firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 04:10:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iEgtV9xEvw7Ts0KfOJqgyQ9g7yecpRWyselv9tA8SOLDbt4g6NxCKw==
Age: 2292
ep.samsongroupeconseil.com/
64.15.134.30301 Moved Permanently 152 B URL HTTP/1.1 ep.samsongroupeconseil.com/
IP 64.15.134.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 38e30e1f9e865cb4ef15fcab6536f1a0
80ff7609b219fb0c4ba755ed3d461baed9bbd7be
2df5c80ec50c49951cd7c9fa6793581b90bcaae143757ffbb25ca70e28d9358c
GET / HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://ep.samsongroupeconseil.com/
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: Language=fr-CA; path=/
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Fri, 16 Sep 2022 04:48:57 GMT
Content-Length: 152
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13614
Expires: Fri, 16 Sep 2022 08:35:52 GMT
Date: Fri, 16 Sep 2022 04:48:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lb7Ui9OkhJuSlAdhFJA__G1zqvww2jQisYXpg_FpdVAhXH953FZdPw==
age: 823
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 04:48:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c5208d5dfd3f6fb7a8e15715c75f2445
50d54c60e5fec0582d879b2fa88ecbcad5a19717
35c44fb1a55bd0e7ac72d0529be22b3f39e8f6dbb6dc93f659e0db28b0f30b0e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:48:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:30:33 GMT
Expires: Tue, 20 Sep 2022 18:30:32 GMT
Etag: "50d54c60e5fec0582d879b2fa88ecbcad5a19717"
Cache-Control: max-age=394293,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74b6f90c28c21bfa-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 04:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 04:14:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W1uXLBid-UmJS7zCwbdIbPmBVECqtX27jzOJpVuQwdl4hCLIrIqdsQ==
Age: 2736
ep.samsongroupeconseil.com/
64.15.134.30302 Found 0 B URL HTTP/2 ep.samsongroupeconseil.com/
IP 64.15.134.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
cache-control: private
location: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: Language=fr-CA; path=/
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 0
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
64.15.134.30200 OK 7.3 kB URL HTTP/2 ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
IP 64.15.134.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash de9cd3a66dee2c56b80f632135885369
dadc8dfdeda65daae784dfaa545b3f0e5ded2376
ec616061e83e82a81a6ec190111d38d51a88860521ecc2dc612ee6fe5c628b8a
GET /Account/Login?ReturnUrl=%2F HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: Language=fr-CA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-frame-options: SAMEORIGIN
x-aspnet-version: 4.0.30319
set-cookie: __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1; path=/; HttpOnly
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 7287
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4102
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:48:58 GMT
Last-Modified: Fri, 16 Sep 2022 03:40:36 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PkQxDnK6WdLluzquHo/Jlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bH/xbPJwlYHWNq57xYyKBM7Cv4g=
ep.samsongroupeconseil.com/Scripts/modernizr.min.js
64.15.134.30200 OK 11 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/modernizr.min.js
IP 64.15.134.30:0
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash 65f1d21d5fcc9d21da758adababd0c3c
e0661d07d64c00008bc9d013d16eec0a0f156dc7
d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe
Analyzer Verdict Alert urlquery Scam / Fake AntiVirus
GET /Scripts/modernizr.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "41bdb13e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 11084
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Content/images/logo.png
64.15.134.30200 OK 8.7 kB URL HTTP/2 ep.samsongroupeconseil.com/Content/images/logo.png
IP 64.15.134.30:0
File type PNG image data, 480 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b52e167fc3702b87656c2a29a707e5d
2aad0a1e9a42009083a0f496d674fdd4033d07fa
120490036703a710e882fdb9025998e525e8cda21df257175f788e6b19ce7221
GET /Content/images/logo.png HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 15 Jan 2019 01:24:27 GMT
accept-ranges: bytes
etag: "5120b6e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 8738
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/styles?v=UZhFblukBmzgVKpXSVD0NccCTmEFdd2Na25YlODtgCQ1
64.15.134.30200 OK 484 kB URL HTTP/2 ep.samsongroupeconseil.com/styles?v=UZhFblukBmzgVKpXSVD0NccCTmEFdd2Na25YlODtgCQ1
IP 64.15.134.30:0
File type ASCII text, with very long lines (29871), with CRLF, LF line terminators
Size 484 kB (484410 bytes)
Hash 509e86e2ec1c7773267192562f040bd3
57e8716580a2360ad4f9caa089468ae1dc01721c
27e4394ead9f9d132403db885da43a697d943af0f8ac91ec4f2016cd599ffc2d
GET /styles?v=UZhFblukBmzgVKpXSVD0NccCTmEFdd2Na25YlODtgCQ1 HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: text/css; charset=utf-8
expires: Sat, 16 Sep 2023 04:48:58 GMT
last-modified: Fri, 16 Sep 2022 04:48:58 GMT
vary: User-Agent
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 484410
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/detect.js
64.15.134.30200 OK 2.2 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/detect.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (2073), with CRLF line terminators
Hash 0a82420a8ab5cc1ee448251f1a7aa737
8b356eab3e5ec66a6baf2e139121dd4e32bfcf87
78c38df0b132e211d9093e6681039c3517662bd09b204bf10d074c06454b4135
GET /Scripts/detect.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "9b268c3e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 2225
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.min.js
64.15.134.30200 OK 84 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (32025)
Hash 4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /Scripts/jquery.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "79e99a3e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 84380
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Content/plugins/switchery/dist/switchery.min.js
64.15.134.30200 OK 24 kB URL HTTP/2 ep.samsongroupeconseil.com/Content/plugins/switchery/dist/switchery.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (24437), with no line terminators
Hash 21a250f2616216d7fe505cb924eb5b37
60561da575b8107ae3dd44fa696251b5b754d5fc
07fe3a3658e5426fb3a6535cd5e8d81dfb12ba0130fb01fc0dcd5b9136f13e46
GET /Content/plugins/switchery/dist/switchery.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:42 GMT
accept-ranges: bytes
etag: "235ffc3a71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 24437
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/fastclick.js
64.15.134.30200 OK 26 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/fastclick.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (382)
Hash 6e9d3b0da74f2a4a7042b494cdaa7c2e
06cef196733a710e77ad7e386ced6963f092dc55
1aa08cb3c7aa70d268d24d59c374c14af7bd08e0af8c85f8e4f60a2651f4bab5
GET /Scripts/fastclick.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "2937863e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 25965
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.core.js
64.15.134.30200 OK 10 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.core.js
IP 64.15.134.30:0
File type ASCII text, with CRLF line terminators
Hash 7272d9f3c860c43184fb517a2579055c
55cd5e6cab5f73acb26143a832fd22b0453d09fe
c577132e37d48b7d23d6693277446c8d6dbfb19d660ce0f899d3d0eff3b915ad
GET /Scripts/jquery.core.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "1921953e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 10088
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.nicescroll.js
64.15.134.30200 OK 59 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.nicescroll.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (1025)
Hash c9844213bc1d3c39dc674b8b5c8b6651
39276c585e597a1a14500bf1dd98ffafe19c1eba
bf74a158de705b69d257c2dd77a67b240950ff88dd563b0e8455126b404b6221
GET /Scripts/jquery.nicescroll.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "2ec89f3e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 59364
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.slimscroll.js
64.15.134.30200 OK 14 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.slimscroll.js
IP 64.15.134.30:0
Hash ff8645b10b5cb015f9a4c111219512dc
63ed9c446e300c86bea8631a302f93a225f4b0ce
c7a63e1eafdf9a9413e8fe8cd5545816c6d60df8402d7cc8a578ef65272edee2
GET /Scripts/jquery.slimscroll.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "28bdaa3e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 13659
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/wow.min.js
64.15.134.30200 OK 4.8 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/wow.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (4746), with CRLF line terminators
Hash 3fcf8f685dc926ccc2866296061ae168
80945eebd84a463827395151a74b1e78408df4d8
186412f7166b1cc4ae633617a83bac2a507e549387c6e97f69f7654881f086ac
GET /Scripts/wow.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "f3cdb23e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 4777
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/waves.js
64.15.134.30200 OK 69 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/waves.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (32043)
Hash daec46621ce24bd483727b28f898e03e
3af899e7d14ae8b64e921b01942b808a1b81519b
07d7ceeece5addab399ec43c713970ae5935ac3c1053b0bca98cabd67a24078c
GET /Scripts/waves.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "5e8bc33e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 69263
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/bootstrap.min.js
64.15.134.30200 OK 37 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/bootstrap.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
GET /Scripts/bootstrap.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "b7f6793e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 36868
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.app.js
64.15.134.30200 OK 758 B URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.app.js
IP 64.15.134.30:0
File type ASCII text, with CRLF line terminators
Hash 23dd82b70aa91847ae89c68f1dc347c9
406f405be1ac61b6e76a5df835cf5c36ed30ae32
d3d27efc9b71da5ed33a814266a2b03c8abcb2367a74a87511ab6896deb229ae
GET /Scripts/jquery.app.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "7e85a93e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 758
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.scrollTo.min.js
64.15.134.30200 OK 2.4 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.scrollTo.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (2250)
Hash bd938d034a5305d6408dce3b9f44897d
049518cbf4e734533ed649a723d0f98e65ddbeeb
4a62ad2a11276742a4b001cd188ebdbffb245af584262fd7950ce3b0b0c11601
GET /Scripts/jquery.scrollTo.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "4021a33e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 2434
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Content/css/images/bg.jpg
64.15.134.30200 OK 116 kB URL HTTP/2 ep.samsongroupeconseil.com/Content/css/images/bg.jpg
IP 64.15.134.30:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=hand giving the baton to another seen from below. Focus on the hand with the baton warm tones accented because it was shooted a, manufacturer=Canon, model=Canon EOS 40D, orientation=upper-left, xresolution=304, yresolution=312, resolutionunit=2, software=Adobe Photoshop CS5 (12.0x20100115 [20100115.m.998 2010/01/15:02:00:00 cutoff; m branch]) Windows, datetime=2016:05:29 20:26:38], baseline, precision 8, 1860x1240, components 3\012- data
Size 116 kB (115628 bytes)
Hash e7f090fc4ac1dcc762cfb9c615115ccc
dc236716d0cdbedd588b35c4dde66677bb27911b
96ac85a46385e18ac8094ce24777e827cdac0df313a903184015683e922e8523
GET /Content/css/images/bg.jpg HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/styles?v=UZhFblukBmzgVKpXSVD0NccCTmEFdd2Na25YlODtgCQ1
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 15 Jan 2019 01:24:26 GMT
accept-ranges: bytes
etag: "81b616e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:58 GMT
content-length: 115628
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Scripts/jquery.blockUI.js
64.15.134.30200 OK 20 kB URL HTTP/2 ep.samsongroupeconseil.com/Scripts/jquery.blockUI.js
IP 64.15.134.30:0
Hash 5c98c0cbfacee6dab0783112cb0e233d
d85776cf4c36cab63a075a98029f145c486e9a74
a106b0f8926e51c250f5055831c1673f12020d3fa1bfcfa4bb14f614dcd31a17
GET /Scripts/jquery.blockUI.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:48 GMT
accept-ranges: bytes
etag: "4eb7903e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 19966
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Content/plugins/jquery-ui/jquery-ui.min.js
64.15.134.30200 OK 240 kB URL HTTP/2 ep.samsongroupeconseil.com/Content/plugins/jquery-ui/jquery-ui.min.js
IP 64.15.134.30:0
File type ASCII text, with very long lines (32035)
Size 240 kB (240427 bytes)
Hash d935d506ae9c8dd9e0f96706fbb91f65
7f650ee30c6a4d3eea04032039b20ff72997559b
c4d8dbe77feb63e5a61bee0bead4e5f66e8fa6a927599bd1b74aced52467273c
GET /Content/plugins/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 15 Jan 2019 01:25:23 GMT
accept-ranges: bytes
etag: "a84cba2f71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:57 GMT
content-length: 240427
X-Firefox-Spdy: h2
ep.samsongroupeconseil.com/Content/images/favicon.ico
64.15.134.30200 OK 894 B URL HTTP/2 ep.samsongroupeconseil.com/Content/images/favicon.ico
IP 64.15.134.30:0
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash 0389e497edc53885afed4f01c351b11e
dafbdd556d5e971bf66f0dd9cca73c5218c52c7f
2cc1711218d1799c2fc0890d0f7a6968d3a259286b9e37ed4b7260921ff8b252
GET /Content/images/favicon.ico HTTP/1.1
Host: ep.samsongroupeconseil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ep.samsongroupeconseil.com/Account/Login?ReturnUrl=%2F
Cookie: Language=fr-CA; __RequestVerificationToken=E0o1R8VxIroDxOxef2cr4zu4VSxivsJJ_LEwav0-Zd4erOivGVMfp__DZQ6Bp6oQPZJ6hmZ-o9uw8oQCN0I8lWAHkrYcQGouhAe4yJcQjtw1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
last-modified: Tue, 15 Jan 2019 01:24:27 GMT
accept-ranges: bytes
etag: "305d99e71acd41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Fri, 16 Sep 2022 04:48:58 GMT
content-length: 894
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17007
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:49:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17007
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:49:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17007
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:49:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17007
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:49:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 25490
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 25228
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4f3e6b013d785036c9b9c16aef3404f
28bf10400e47ad48eee5db04829b88340e021840
98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1Q93ahPFyzjb40UxQcoDZPKkpLtrkcj1vE_mB4AW2Gn9CAibFnd6A==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:03:47 GMT
age: 24313
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bedb04287b8f09d30fed0ae386b9bcc
2b8a6de0faac5c1a99b48c28da9c05f520ef6add
cec3955f3330184ace4388b7c00262b52c9ca43e9ece6fb8f2fdec2ee9e53a9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4955
x-amzn-requestid: e7c21397-14e0-42fd-86f3-3f1e6940da8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0zG1uIAMF_mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b51-386abef75b6435a0656e86cd;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: w0izptVhe4GTDP0l4M18uTvK6vQeKiiaGSZ5UfZATWGIyjL5C8sURQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:55:30 GMT
etag: "2b8a6de0faac5c1a99b48c28da9c05f520ef6add"
content-type: image/jpeg
age: 24810
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a4ed510756efe784c4ca84c61c4b5ba
10262867cfb19d3ba8f618e235d1a98531048f34
b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XGVoNQZeoG0AQ6LabPW2Zg7pAQqdl-bGTFAhbNpLlgTWNWx55-wEUQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:14 GMT
age: 25426
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 918f9961aa6acc47b01feb731750d208
2029669d941625cb78a23b52cd6511af111c8591
1f8cfc977ecea3b3dba2992fd4e310f8d426be1316c467f516e5ed2332ecaf96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8843
x-amzn-requestid: 055dc4af-96bb-48af-823a-56e606701c01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVAlFseoAMFurw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b9d-67ba7aaf2b588234573e1c9c;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: WkdIyxNFlhmlhe5c3iNkCNWQmRrMrfKqD4pYMe5J7iYzUgo0XorwAg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:53:59 GMT
age: 24901
etag: "2029669d941625cb78a23b52cd6511af111c8591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 252e27665094eccd2f18dfed46d4e871
2656d1e3e105c1929b18ebf9b00bd603f2f410a6
ccd05f3e869946687ec611ee0d6c5a118a99f73abb1957c556e346ed522d3088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd0c996-9a44-4dd0-b1b3-c5e213f14167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10296
x-amzn-requestid: f3bb82cc-9d5d-4dea-8a22-26b35fe603e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbIRLHBUIAMF7hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632120d4-64832ad820f6aeaf7868495d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 00:31:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nZIGf23GLhOvGdsNG2xCOca_Eo8QPU3D1EtJlGiRg3iaxCFlQMG1Qw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:47 GMT
age: 25099
etag: "2656d1e3e105c1929b18ebf9b00bd603f2f410a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2