-8
content-encoding: br
strict-transport-security: max-age=15768000
date: Wed, 08 Feb 2023 17:23:25 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
via: front11-piw-pr, http50-piw-pr, front100-piw-pr
set-cookie: X-Mapping-oejdnnie=0B790B59C4DCF70A7ACFB94E0999915A; path=/
ADRUM_BTa="R:26|g:ac9c7b67-264a-4e7b-9ee1-863e69a9b6dc"; Version=1; Max-Age=30; Expires=Wed, 08-Feb-2023 17:23:55 GMT; Path=/; SameSite=None
ADRUM_BTa="R:26|g:ac9c7b67-264a-4e7b-9ee1-863e69a9b6dc|n:customer1_2cdf0480-e8bb-4482-b909-ed124df7ce6b"; Version=1; Max-Age=30; Expires=Wed, 08-Feb-2023 17:23:55 GMT; Path=/; SameSite=None
SameSite=None; Expires=Wed, 08-Feb-2023 17:23:55 GMT; Path=/; Secure; SameSite=None
ADRUM_BT1="R:26|d:4"; Version=1; Max-Age=30; Expires=Wed, 08-Feb-2023 17:23:55 GMT; Path=/; SameSite=None
last-modified: Sat, 14 Jan 2023 04:53:07 GMT
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/fonts/Poppins-Bold.woff2 | 93.20.64.1 | 200 OK | 7.8 kB |
URL HTTP/2static.s-sfr.fr/assets/fonts/Poppins-Bold.woff2 IP93.20.64.1:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /assets/fonts/Poppins-Bold.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://static.s-sfr.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C5B:2D62_0A2C4E71:1F95_63E3BD8B_107B0A2:4253
server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 08 Feb 2023 15:19:39 GMT
expires: Wed, 08 Feb 2023 23:19:39 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
content-length: 7816
x-varnish: 301635653 300365552, 760323774 737400620
age: 7425
via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/fonts/Poppins-Black.woff2 | 93.20.64.1 | 200 OK | 7.8 kB |
URL HTTP/2static.s-sfr.fr/assets/fonts/Poppins-Black.woff2 IP93.20.64.1:0
File typeWeb Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data Hashaf4d371a10271dafeb343f1eace762bc 6d11d743bc3cfb169d70bc86450f18351dc1a905 60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /assets/fonts/Poppins-Black.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://static.s-sfr.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:2F8E_0A18063A:1F90_63E37311_31B3A3:1DA81
server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 08 Feb 2023 10:01:53 GMT
expires: Wed, 08 Feb 2023 18:01:53 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 7824
x-varnish: 497275813 496847728, 760323775 740622576
age: 26491
via: front101-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 54.149.203.40 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.203.40:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5C3ZO9ZdVzOQsKeJopBoyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JFRiaST1oIv5xVCCUZl+oVbyWQ0=
|
|
| www.frsim-sfn.net/cas/js/push-download-app/push-download-app-mobile.js | 217.160.0.114 | 404 Not Found | 838 B |
URL HTTP/2www.frsim-sfn.net/cas/js/push-download-app/push-download-app-mobile.js IP217.160.0.114:0
Hashcc8064805f1cfbcc3c5f453ffd665acf 630486a5373129021ad22cc2d9eb031ab1cd4140 816b1153807256ff7532a4c91e98018b0bede1bbc29d326444b0f90ed14ee67a
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /cas/js/push-download-app/push-download-app-mobile.js HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Wed, 08 Feb 2023 17:23:24 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/rechercher_40_noir.svg | 93.20.64.1 | 200 OK | 436 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/rechercher_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (705) Hash424392aee9e814665e7dba6f0288e363 3efed16d530d2fe51c7b1ac66d370aeb4da01927 7a879b2b5cf9caf4050bfd583b9e4e4179852f96cd4e81a911576db8ceb26db1
GET /assets/pictos/rechercher_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:69AC_0A2C4E71:1F95_63E3669D_9862D:4253
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Wed, 08 Feb 2023 09:08:45 GMT
expires: Wed, 15 Feb 2023 09:08:45 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
content-length: 436
x-varnish: 336137376 330281632, 760323777 742752638
age: 29679
via: front201-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/applications_40_noir.svg | 93.20.64.1 | 200 OK | 3.9 kB |
URL HTTP/2static.s-sfr.fr/assets/pictos/applications_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693) Hash734fafc02d39a0ca8303522bc048d25f 0c59b057ed6cb97f5cce994eaba4cc1db71953b6 779315ade2cb6d86cde9688034b96e41a0d7548585fc8d19341fbd0513a830b4
GET /assets/pictos/applications_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:906A_0A2C4E71:1F90_63DCF354_326B2CC:8864
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Fri, 03 Feb 2023 11:43:16 GMT
expires: Fri, 10 Feb 2023 11:43:16 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 3920
x-varnish: 401388430 210948112, 760323778 505167256
age: 452408
via: front201-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/Actus_40_rouge.svg | 93.20.64.1 | 200 OK | 1.2 kB |
URL HTTP/2static.s-sfr.fr/assets/pictos/Actus_40_rouge.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1472) Hash98a560deb6247617aea3ffcc11d2f33c 63e2d3be022fb68407e25ef0db6b3c1047b4a09d bef5b357a546b385c2ceda82b07ce1138f57e3be12ac41ebdbe54fa5ab7de21f
GET /assets/pictos/Actus_40_rouge.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:8424_0A18063A:1F95_63DC65EE_2142AFF:3BF4
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Fri, 03 Feb 2023 01:39:58 GMT
expires: Fri, 10 Feb 2023 01:39:58 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 1185
x-varnish: 523319913 516512314, 760323779 122201547
age: 488606
via: front101-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/tv_8_40_rouge.svg | 93.20.64.1 | 200 OK | 1.1 kB |
URL HTTP/2static.s-sfr.fr/assets/pictos/tv_8_40_rouge.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1735) Hash1dbd48583f4cdce42eb2e6acddea7931 a9c51992a7988fd55907021646f33ef2806adc51 416b8dcb4201d9c7647479574df1e2eae140cb64c87d51317d98f0f7ff1fe01b
GET /assets/pictos/tv_8_40_rouge.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:FF34_0A2C4E71:1F90_63DBC359_A0A177:8864
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 14:06:17 GMT
expires: Thu, 09 Feb 2023 14:06:17 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 1087
x-varnish: 161503053 144915592, 760323780 6193159
age: 530226
via: front201-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/cas/js/push-download-app/push-download-app-mobile.js | 217.160.0.114 | 404 Not Found | 899 B |
URL HTTP/2www.frsim-sfn.net/cas/js/push-download-app/push-download-app-mobile.js IP217.160.0.114:0
Hash778700d7df12e242a05cfee6ed1ac0f5 ae858a83f5716126a26a5425ff8191e7785f821c b91f1de1694db5b5bfe866e595bd0e383b713c59cb146f9a794c4a8950071bb9
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /cas/js/push-download-app/push-download-app-mobile.js HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Wed, 08 Feb 2023 17:23:25 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/accueil_40_rouge.svg | 93.20.64.1 | 200 OK | 412 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/accueil_40_rouge.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (698) Hashf4604e37611e2c9e4f8aae11def2e9b9 dae46c05983bef75635dc1e7832d2f18f1ea4a12 4b5fe47e1203e0058593ac1b36429877c1a2df28cd5274b657c19358769562c1
GET /assets/pictos/accueil_40_rouge.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C5B:9D04_0A2C4E71:1F94_63DBD484_D26CC3:8864
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 15:19:32 GMT
expires: Thu, 09 Feb 2023 15:19:32 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 412
x-varnish: 200156226 4456914, 760323782 504491672
age: 525831
via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/aide_40_noir.svg | 93.20.64.1 | 200 OK | 790 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/aide_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1188) Hashc2bc3695c9d685867e28eff31cfec116 50b3fb9d31b0a502cef36c10d1b039833203f44d af66f2364588230c45844c97c63e0d11abc912cb3d1abc4441fa2f474f3a0820
GET /assets/pictos/aide_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:2026_0A2C4E9E:1F95_63DBC359_9C26EB:1AA9F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 14:06:17 GMT
expires: Thu, 09 Feb 2023 14:06:17 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 790
x-varnish: 164726558 161922880, 760323783 6684679
age: 530226
via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/pin_40_noir.svg | 93.20.64.1 | 200 OK | 684 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/pin_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1061) Hash8ed072af27e5bb7745295bbe18254b11 d0fd32193c40db5fcf492665a2d947718ba82432 67e5b498b651dade1648c659dfee026d3128bb474a5b278c9b3e78f413dc8541
GET /assets/pictos/pin_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:38D2_0A18065E:1F94_63DBC359_9FB120:12D3B
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 14:06:17 GMT
expires: Thu, 09 Feb 2023 14:06:17 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
content-length: 684
x-varnish: 123367905 152101085, 760323784 7864321
age: 530226
via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/Handicap_40_noir.svg | 93.20.64.1 | 200 OK | 609 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/Handicap_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (485) Hashc9634446d58eab0633e2b3e8957c8dad 2c3e889798f010137833986ae092cef62afc171b 01af08444fba775604e7c69dd03bac0afc0260f2c29e4a8c893c2af1b1819fb7
GET /assets/pictos/Handicap_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:3DCC_0A2C4E9E:1F95_63DC2C49_1B7AA78:1AA9F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 21:34:01 GMT
expires: Thu, 09 Feb 2023 21:34:01 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 609
x-varnish: 69095734 57337450, 760323785 55198300
age: 503363
via: front200-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/Panier_40_noir.svg | 93.20.64.1 | 200 OK | 558 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/Panier_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (670) Hashe9fd22360d6ea25569f3ea565d703826 9f2139f77659cc54eab43a4d750da3fc3b3253c0 0bb21462f012e87d2c4ceed72b90fa5f0a5bd23d267abc107d69917c4b997cee
GET /assets/pictos/Panier_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:5E44_0A18065E:1F95_63DBF5D6_1382035:12D3B
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 17:41:42 GMT
expires: Thu, 09 Feb 2023 17:41:42 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 558
x-varnish: 79734205 54640978, 760323786 120691406
age: 517302
via: front100-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/mail_40_noir.svg | 93.20.64.1 | 200 OK | 436 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/mail_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (790) Hash03bc683003d0cdb590edc105131d20aa 6dc29165dc2d65b54b35a85d27487f0450898374 cea79a5d4f2cc3e967701f17a949b619035086071abbddc98fbc9d9f759f9372
GET /assets/pictos/mail_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C3B:4158_0A2C4E71:1F95_63DB2AA8_8A45E0:60AC
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 03:14:48 GMT
expires: Thu, 09 Feb 2023 03:14:48 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
content-length: 436
x-varnish: 46447276 28322000, 760323787 7962625
age: 569315
via: front201-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/assets/pictos/Compte_40_noir.svg | 93.20.64.1 | 200 OK | 492 B |
URL HTTP/2static.s-sfr.fr/assets/pictos/Compte_40_noir.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (485) Hash1b764da77b118615324e25f73ae159e3 5fe2be2704d95948472e9e3470ba04cce3451e26 34d4c175e7b1ea48b76c2a2699b859dd7a1968f551ee4807d0755d869be57c3b
GET /assets/pictos/Compte_40_noir.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C1B:6AD8_0A2C4E9E:1F90_63DB9468_1DF0F9:1AA9F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 10:46:00 GMT
expires: Thu, 09 Feb 2023 10:46:00 GMT
sfrvia: sa15860adm|1580|vs_SFR-FR-GP-http
content-length: 492
x-varnish: 490655264 481940161, 760323788 7962626
age: 542244
via: front200-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/hs-x.svg | 93.20.64.1 | 200 OK | 208 B |
URL HTTP/2static.s-sfr.fr/media/hs-x.svg IP93.20.64.1:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text Hash6219b7142a484aa6e078a4725cb62e0f 0b9d936e4a6a730d5d5d79f8f1498a9c6b8ec0b9 57da97dbcbf05727062e97ffe2a3422a72217277328c7a5a50e2496faa53f9df
GET /media/hs-x.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:5126_0A2C4E9E:1F90_63DBC357_9C1F75:1AA9F
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Thu, 02 Feb 2023 14:06:15 GMT
expires: Thu, 09 Feb 2023 14:06:15 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
x-varnish: 163910403, 760323789 884869
age: 530229
via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
content-length: 208
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc35b2b3064d0101b989746be9ca5f7dc 62246d94bb07a02cf1bd9d180cdf8353a1b7d327 8a57d0aeaceae9d4a7ec943c19ef0558acf00375c8e6dcebacebba946f93be3a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 458
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 17:23:25 GMT
Etag: "63e1e0b4-1d7"
Last-Modified: Wed, 08 Feb 2023 17:15:47 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 471
|
|
| smetrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 | 15.236.125.10 | 302 Found | 0 B |
URL HTTP/2smetrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 IP15.236.125.10:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: smetrics.sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
vary: Origin
date: Wed, 08 Feb 2023 17:23:25 GMT
content-type: text/plain;charset=utf-8
expires: Tue, 07 Feb 2023 17:23:25 GMT
last-modified: Thu, 09 Feb 2023 17:23:25 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi=[CS]v1|31F1ED46EFFC76F9-40000FBA9C1BAB70[CE]; Path=/; Domain=sfr.fr; Max-Age=34000000; Expires=Fri, 08 Mar 2024 05:50:50 GMT; SameSite=None; Secure
location: https://smetrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&pccr=true&vidn=31F1ED46EFFC76F9-40000FBA9C1BAB70&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| smetrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&pccr=true&vidn=31F1ED46EFFC76F9-40000FBA9C1BAB70&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 | 15.236.125.10 | 200 OK | 43 B |
URL HTTP/2smetrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&pccr=true&vidn=31F1ED46EFFC76F9-40000FBA9C1BAB70&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 IP15.236.125.10:0
File typeGIF image data, version 89a, 2 x 2\012- data Hashad480fd0732d0f6f1a8b06359e3a42bb a544538683a2dfe574eeb2e358ac8fcc78289d50 a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/sfrunvglobprod/1/JS-2.12.0/s38745670097751?AQB=1&pccr=true&vidn=31F1ED46EFFC76F9-40000FBA9C1BAB70&ndh=1&pf=1&t=8%2F1%2F2023%2017%3A24%3A20%203%200&fid=69AC4182A2DDB217-24FE40B64ACE472A&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA&g=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&cc=EUR&ch=Transverse&server=www.frsim-sfn.net&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification%2FMon%20Compte&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTPS&v29=D%3DpageName&c33=Mozilla_5.0_%28Windows_NT_10.0_Win64_x64_rv_105.0%29_Gecko_20100101_Firefox_105.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C774-2%7C686-1%7C685-2%7C389-3%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=https%3A%2F%2Fwww.frsim-sfn.net%2Fverification%2Flogin.php&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: smetrics.sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.frsim-sfn.net/
Connection: keep-alive
Cookie: s_vi=[CS]v1|31F1ED46EFFC76F9-40000FBA9C1BAB70[CE]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 08 Feb 2023 17:23:25 GMT
expires: Tue, 07 Feb 2023 17:23:25 GMT
last-modified: Thu, 09 Feb 2023 17:23:25 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi=[CS]v1|31F1ED46EFFC76F9-40000FBA9C1BAB70[CE]; Path=/; Domain=sfr.fr; Max-Age=34000000; Expires=Fri, 08 Mar 2024 05:50:50 GMT; SameSite=None; Secure
etag: 3598918464466616320-4619703114913536337
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/export/bloc/django/footer.standard.json?vue=L&callback=cbRNf | 93.20.64.1 | 200 OK | 1.5 kB |
URL HTTP/2static.s-sfr.fr/export/bloc/django/footer.standard.json?vue=L&callback=cbRNf IP93.20.64.1:0
File typeHTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3595), with no line terminators Hash84d3d4d3522fc7f089004ff0a7e90674 25354b56cc1c702d962b96e583ab9e9e7253b5ff 9317688fbb7fd26051cac3d363f156e4bbba475762093a9da1780efb2eaeffed
GET /export/bloc/django/footer.standard.json?vue=L&callback=cbRNf HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:FB6C_0A2C4E71:1F94_63E3C3AF_11A10E9:4253
server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
content-encoding: br
date: Wed, 08 Feb 2023 15:45:51 GMT
expires: Wed, 08 Feb 2023 17:45:51 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
last-modified: Sat, 14 Jan 2023 04:53:22 GMT
content-length: 1527
x-varnish: 509127132 511460286, 760323790 759432154
age: 5853
via: front201-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9990
Expires: Wed, 08 Feb 2023 20:09:56 GMT
Date: Wed, 08 Feb 2023 17:23:26 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.249 | 200 OK | 503 B |
IP23.36.76.249:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9990
Expires: Wed, 08 Feb 2023 20:09:56 GMT
Date: Wed, 08 Feb 2023 17:23:26 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5de2fe3c9a2b091689a7213c4f781446 385fa88a857ba301f37ab56d72d11fb49abd8c6b b64b11a68493fa304aa6102bf9b9ff11fab5e1536ecf768e4b0fa51470ae2293
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13714
x-amzn-requestid: 8f776dba-4e5d-46e5-a3ac-459d86852375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PFjGNHIAMFrMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c556-74429dc755cc37672c68b58b;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KYWj40o5goODdNjGr_Evrb_bfXcxtJRIyGvs7ViEWlELAyJt0-ZzMw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:14 GMT
age: 70152
etag: "385fa88a857ba301f37ab56d72d11fb49abd8c6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg | 34.120.237.76 | 200 OK | 9.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash18a84ae645223aba0709b5e16c0207f7 0b865e797846520ccc6fff6fb2ee38d8836bd2c0 b1e4868045f074a84e3de1d82ec3ae22f6d2a1a4131b2a40bcce7f3f5375aff7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9760
x-amzn-requestid: d5d8fdde-048f-4705-9fa4-99fd7d29d804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f582DETSIAMFmEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a826-52a3b175584df1914260c8ae;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wUaruDuqNDIlR6CWz9G7DAofcvS7UNmtPM7C2ve-RRbp57J43rWPxQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:27:43 GMT
age: 35743
etag: "0b865e797846520ccc6fff6fb2ee38d8836bd2c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash003fc35e140a75a12b7795c3986426ec da002b22e2a01f48a545b369d4403eabb17a10d5 bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:53:36 GMT
age: 34190
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashed10868ea9554510e43f77dfb8c43877 df0d86c2c53bdec7b8935912e42dc7f82f87aa61 751e95e7dd20802cc4e0b6f208bf5559b0b73efd3ca22a9abafd86cf83ab6420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc93fe33d-3033-473c-8315-95eb00ba319e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12401
x-amzn-requestid: 7bfa8a84-c348-4f55-8e8e-befcdd24f026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjPG-eIAMFccA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47a-06eedb3c7396825f77360755;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i1abBvjQY4dXbxTHyy0Wxxn9PCvTO0YkAO8PS8kKA9Zl5TeiUEtErw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:49:59 GMT
age: 70407
etag: "df0d86c2c53bdec7b8935912e42dc7f82f87aa61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4bb0e725719ac378134b01b6473a6581 a8a1780c88e8ae219048bed28ecfbd8019d9af35 187d4e83edc0af857334f84bd6853234193d4654d06c43367f39b4e125defe08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6679
x-amzn-requestid: 97c19ad5-c127-4dc1-b529-1eca84645316
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f59MzHgloAMFwow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a8b8-79d6b8d31b69153d4929b7b7;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:14:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x_tr-xummuF51PvAM4y3DgvLWuJOwxgquKO8baQfcoN6ta5M3ll7ug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 06:24:59 GMT
age: 39507
etag: "a8a1780c88e8ae219048bed28ecfbd8019d9af35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbc4af7bd5bdcf67a4bac63e22b5d7ce8 5c457bf5021e9336d8582eed9e84e5279e08547c 0dac79971019d06657a1948f1cedaca02b3f9eca1eae52026ad9bdd0e4137b35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9731
x-amzn-requestid: 297af487-e8cf-4d0a-a30b-337cf1630f71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_RImGLjoAMFnDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c89d-3c4f6fa521885bd45e943d3b;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:54:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yrzTgCscPsiLURoP97eyv80rROEqj68xBxOvJcrT8IFuYXodrNWt7A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:49 GMT
age: 70057
etag: "5c457bf5021e9336d8582eed9e84e5279e08547c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/verification/login.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/verification/login.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
GET /verification/login.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:24 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/mire-connexion_EC2.jpg | 93.20.64.1 | 200 OK | 0 B |
URL HTTP/2static.s-sfr.fr/media/mire-connexion_EC2.jpg IP93.20.64.1:0
GET /media/mire-connexion_EC2.jpg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.sfr.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:524E_0A18065E:1F90_63E0A450_9DF2ACE:12D3B
server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/jpeg
date: Mon, 06 Feb 2023 06:55:12 GMT
expires: Mon, 13 Feb 2023 06:55:12 GMT
sfrvia: sa15857adm|1580|vs_SFR-FR-GP-http
content-length: 343989
x-varnish: 408937632 387880347, 760323771 220650372
age: 210492
via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:26 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:31 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:30 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/favicon.ico | 217.160.0.114 | 404 Not Found | 0 B |
URL HTTP/2www.frsim-sfn.net/favicon.ico IP217.160.0.114:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
date: Wed, 08 Feb 2023 17:23:25 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:25 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:25 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:29 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:30 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.s-sfr.fr/media/google-play-app.svg | 93.20.64.1 | 200 OK | 0 B |
URL HTTP/2static.s-sfr.fr/media/google-play-app.svg IP93.20.64.1:0
GET /media/google-play-app.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.frsim-sfn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
response-id: 5D119C2B:3E46_0A18065E:1F94_63E05419_9868053:12D3B
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
content-encoding: br
date: Mon, 06 Feb 2023 01:12:57 GMT
expires: Mon, 13 Feb 2023 01:12:57 GMT
sfrvia: sa15859adm|1580|vs_SFR-FR-GP-http
content-length: 19236
x-varnish: 384586892 374574340, 760323753 484755781
age: 231026
via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:26 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:26 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.frsim-sfn.net/panel/process/processor.php | 217.160.0.114 | 200 OK | 0 B |
URL HTTP/2www.frsim-sfn.net/panel/process/processor.php IP217.160.0.114:0
Analyzer | Verdict | Alert | fortinet | Phishing | | quad9 | Sinkholed | |
POST /panel/process/processor.php HTTP/1.1
Host: www.frsim-sfn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://www.frsim-sfn.net
Connection: keep-alive
Referer: https://www.frsim-sfn.net/verification/login.php
Cookie: PHPSESSID=548c81df0b029385f42386d185ddcbc2; eTagAB=19; eTab774=2; eTab686=1; eTab685=2; eTab389=3; eTpcI=0:88601/; authent=1_undefined; s_fid=69AC4182A2DDB217-24FE40B64ACE472A; s_depth=1; gpv_p41=Web%2FTransverse%2FAuthentification%2FMon%20Compte%2FCAPTCHA; s_cmCT=19396:Tape/Marque; eTagLV=27931284; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Wed, 08 Feb 2023 17:23:26 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|