r.infos.mesoffres-privees.fr/mk/cl/f/5cYR_sDQQt6_p5qE8Vppsg64-3bz8o10YoI0thq0_z8efyz-G_llcqi9ykPHiuCvZbqqRcwrha1BAKtATt4dW7OvpUb_ZkB7krdhpDpFoImstMJmmD4xO5RhpnOVNoZT_c6a8Pwlul30zJkWQ5qO-IK3uLoV7K8iAZATyKkOdMZ0gQogC6khKaA1eKFEDgK8xzp-Y1Un8vMopkPjnXVgCLsIHSFEDEm711PR9L7QsJgZuw8QVBjT7Qo7BjcxhkB8Bl-Pi0--C7qAWD5vJ2klHzMP1ckx8yWcpZUApsxxBI9Jb3Ps9n0HdJOlxYSsPqkAgZDKFYBEB2B3vj-BjWhXO7pe1njYcZcNEhWHFwBM_UvcNfJOLcWBCK3tpKM3j2aa7AMw0rmos52GoJN6D2Sh
185.107.232.127200 OK 1.0 kB URL HTTP/1.1 r.infos.mesoffres-privees.fr/mk/cl/f/5cYR_sDQQt6_p5qE8Vppsg64-3bz8o10YoI0thq0_z8efyz-G_llcqi9ykPHiuCvZbqqRcwrha1BAKtATt4dW7OvpUb_ZkB7krdhpDpFoImstMJmmD4xO5RhpnOVNoZT_c6a8Pwlul30zJkWQ5qO-IK3uLoV7K8iAZATyKkOdMZ0gQogC6khKaA1eKFEDgK8xzp-Y1Un8vMopkPjnXVgCLsIHSFEDEm711PR9L7QsJgZuw8QVBjT7Qo7BjcxhkB8Bl-Pi0--C7qAWD5vJ2klHzMP1ckx8yWcpZUApsxxBI9Jb3Ps9n0HdJOlxYSsPqkAgZDKFYBEB2B3vj-BjWhXO7pe1njYcZcNEhWHFwBM_UvcNfJOLcWBCK3tpKM3j2aa7AMw0rmos52GoJN6D2Sh
IP 185.107.232.127:0
ASN #200484 Sendinblue SAS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 640373829d76b068a3ed2b2d077d5b77
52f6455446a391683a0caeefa79c9da0a2c6a583
7def1718853f0b27fcef5f2ae7823c2e2ecb9c9bc0e7c3ee38f9bc586fd6fcc3
Analyzer Verdict Alert fortinet Phishing
GET /mk/cl/f/5cYR_sDQQt6_p5qE8Vppsg64-3bz8o10YoI0thq0_z8efyz-G_llcqi9ykPHiuCvZbqqRcwrha1BAKtATt4dW7OvpUb_ZkB7krdhpDpFoImstMJmmD4xO5RhpnOVNoZT_c6a8Pwlul30zJkWQ5qO-IK3uLoV7K8iAZATyKkOdMZ0gQogC6khKaA1eKFEDgK8xzp-Y1Un8vMopkPjnXVgCLsIHSFEDEm711PR9L7QsJgZuw8QVBjT7Qo7BjcxhkB8Bl-Pi0--C7qAWD5vJ2klHzMP1ckx8yWcpZUApsxxBI9Jb3Ps9n0HdJOlxYSsPqkAgZDKFYBEB2B3vj-BjWhXO7pe1njYcZcNEhWHFwBM_UvcNfJOLcWBCK3tpKM3j2aa7AMw0rmos52GoJN6D2Sh HTTP/1.1
Host: r.infos.mesoffres-privees.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
content-length: 1012
date: Wed, 31 Aug 2022 21:28:40 GMT
content-type: text/html; charset=utf-8
x-sib-server: red2.dc2.51b.tech
x-content-type-options: nosniff
x-xss-protection: 1
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 21:26:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EXug4r-GWg-PFtnUa4Er7PEO7uMM0of2lJn4uXGX1Tr2aKWZDpdOlg==
Age: 124
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3799
Expires: Wed, 31 Aug 2022 22:32:00 GMT
Date: Wed, 31 Aug 2022 21:28:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vMf4d6upXsfclPOphxEX0A1B90mKHd3vr78RLS5e5TfcKt1sRsrFjA==
age: 68497
X-Firefox-Spdy: h2
r.infos.mesoffres-privees.fr/favicon.ico
185.107.232.127200 OK 0 B URL HTTP/1.1 r.infos.mesoffres-privees.fr/favicon.ico
IP 185.107.232.127:0
ASN #200484 Sendinblue SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: r.infos.mesoffres-privees.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://r.infos.mesoffres-privees.fr/mk/cl/f/5cYR_sDQQt6_p5qE8Vppsg64-3bz8o10YoI0thq0_z8efyz-G_llcqi9ykPHiuCvZbqqRcwrha1BAKtATt4dW7OvpUb_ZkB7krdhpDpFoImstMJmmD4xO5RhpnOVNoZT_c6a8Pwlul30zJkWQ5qO-IK3uLoV7K8iAZATyKkOdMZ0gQogC6khKaA1eKFEDgK8xzp-Y1Un8vMopkPjnXVgCLsIHSFEDEm711PR9L7QsJgZuw8QVBjT7Qo7BjcxhkB8Bl-Pi0--C7qAWD5vJ2klHzMP1ckx8yWcpZUApsxxBI9Jb3Ps9n0HdJOlxYSsPqkAgZDKFYBEB2B3vj-BjWhXO7pe1njYcZcNEhWHFwBM_UvcNfJOLcWBCK3tpKM3j2aa7AMw0rmos52GoJN6D2Sh
HTTP/1.1 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:41 GMT
content-type: image/x-icon
content-length: 0
last-modified: Mon, 15 Mar 2021 05:49:45 GMT
etag: "604ef579-0"
accept-ranges: bytes
x-sib-server: srv-pr-rancher-worker-1.prod.illiad.51b.tech
x-content-type-options: nosniff
x-xss-protection: 1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 21:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 21:48:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7rpX_7Dl5hZkyko_DEIY7N7DC4Q4R7a797eVGNNwy2nw3GJG-6Sc9g==
Age: 689
sibautomation.com/cdn-cgi/rum?
104.18.34.145200 OK 503 B URL HTTP/2 sibautomation.com/cdn-cgi/rum?
IP 104.18.34.145:0
Hash c42c12b87756191ec18f94e0a09527ce
24391a85aa307a46ee9c7d89ead8b1f7c27c9f51
dbd1e3044545198974a25be41206bfe55533a3218e6f1cf220eef70d92b34d1d
POST /cdn-cgi/rum? HTTP/1.1
Host: sibautomation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1371
Origin: https://sibautomation.com
Connection: keep-alive
Referer: https://sibautomation.com/cm.html?id=1325090
Cookie: uuid=4d7100eb-e417-420f-8a3e-3e938d7d4e4c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:41 GMT
server: cloudflare
cf-ray: 7438db7d8f0eb52d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
clk.tradedoubler.com/click?p=321263&a=2783065&g=25089266&url=http://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
35.186.231.97200 OK 1.1 kB URL HTTP/2 clk.tradedoubler.com/click?p=321263&a=2783065&g=25089266&url=http://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
IP 35.186.231.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (457)
Hash abb99d7d598f3a5b6ee4318878bb4e3f
3a0068e160fed52821e46e153c86ef43092d3917
209128f24b22ac8acbf8fbb17369c07d1ea5e78cc772367275b687b3142bd8e4
GET /click?p=321263&a=2783065&g=25089266&url=http://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9 HTTP/1.1
Host: clk.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.infos.mesoffres-privees.fr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=ISO-8859-1
server: TXServerHttp
access-control-allow-origin: *
cache-control: private, max-age=0
pragma: no-cache
p3p: policyref="http://tracker.tradedoubler.com/w3c/p3p.xml",CP="NOI DSP COR NID CUR OUR NOR"
referrer-policy: origin
date: Wed, 31 Aug 2022 21:28:40 GMT
content-length: 1109
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c42c12b87756191ec18f94e0a09527ce
24391a85aa307a46ee9c7d89ead8b1f7c27c9f51
dbd1e3044545198974a25be41206bfe55533a3218e6f1cf220eef70d92b34d1d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBD1E3044545198974A25BE41206BFE55533A3218E6F1CF220EEF70D92B34D1D"
Last-Modified: Mon, 29 Aug 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7884
Expires: Wed, 31 Aug 2022 23:40:05 GMT
Date: Wed, 31 Aug 2022 21:28:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3803
Cache-Control: max-age=128489
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:41 GMT
Etag: "630f1697-1d7"
Expires: Fri, 02 Sep 2022 09:10:10 GMT
Last-Modified: Wed, 31 Aug 2022 08:06:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
vht.tradedoubler.com/fp/prefs.js
54.230.111.48200 OK 3.7 kB URL HTTP/1.1 vht.tradedoubler.com/fp/prefs.js
IP 54.230.111.48:0
File type ASCII text, with very long lines (764)
Hash 9042aeefa6b50fd89dafd065aee87148
0903b60da6faa7a16b30fe42a0974ae20c0e09bf
dcde81d721f2b5f9e932b434eff9f39b07ce0803a772c991296ddd4e9e8e0b30
GET /fp/prefs.js HTTP/1.1
Host: vht.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clk.tradedoubler.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 3705
Connection: keep-alive
Date: Tue, 30 Aug 2022 01:46:02 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 09:28:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xhhjnluQLd8jJUAB6WegfVWpIzvnExxp2qQvWuLfB5OJOJNMF8s0dQ==
Age: 157359
push.services.mozilla.com/
35.155.105.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.105.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TyyGgSrwu+4nXL5myx4OHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X2HUca9dzeZETvbTA45IGLs7CBc=
bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
79.137.123.127301 Moved Permanently 0 B URL HTTP/1.1 bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
IP 79.137.123.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /confirmation/d579b382ca4967f9d5e77dd15835e3f9 HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: https://clk.tradedoubler.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e68d65f86a90610063c730ca141363c4
48204b2fddad279f1179fbef3e7f7fb2a984f17b
afaa64bab456c31d6cdbf7077bf216db99163883141d2f82f607a8f1e6811393
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFAA64BAB456C31D6CDBF7077BF216DB99163883141D2F82F607A8F1E6811393"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4288
Expires: Wed, 31 Aug 2022 22:40:10 GMT
Date: Wed, 31 Aug 2022 21:28:42 GMT
Connection: keep-alive
bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
79.137.123.127200 OK 5.3 kB URL HTTP/2 bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
IP 79.137.123.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (333)
Hash 56037e6f66d665d8b20213c53f3fdec2
c4c4a48d61443b667ad0a370ee1c51b1252fbba7
4822f581a6f1018d565768c77711bd348fb37366e1e735774d9778a90b05e08e
GET /confirmation/d579b382ca4967f9d5e77dd15835e3f9 HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clk.tradedoubler.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: text/html; charset=UTF-8
content-length: 5284
set-cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; expires=Wed, 31-Aug-2022 23:28:42 GMT; Max-Age=7200; path=/; SameSite=Strict; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/html2pdf.js/0.8.1/html2pdf.bundle.min.js
104.17.24.14200 OK 65 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/html2pdf.js/0.8.1/html2pdf.bundle.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65435)
Hash f61c0d2537db626706b6f4c41f1286f5
7659f672efca39b1a884bda3d87c1b252424e978
48e68b25b8fff1c2a5688e80c86ba4644767045b758d580a194a27962a67f638
GET /ajax/libs/html2pdf.js/0.8.1/html2pdf.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 64853
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e9d-49a01"
last-modified: Mon, 04 May 2020 16:11:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1279009
expires: Mon, 21 Aug 2023 21:28:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A2JQMpGwlMsDu5Y%2BiorOLiDej6BgYM6EIVaInUE3CRHMbTfQQrTAdrBz4FoM8q%2BpCKzAwcA6Ip8EyeJEjGha6iztBrP2NrV1AWdb1bjDu5q%2FhNyh%2FsVamywkFzWqQmB1Ers5yDio"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7438db839a0d0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65451)
Hash 9abb42735168ac9e960b770179b642aa
11475bf8c7244af7a820108b7762e7a3f95aa52c
df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bonsplans-courtepaille.fr
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:42 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1661981322.dop001.sk1.t,1661981322.cds219.sk1.hn,1661981322.cds201.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 9.0 kB IP 142.250.74.3:0
File type gzip compressed data, from Unix\012- data
Hash c6919f838d40c2744869cd8f0ec46551
de2ee69acf4b535d1a240163a09c2520419aa1f0
24edfa9e436ecfb1a1ca792d28ff4385de297c90525a95297ffd614e63b969b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sibautomation.com/cdn-cgi/rum?
104.18.34.145200 OK 10 kB URL HTTP/2 sibautomation.com/cdn-cgi/rum?
IP 104.18.34.145:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 147x120, components 3\012- data
Hash 637ae51a46a9c7757b37f070fc6b27d5
37ac344e478fdb50c6ef4bede0a7c3c3da599be9
677189c3e9f73da16ed90a14f1509b740e8dce7dd3f02929c68018dea3acf5f5
POST /cdn-cgi/rum? HTTP/1.1
Host: sibautomation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 381
Origin: https://sibautomation.com
Connection: keep-alive
Referer: https://sibautomation.com/cm.html?id=1325090
Cookie: uuid=4d7100eb-e417-420f-8a3e-3e938d7d4e4c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:41 GMT
server: cloudflare
cf-ray: 7438db7dff92b52d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/barcode.php?f=png&s=code128&d=51011231086201454&w=300&ts=5&pb=22&th=17
79.137.123.127200 OK 927 B URL HTTP/2 bonsplans-courtepaille.fr/barcode.php?f=png&s=code128&d=51011231086201454&w=300&ts=5&pb=22&th=17
IP 79.137.123.127:0
File type PNG image data, 300 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 8df7ea9fc4cc97aaebcf6ca40d18154d
81afa856b6a217e1d21159f1e7c4e71fdf47ab22
f7a96bf9395f03ac175b287e5aaa3362ed45f7645476fd6fbc3c36f9a4053c50
GET /barcode.php?f=png&s=code128&d=51011231086201454&w=300&ts=5&pb=22&th=17 HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 927
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-MJBB92RTS2
142.250.74.72200 OK 73 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-MJBB92RTS2
IP 142.250.74.72:0
File type ASCII text, with very long lines (11888)
Hash 2b8c4efa61b7be772b75d4cfe09c73e5
cc4e8bd5671962b7fabccdeb6ddec63c721c1bdc
e28ff454155317cd9df413fa64c484ecd8c830197bf539fdf89a925c40a8a4c2
GET /gtag/js?id=G-MJBB92RTS2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 31 Aug 2022 21:28:42 GMT
expires: Wed, 31 Aug 2022 21:28:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73002
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/fb.png
79.137.123.127200 OK 472 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/fb.png
IP 79.137.123.127:0
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash 58a703bdaad646b9db289c74b52f72e8
55c2739bc79bac6059e8f58bf2b97522638e3d70
538c72153e423d02a6b97ae45bcf3240b2157a58824c3fc873674224d92e36c1
GET /assets/static/fb.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 472
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "1d8-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/in.png
79.137.123.127200 OK 596 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/in.png
IP 79.137.123.127:0
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash ccc34658bd99770a03688a88896c528b
187cf68b18c978c12ecb09c4f27be93cfd121036
0394ede4e8f9d619457903270882daf16778b5365c45608a0ce370448cce6010
GET /assets/static/in.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 596
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "254-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?key=AIzaSyD0Lllskufgb3z_km7as4H3LNVfxAetnu8
142.250.74.74200 OK 54 kB URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyD0Lllskufgb3z_km7as4H3LNVfxAetnu8
IP 142.250.74.74:0
File type ASCII text, with very long lines (2452)
Hash f88e82e1ae33dbe25be030300e89aed2
b3bde9fbb4b18c0c2b76678c60340a2e48f28b6d
ef48af64de5567d568d7a85b77a0d3e9e6263d539962c7e60c228191d1126a3f
GET /maps/api/js?key=AIzaSyD0Lllskufgb3z_km7as4H3LNVfxAetnu8 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 31 Aug 2022 21:28:42 GMT
expires: Wed, 31 Aug 2022 21:58:42 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53797
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonsplans-courtepaille.fr/assets/static/creme.png
79.137.123.127200 OK 130 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/creme.png
IP 79.137.123.127:0
File type PNG image data, 350 x 190, 8-bit/color RGBA, non-interlaced\012- data
Size 130 kB (130322 bytes)
Hash 48816d2e4aba442c392e30087a99d0c3
b17ab88be929d45100270e4d921008d5e3e29d9f
0b6c4b6b23ab07f6dadadd168c8dbb45cdf62de3d3e1bc97bb9093d4b56ecef1
GET /assets/static/creme.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 130322
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-1fd12"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
d1h8fl8on3a554.cloudfront.net/fonts/HanleyPro/HanleyPro-Script.woff2
54.230.245.107200 OK 56 kB URL HTTP/2 d1h8fl8on3a554.cloudfront.net/fonts/HanleyPro/HanleyPro-Script.woff2
IP 54.230.245.107:0
File type Web Open Font Format (Version 2), TrueType, length 55464, version 1.0\012- data
Hash ca3e049795c6ed80b935004ea64f0f12
4fd7770e5a963ebc0ff1f785ec3934b0ce4e6d6f
efc13b1415e75f7835a00a294d14ed905467bdf19d5b98d666c51927ec0ecb4d
GET /fonts/HanleyPro/HanleyPro-Script.woff2 HTTP/1.1
Host: d1h8fl8on3a554.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonsplans-courtepaille.fr
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 55464
server: Apache
last-modified: Tue, 28 Jun 2022 16:13:15 GMT
accept-ranges: bytes
with-dyn: (null)
access-control-allow-origin: *
date: Wed, 31 Aug 2022 21:23:22 GMT
cache-control: max-age=7200, public
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5vC1UDpuYF-52lyqC53oYx9MwVGTXX39pudp_sXiP5jFrlQa-1ZbAA==
age: 320
X-Firefox-Spdy: h2
d1h8fl8on3a554.cloudfront.net/fonts/BebasNeue/BebasNeuePro-Bold.woff2
54.230.245.107200 OK 23 kB URL HTTP/2 d1h8fl8on3a554.cloudfront.net/fonts/BebasNeue/BebasNeuePro-Bold.woff2
IP 54.230.245.107:0
File type Web Open Font Format (Version 2), TrueType, length 23248, version 1.0\012- data
Hash 768452f4f421e8b921ca285c19d37436
2bb6366f99ed8623d2798178b95208fc56989584
e4fbc07b6f604ae33d0ac816bd8b5293a0381beba1cda5301aae99746c296060
GET /fonts/BebasNeue/BebasNeuePro-Bold.woff2 HTTP/1.1
Host: d1h8fl8on3a554.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonsplans-courtepaille.fr
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 23248
server: Apache
last-modified: Tue, 28 Jun 2022 16:12:34 GMT
accept-ranges: bytes
with-dyn: (null)
access-control-allow-origin: *
date: Wed, 31 Aug 2022 20:17:31 GMT
cache-control: max-age=7200, public
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0D3OVl2OgaBoG7C94K-S5L8XQnFBpbjBa6Pmgx3y8eQJ33UrPNMguw==
age: 4271
X-Firefox-Spdy: h2
d1h8fl8on3a554.cloudfront.net/fonts/BebasNeue/BebasNeuePro-Regular.woff2
54.230.245.107200 OK 24 kB URL HTTP/2 d1h8fl8on3a554.cloudfront.net/fonts/BebasNeue/BebasNeuePro-Regular.woff2
IP 54.230.245.107:0
File type Web Open Font Format (Version 2), TrueType, length 23976, version 1.0\012- data
Hash 0bdc41c99f5818d3dff947db082305ca
105167046f861a456fd7dca4d3b0f56984b501ec
17db5d6eb055016cf949dbd4074bf1e60378e214870343b4946d1cf6ce15288e
GET /fonts/BebasNeue/BebasNeuePro-Regular.woff2 HTTP/1.1
Host: d1h8fl8on3a554.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bonsplans-courtepaille.fr
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 23976
server: Apache
last-modified: Tue, 28 Jun 2022 16:12:34 GMT
accept-ranges: bytes
with-dyn: (null)
access-control-allow-origin: *
date: Wed, 31 Aug 2022 21:23:22 GMT
cache-control: max-age=7200, public
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 74BENctlNuVGB9_OLG2nSS96JmdgF5_ctqkRDh0jn8nBMhzsF5wl_w==
age: 320
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/croqpaill.png
79.137.123.127200 OK 170 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/croqpaill.png
IP 79.137.123.127:0
File type PNG image data, 350 x 190, 8-bit/color RGBA, non-interlaced\012- data
Size 170 kB (170089 bytes)
Hash 9ff3eeae3cbce1c02a0321445227e3f6
76cfa21b6da413188b4375ef2c058ebd466d03db
50e552e98d95c5ec144d3ddd21d35a6c41b11c2f8271e7e772bcd78474ddb33a
GET /assets/static/croqpaill.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 170089
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-29869"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/compot.png
79.137.123.127200 OK 134 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/compot.png
IP 79.137.123.127:0
File type PNG image data, 350 x 190, 8-bit/color RGBA, non-interlaced\012- data
Size 134 kB (134165 bytes)
Hash 2277ddb105bbb7515caffbdd180bf198
60ce3d8ffdc1142a83cbf25cfb05c6d607e86a9e
966ced6265a99809574d92ae90e538699c1cb4485ed625238757432bcf65f79f
GET /assets/static/compot.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 134165
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-20c15"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/after-sms.png
79.137.123.127200 OK 4.4 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/after-sms.png
IP 79.137.123.127:0
File type PNG image data, 269 x 87, 8-bit/color RGBA, non-interlaced\012- data
Hash 10abd89bd27cce1fca133cefcb12ec39
9473278576e0b53c2a9058aa573fffdf779049e2
6a2cbdbab067f7c9f83b3676b237328fda707062e19c3e7cca1265123adf66b2
GET /assets/static/after-sms.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/assets/css/app.css
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/png
content-length: 4406
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-1136"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/offre-img.jpg
79.137.123.127200 OK 319 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/offre-img.jpg
IP 79.137.123.127:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 585x372, components 3\012- data
Size 319 kB (318628 bytes)
Hash 11f9f975622185e1fc3f7577454ee828
afca0d90495bbb16e37da9092d415eb8ef3c0cd4
f41dc0169491287069b70367bbe589e512db82eeda903a125d31042cd27442c2
GET /assets/static/offre-img.jpg HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/jpeg
content-length: 318628
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-4dca4"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/AvenirLTStd-Roman.woff2
79.137.123.127200 OK 11 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/AvenirLTStd-Roman.woff2
IP 79.137.123.127:0
File type Web Open Font Format (Version 2), TrueType, length 11076, version 1.0\012- data
Hash 21e2d2c93ba6f7a9e12a2dc2fbad4b69
1c3e43dd44beb298f27395a5b60149df8b6e8b65
3f8f5e55474a875fec7e7457d3f1f23b4274613bb88c78b0820342b595068e26
GET /assets/static/AvenirLTStd-Roman.woff2 HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://bonsplans-courtepaille.fr/assets/css/app.css
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: font/woff2
content-length: 11076
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-2b44"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/bck-blocks.jpg
79.137.123.127200 OK 738 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/bck-blocks.jpg
IP 79.137.123.127:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1274x518, components 3\012- data
Size 738 kB (738224 bytes)
Hash 4ba5d1629360f6eab8618c8ec26a6619
ec4719fd68b91804c36b9eef93644091c8f417f3
a5b079bb714cbecaafa469afc184ff905b0b93f24300c31cf28c496247b0a9f7
GET /assets/static/bck-blocks.jpg HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/assets/css/app.css
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/jpeg
content-length: 738224
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-b43b0"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/merci-bck.jpg
79.137.123.127200 OK 1.5 MB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/merci-bck.jpg
IP 79.137.123.127:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x657, components 3\012- data
Size 1.5 MB (1452897 bytes)
Hash b760f9472d13d5c2ea00ce822ccf5126
dac7fde25ac53f25ee68f71013eeec2fc93038e2
7d837d694c97ec5f1aecbfe264690462d11d346d15816813ce71ba725c4a4083
GET /assets/static/merci-bck.jpg HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/assets/css/app.css
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: image/jpeg
content-length: 1452897
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-162b61"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/twitter.png
79.137.123.127200 OK 697 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/twitter.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash d4edfaccd022c3bb31d8b95fed4915b9
8b3f3f1ce608ea17455702a1bca53ab1ee208387
68f39a05079b43974a332ba5f6831848a94a155b6f7615b74e1569dbf9600bf9
GET /assets/static/twitter.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 697
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "2b9-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/whatsapp.png
79.137.123.127200 OK 815 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/whatsapp.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash 866f26213769fbc35200b44bf7c2a72d
f9c19691adcc001fd1c9533c415445e5ed4b8e56
e45245dbf48b6bd2ede8d175efa0420c4b963a7f64bfe7cf3db04e3289808b96
GET /assets/static/whatsapp.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 815
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "32f-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/messenger.png
79.137.123.127200 OK 1.6 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/messenger.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash 4b53ab8e6775301ed9a6dc955c7b7ed7
0ce071d5d1531a6e142831bd3a2fbb7c910b831c
b5405411002db2a418bfa17fcb567a6f4f8b4f199637b2f2c9cd46212ceebddb
GET /assets/static/messenger.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 1604
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-644"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/message.png
79.137.123.127200 OK 648 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/message.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash d156bcf1db6af44d8d03a56ea0441191
74c056d4fe92a33288579203c92e20282218f97c
0496179ec4f94bd162cd820a0fc0e158cbc5a9feabb93416485a13af51b72310
GET /assets/static/message.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 648
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "288-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/email.png
79.137.123.127200 OK 620 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/email.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash 0af66debe6fcae47baec15a823ce9b7d
b7f5444dc8c7d2afb7370a6281f15078eb739a7c
30b0249a05a819db777ced7a54f6d148dd588dd7b20525dcf41d7f0af0cdca29
GET /assets/static/email.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 620
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "26c-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10963
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
bonsplans-courtepaille.fr/assets/static/link.png
79.137.123.127200 OK 694 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/link.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash dddcaec43cb1e7356cdc2b6c9c2a3519
09048803295455409010a8b2db6227ebe20024cf
5bd6e984ce56e4748cee74f8081d71aa475ebb0adcf3900435376d8492063a7b
GET /assets/static/link.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 694
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "2b6-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/facebook.png
79.137.123.127200 OK 623 B URL HTTP/2 bonsplans-courtepaille.fr/assets/static/facebook.png
IP 79.137.123.127:0
File type PNG image data, 42 x 42, 8-bit colormap, non-interlaced\012- data
Hash 7727f246a1dab96c2790cbb874194cac
20a1188da6cbe471a251da716316b05b77a179bf
0cf914e73bf8aa6936521dc942fb30f4d6054d12b94a405c9ce37f1ec0fb4a34
GET /assets/static/facebook.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 623
x-accel-version: 0.01
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "26f-5e78aa331b440"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10963
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10963
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10963
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10963
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
analytics.tradedoubler.com/
188.165.150.178200 OK 104 kB URL HTTP/2 analytics.tradedoubler.com/
IP 188.165.150.178:0
Size 104 kB (103624 bytes)
Hash b2c3e7fdb23dcc655d7e0c274c39a9f6
bfb30bd0ca0f3ebda967d2491db7f00fd46fc798
6a0c9c2668289223de861c86de6c9323f9b6db9a67dfc6d22c5ec05691989ed4
POST / HTTP/1.1
Host: analytics.tradedoubler.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clk.tradedoubler.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 230
Origin: https://clk.tradedoubler.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-via-popn: primary
content-encoding: gzip
x-via-poph: replica1
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/static/incentive-cover.jpg
79.137.123.127200 OK 132 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/incentive-cover.jpg
IP 79.137.123.127:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 332x230, components 3\012- data
Size 132 kB (131676 bytes)
Hash c3f1bc59cd230c82552a00625a57d688
387f1e7a73bb297b031ba0852fa51d5bf527ab6f
eb72fa32c19be271703a923f4ba397445b395678d94e63ceb2e4b3a6a4adda18
GET /assets/static/incentive-cover.jpg HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/jpeg
content-length: 131676
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-2025c"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 10:00:10 GMT
age: 41313
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:44:23 GMT
age: 85460
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 03y3JoF38R7gjBYS3gHyOsivob68ykKlwvAIFEwiat2FjYfKWh-afA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 22:47:54 GMT
age: 81649
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4b18b62ff275079a412349f454f66c
3638ba3ef38c4aaeb31a12bb61aaf90034915954
d825ce440863c9a53cee3a8d0f2ca2d41e2e9176ee1234d3dd0ae861f047b031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11115
x-amzn-requestid: 11b741c1-55f5-4c28-bbf9-bd828ed204b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xkns8G8cIAMFRAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b531f-1d56c9401b90dc206b010d08;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 11:35:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4CIqSMm5XXWISAncsk_wwHBlIO6Ll4BH3FT6tN7qEM1EDtFLr7_RLA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 04:01:00 GMT
age: 62863
etag: "3638ba3ef38c4aaeb31a12bb61aaf90034915954"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db8548465788b6e73fc19c63575f7d32
0502c55da685e6a5bd3506b55cd96d639346ed82
c125a0828629e46996832fd04555f503e62c0dc0e8506f069487ba8ebb2db4a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7582
x-amzn-requestid: 65712628-13c0-42e2-a090-b21fde8bd026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xg0rgE_hIAMF1ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309ce49-5feadfad6c342ae96a5a26d7;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:56:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AaCY2PsUVPfvdDwb7itAqcRV9NZPkDxFs1QEiYZ_FjTNp9sH4bn5rg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 06:11:47 GMT
age: 55016
etag: "0502c55da685e6a5bd3506b55cd96d639346ed82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 084c7b9f1244ec72236ab517787af1e2
18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb
2ea7697ebc332bec201ffeaed54a738869b6c64784916574db2c7e6a7990fb3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5911
x-amzn-requestid: ff3b12df-1798-40bb-bf02-ad198710da96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdcGHFGYoAMFw_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630873c0-00cd86e97d0687c702a49ecb;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:18:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bdUkkt8QyTXI_NN4R4tJ3pGrDwNpoLC_aS17xUIe7623fE5xNQucrw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:59:37 GMT
age: 84546
etag: "18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d1h8fl8on3a554.cloudfront.net/courtepaille/video/video.mp4
54.230.245.107206 Partial Content 408 kB URL HTTP/2 d1h8fl8on3a554.cloudfront.net/courtepaille/video/video.mp4
IP 54.230.245.107:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 408 kB (408296 bytes)
Hash 9a40824e395633d0cfdd891d76ad65dd
0c036be95d046c1d5c306796b0e3fce2c8e6ba00
f106961fa38ccf0c2511b97c77dd5acb507f86d6aeb16026a365505befac4cf1
GET /courtepaille/video/video.mp4 HTTP/1.1
Host: d1h8fl8on3a554.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
content-length: 11904414
date: Sat, 20 Aug 2022 05:37:31 GMT
server: Apache
last-modified: Fri, 10 Sep 2021 08:22:41 GMT
accept-ranges: bytes
with-dyn: (null)
cache-control: max-age=2592000, public
access-control-allow-origin: *
vary: Accept-Encoding
content-range: bytes 0-11904413/11904414
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W9ZYUeAYzUS6fQ4MJl3Z8k9S4d_urRqEL6ym6QAELyHMNVzij4-m2g==
age: 1007472
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d0d96116b70084065c54d3cbe16bb956
93c5bbfd3638965a8e37a3a7565e86bfb4b5c34b
696f4b8d00a54fbff2e21176fea1dca7ffe688a58e916e9a62d667003f43f0e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "696F4B8D00A54FBFF2E21176FEA1DCA7FFE688A58E916E9A62D667003F43F0E5"
Last-Modified: Mon, 29 Aug 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Thu, 01 Sep 2022 03:27:52 GMT
Date: Wed, 31 Aug 2022 21:28:43 GMT
Connection: keep-alive
avent-media.fr/courtepaille/2021/assets/img/favicon.png
213.32.59.103200 OK 5.0 kB URL HTTP/2 avent-media.fr/courtepaille/2021/assets/img/favicon.png
IP 213.32.59.103:0
File type PNG image data, 231 x 231, 8-bit/color RGBA, non-interlaced\012- data
Hash 393396066dc2c1afbc79ff617c0d929d
f1f682a3817e0d21a8853e17a14141b451157063
73180c13940226e21b658dafc93946e2149c5372b722c828e72d4a63c00cf5d6
GET /courtepaille/2021/assets/img/favicon.png HTTP/1.1
Host: avent-media.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:43 GMT
content-type: image/png
content-length: 5012
last-modified: Wed, 04 Aug 2021 15:47:48 GMT
etag: "610ab6a4-1394"
accept-ranges: bytes
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-MJBB92RTS2>m=2oe8t0&_p=1963758665&cid=1895502707.1661981323&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661981322&sct=1&seg=0&dl=https%3A%2F%2Fbonsplans-courtepaille.fr%2Fconfirmation%2Fd579b382ca4967f9d5e77dd15835e3f9&dr=https%3A%2F%2Fclk.tradedoubler.com%2F&dt=Courtepaille%20%3A%20offre%20avec%20remise%20imm%C3%A9diate%20!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MJBB92RTS2>m=2oe8t0&_p=1963758665&cid=1895502707.1661981323&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661981322&sct=1&seg=0&dl=https%3A%2F%2Fbonsplans-courtepaille.fr%2Fconfirmation%2Fd579b382ca4967f9d5e77dd15835e3f9&dr=https%3A%2F%2Fclk.tradedoubler.com%2F&dt=Courtepaille%20%3A%20offre%20avec%20remise%20imm%C3%A9diate%20!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MJBB92RTS2>m=2oe8t0&_p=1963758665&cid=1895502707.1661981323&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661981322&sct=1&seg=0&dl=https%3A%2F%2Fbonsplans-courtepaille.fr%2Fconfirmation%2Fd579b382ca4967f9d5e77dd15835e3f9&dr=https%3A%2F%2Fclk.tradedoubler.com%2F&dt=Courtepaille%20%3A%20offre%20avec%20remise%20imm%C3%A9diate%20!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Wed, 31 Aug 2022 21:28:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/ajax/getStores
79.137.123.127200 OK 222 B URL HTTP/2 bonsplans-courtepaille.fr/ajax/getStores
IP 79.137.123.127:0
File type JSON data\012- , ASCII text, with very long lines (428), with no line terminators
Hash 0301d5a156ac5ea8a697b8c53ccbe22b
b301eb9c151ace334252c6c0fc2e2afe328103a2
c60e0e908b370e1d26773059200df4aae0bcd274bce263f240c365697e31b065
POST /ajax/getStores HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 13
Origin: https://bonsplans-courtepaille.fr
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:44 GMT
content-type: text/html; charset=UTF-8
content-length: 222
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; expires=Wed, 31-Aug-2022 23:28:44 GMT; Max-Age=7200; path=/; SameSite=Strict; secure; HttpOnly
content-encoding: gzip
vary: Accept-Encoding
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.163200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.163:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Wed, 31 Aug 2022 21:28:44 GMT
expires: Wed, 31 Aug 2022 21:28:44 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bonsplans-courtepaille.fr/assets/static/marker.png
79.137.123.127200 OK 1.2 kB URL HTTP/2 bonsplans-courtepaille.fr/assets/static/marker.png
IP 79.137.123.127:0
File type PNG image data, 34 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash df0b177e315d28382fabda211cb0c0f9
f415ef4b6de63af1c0577403031485211fdf193b
3fa36f7b4e20c1f7098ba01943600b83aae27c5dd23175cf10669f0f9a2fb1c3
GET /assets/static/marker.png HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7; _ga_MJBB92RTS2=GS1.1.1661981322.1.0.1661981322.0.0.0; _ga=GA1.1.1895502707.1661981323
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:45 GMT
content-type: image/png
content-length: 1194
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
etag: "630f7589-4aa"
accept-ranges: bytes
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 21:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
142.250.74.10200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en
IP 142.250.74.10:0
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /css?family=Google+Sans+Text:400&text=%E2%86%90%E2%86%92%E2%86%91%E2%86%93&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 21:28:45 GMT
date: Wed, 31 Aug 2022 21:28:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcb5acc5186b678254184c5dac12079
d7c84b42a0dd5b86a0668127698fd5f25b647fcb
8173103eda58bf2f1af2d077fc90c2c1b6d2a93265092a9c3152b686e05a4f9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5910
x-amzn-requestid: 935b97da-1473-4863-bad2-a732709de9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslNHEfTIAMFWrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e8253-150847db7280350c19e2e464;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0RN7uc1rCMPWabmuO7QRLxIQ2mv0PFqTfL-dF7a6a3i1gFn0TtF8Nw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:19 GMT
age: 85411
etag: "d7c84b42a0dd5b86a0668127698fd5f25b647fcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bonsplans-courtepaille.fr/assets/js/app.js
79.137.123.127200 OK 0 B URL HTTP/2 bonsplans-courtepaille.fr/assets/js/app.js
IP 79.137.123.127:0
GET /assets/js/app.js HTTP/1.1
Host: bonsplans-courtepaille.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bonsplans-courtepaille.fr/confirmation/d579b382ca4967f9d5e77dd15835e3f9
Connection: keep-alive
Cookie: ci_session=9c5bcb8bcbd40e62e0ca203146b6b0df2bffbda7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 21:28:42 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:51:53 GMT
vary: Accept-Encoding
etag: W/"630f7589-3ec490"
content-encoding: gzip
x-xss-protection: 1; mode=block
referrer-policy: same-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
sibautomation.com/cm.html?id=1325090
104.18.34.145200 OK 0 B URL HTTP/2 sibautomation.com/cm.html?id=1325090
IP 104.18.34.145:0
GET /cm.html?id=1325090 HTTP/1.1
Host: sibautomation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://r.infos.mesoffres-privees.fr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:41 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-apo-via: origin,host
x-powered-by: Sails <sailsjs.com>
access-control-allow-origin: *
x-sib-server: SENDINBLUE-web1-2
x-content-type-options: nosniff
x-xss-protection: 1
last-modified: Wed, 31 Aug 2022 21:28:41 GMT
cf-cache-status: MISS
expires: Wed, 31 Aug 2022 23:28:41 GMT
cache-control: public, max-age=7200
server: cloudflare
cf-ray: 7438db7a4c60b52d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,700|Google+Sans:400,500,700|Google+Sans+Text:400&lang=en HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 21:28:45 GMT
date: Wed, 31 Aug 2022 21:28:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
172.64.156.26200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 172.64.156.26:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sibautomation.com
Connection: keep-alive
Referer: https://sibautomation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 21:28:41 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7438db7cfa5d0afa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2