Report - www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19

Report Overview

Submitted URL
www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
IP
54.230.111.8
ASN
#16509 AMAZON-02
Submitted
2023-02-05 05:16:39
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	865 B	54.230.245.118
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	410 B	11 kB	151.101.1.229
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	744 B	2.1 kB	216.58.211.4
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	379 B	63 kB	216.58.207.200
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-13T07:25:30Z	395 B	18 kB	104.18.11.207
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	437 B	867 B	216.58.211.3
www.youtube.com	90	2013-04-13T09:43:20Z	2023-03-13T05:09:12Z	359 B	1.4 kB	216.58.211.14
www.quebec.ca	325371	2020-03-30T12:33:59Z	2023-03-09T19:06:58Z	11 kB	386 kB	54.230.111.38
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	4.1 kB	8.4 kB	142.250.74.3
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	368 B	1.9 kB	104.18.21.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.149.117.124
cdn-contenu.quebec.ca	453131	2020-03-30T12:33:59Z	2023-02-28T16:12:27Z	402 B	3.8 kB	143.204.55.114
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	95.101.11.115
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	398 B	7.7 kB	104.17.24.14
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	4.0 kB	172 kB	142.250.74.35
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.8 kB	93.184.220.29
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	480 B	578 B	142.250.74.131
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	600 B	589 B	64.233.161.157
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	50 kB	34.120.237.76
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:11:52Z	831 B	444 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-05 05:17:07	medium	Client IP	54.230.111.38	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (53)

	URL	Size	First Seen	Last Seen
	www.google.com/recaptcha/api.js?hl={lang}	850 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?hl={lang} IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:36:21 Last Seen2023-03-13 20:50:27 Times Seen1 Hash 70aab65851791173878a53cd9897bd90 a15efa7ce5eac1436fd05215a1a540ab3a4529b7 cad6dc25a593ca6887a2698a08246928b73f9d4dd714976a4990886d8b6dadce Loading...

	www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19	843 B	2023-03-13	2023-03-13
Pretty URL www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 18:46:24 Times Seen1 Hash 9dfb475e87fc991f43f05b6624f7ef92 b0f4684bf4ceb43e2a2de8cab1bdb41656199c0e b1329284f7c4b5f365171385b113ac205216193d6351850a217130d79dacecef Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey&co=aHR0cHM6Ly93d3cucXVlYmVjLmNhOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=wijrzqswt9ns	36 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey&co=aHR0cHM6Ly93d3cucXVlYmVjLmNhOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=wijrzqswt9ns IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 17:20:55 Times Seen1 Hash f1d93ba0697e55ed263ec9227d82a6f7 2946a0fcc3528327bfd02e652e0db63878b9e98d c64f635ab3653d12315907a265c77c798b27e06d55f40e8028f52693bc9ce793 Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 07:21:01 Times Seen37113997 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19	635 B	2023-03-09	2023-03-14
Pretty URL www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 40d150c409124dfa91b84ecfdc34e98f 7faef4091f13c20afc00c3632b340d88c6a650d0 5ad875eec5aa95e31da0702cdf790a79a2624efea9444a0e4ba1a6dcffc254ff Loading...

	www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-3.6.0.min.js?1675456498	90 kB	2023-03-07	2024-04-27
Pretty URL www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-3.6.0.min.js?1675456498 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-27 07:12:52 Times Seen262062 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.quebec.ca/typo3temp/assets/compressed/merged-132aa2c1ffa11cb3bc97885c431b5fad-df80435d91ea8fae5828f8c713cd89ab.js?1673807032	17 kB	2023-03-13	2023-03-13
Pretty URL www.quebec.ca/typo3temp/assets/compressed/merged-132aa2c1ffa11cb3bc97885c431b5fad-df80435d91ea8fae5828f8c713cd89ab.js?1673807032 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 18:46:24 Times Seen1 Hash d571183191760333e53add599b07c371 26c63e18393bb5098574338a591763df5894c8c5 538d9fe0bf7adec1305ed0a54dcbeeb622bf1a510b127d82b18fa6c8ffdf7156 Loading...

	www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-ui-1.13.2.min.js?1675456498	255 kB	2023-03-07	2024-04-26
Pretty URL www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-ui-1.13.2.min.js?1675456498 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:39:57 Last Seen2024-04-26 09:37:06 Times Seen3737 Hash 1e2047978946a1d271356d0b557a84a3 5f29a324c8affb1fdb26ad4564b1e044372beed2 9528ca634fecad433d044ddd3e6f9ce1f068d5d932dafdbb19d8e6daea1968bd Loading...

	www.google.com/recaptcha/api.js?hl=fr	850 B	2023-03-13	2023-03-13
Pretty URL www.google.com/recaptcha/api.js?hl=fr IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:45:36 Last Seen2023-03-13 19:01:07 Times Seen1 Hash 80d39068f0813d7474b93a91cb633704 3201661ffd7ceb9970d4abde6023ba2735debefd d4cbea96acde3e71121dd28fbc8d56fd4cc3c8f6f17514a23c5e03d2df1856c5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.googletagmanager.com/gtag/js?id=G-8BGN8R6SNX&l=dataLayer&cx=c	218 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-8BGN8R6SNX&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 17:20:55 Times Seen1 Hash dc94c41ef649f4a8e9239cc9bdb97a86 38d76625b906efd19dee1c68b81336b830624289 90dd962c0daf63eb1914dfd30e8b47d98be28995e4bff8bd034320e0ead0daea Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey	178 B	2023-03-09	2023-03-13
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=gEr-ODersURoIfof1hiDm7R5&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 17:20:55 Times Seen1 Hash 79e4853bb4e4ff1cc4642c8cd2f9895a eb2707d454830d0cd46fe218a2ac4f907e714d6b 0007f7ac5dabf2f0b96f2542b7cba6da696fd47f84aa4c51d3254ac38c7fc187 Loading...

	www.quebec.ca/typo3temp/assets/compressed/merged-d196a61b6c62ac41619edff0af4a1299-3ccc46a8b7c33211139b846a9d9f8c69.js?1675422938	55 kB	2023-03-09	2023-03-13
Pretty URL www.quebec.ca/typo3temp/assets/compressed/merged-d196a61b6c62ac41619edff0af4a1299-3ccc46a8b7c33211139b846a9d9f8c69.js?1675422938 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash de42000f04dee33f05bf8ae9567dafb3 2aeedf8398e61f1959c917c44470a802d0c2e9f0 3c4142b6b8d83d3078bf992ae0df10c9e3be347cdf3d3e6404dcafb1017f4d0d Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js	58 kB	2023-03-07	2024-04-27
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-27 06:13:47 Times Seen19878 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19	1.3 kB	2023-03-09	2023-03-13
Pretty URL www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 17:20:55 Times Seen1 Hash b87578b6a55cf7a21eca70b87d446526 c8278adfb1ea053454868a91f03591e1a026d3fe 017918e36e55554a62f425d60aef23fc579dd450b46fab61c3ca674701b6a346 Loading...

	www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19	635 B	2023-03-09	2023-12-12
Pretty URL www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2023-12-12 23:10:28 Times Seen2 Hash cce31cf9fb589ae9fd0b21a5269f83aa cdeecefacc7c856f27f1a85f1861576d69320a97 68c75c84ab09cedd721cdb7b50bd19762dd323e82325527d81d3bd02fc7ba8f3 Loading...

	www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__fr.js	416 kB	2023-03-13	2023-03-13
Pretty URL www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__fr.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:45:36 Last Seen2023-03-13 20:37:11 Times Seen1 Hash 741222bed8fc2bc1c9a4d27cf1678f4a fa3c1de066b1283e2a0f80083200f2b493b182b9 965d1af95dff0e17517f8abb9e887966379d88e4401777070cd5c33c057797cc Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey&co=aHR0cHM6Ly93d3cucXVlYmVjLmNhOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=wijrzqswt9ns	69 B	2023-03-07	2024-04-27
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfBkFUUAAAAAL3jTg74taA_tdgFdXHojMYIOcey&co=aHR0cHM6Ly93d3cucXVlYmVjLmNhOjQ0Mw..&hl=en&v=gEr-ODersURoIfof1hiDm7R5&size=invisible&cb=wijrzqswt9ns IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-27 06:20:28 Times Seen99644 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js	412 kB	2023-03-13	2023-03-14
Pretty URL www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:35:27 Last Seen2023-03-14 08:38:41 Times Seen1 Hash d2aff4cd4e40d9bfa2c1f818bcad7ce2 4cc960f771819bccd4783520506e3909e8ec0fcd d808130157ed1fca0469f5f40210d7d1b2dc2c41add64e658bb3222aea4d9eba Loading...

	www.quebec.ca/typo3temp/assets/compressed/merged-376637d65dfe9649ab155486583aec05-18fa24b016001f06da936ccfbf8ac4a9.js?1675456871	133 kB	2023-03-13	2023-03-13
Pretty URL www.quebec.ca/typo3temp/assets/compressed/merged-376637d65dfe9649ab155486583aec05-18fa24b016001f06da936ccfbf8ac4a9.js?1675456871 IP 54.230.111.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 18:46:24 Times Seen1 Hash a1c2e048689a1961badb304e157faace a8920b61f7d87ba9faaa456752bf701cb42a26a2 47659805c28540d74d01c223e00c136f28ecbb2b926254d2073aa439ea9d7ea6 Loading...

	cdn.jsdelivr.net/npm/@accessible360/accessible-slick@1.0.1/slick/slick.min.js	44 kB	2023-03-09	2024-04-10
Pretty URL cdn.jsdelivr.net/npm/@accessible360/accessible-slick@1.0.1/slick/slick.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:31:44 Last Seen2024-04-10 03:55:05 Times Seen150 Hash 339068220edc552f37002bf4d1a6cab9 17ff88347a16b8f84a4cc50469cb3e29f237d523 4c53bd4fb46505b90b10e21b4c6e477a14abb0ed61eab0a7b44ee0c351de5b5a Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js	21 kB	2023-03-07	2024-04-27
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:27 Last Seen2024-04-27 06:13:46 Times Seen16352 Hash 56456db9d72a4b380ed3cb63095e6022 6dbce88aee15b42f29083df7a07513cf3b486ba0 66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2 Loading...

	www.youtube.com/iframe_api	992 B	2023-03-13	2023-03-13
Pretty URL www.youtube.com/iframe_api IP 216.58.211.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:30:29 Last Seen2023-03-13 22:40:32 Times Seen1 Hash a300684733cefb2aa7eb95d592c4a002 70ac7975269f707818f66205ee8453d64c02a581 d3bbfd5809ca9c520b3565dad1b49bebe6da051f31d29db91c24711ccd98dfdc Loading...

		Size	First Seen	Last Seen
	#1 Eval - 6ebf84938099dda4fc0606f966f59fdc	270 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 6ebf84938099dda4fc0606f966f59fdc 72c1faa30d57afbb22e6805ceae54fe35b24c4e0 dcb6738297b6975915423f952381e2c046b2572617bbf3c09dcf7718fe1bac29 Loading...

	#2 Eval - 75f0a0492b305b89e093dc7fd8772664	22 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 16:33:44 Last Seen2023-03-14 05:19:53 Times Seen1 Hash 75f0a0492b305b89e093dc7fd8772664 34bd38c78ae8b1d8291fac3508974dba0247f509 3b2e2526d8453936fe3ae9ca1db4807cfab191bddbb081331c68135be769ed4d Loading...

	#3 Eval - 7340b578badb16c150e6e3d09bfae54b	270 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 7340b578badb16c150e6e3d09bfae54b 91e45763a242a1eb8905835db878cc1ae57bacbc f550e7c10e5b53b11d09f0eb0892b97ca19d3f20bf5400de3fc244d10f921242 Loading...

	#4 Eval - ae89f02c70e1e880d8ab2e44d65b67ba	1.9 kB	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash ae89f02c70e1e880d8ab2e44d65b67ba e45fa614f80ccd4ab6e4e46cf181371dd9f598eb d63e0e1244d4b6313add9ceddc66b4cd7ceb3c3fb5c9ab0b614110ff9baf50b7 Loading...

	#5 Eval - 36edc5c14be625ac9cb772a44b8c5c71	270 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 36edc5c14be625ac9cb772a44b8c5c71 30e28d512604804aa0d4e7d8e3a2c21143548fae 1b53ad3b88d95699d1b12647692c2f56ef36382cfe9dbd281d5f301f983d03e2 Loading...

	#6 Eval - 69afe9202520b925c065a0d8c1eaa7d8	304 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 69afe9202520b925c065a0d8c1eaa7d8 6ceb10bfcf51691459a9c542deede1c779de8fb5 02d3d84d8c1d8b6314da2c1641e93dafb6c7de0debfb6d2a21b9ba7757da3e6c Loading...

	#7 Eval - 511625ac12d5224b8da64a07d8d72de3	339 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 511625ac12d5224b8da64a07d8d72de3 0b897013f3486c122220a8f27e501e4dfe4eef8d 62d5be15cf45b1d16059d6794bfab379e1b9303d1bc2b25b89dbeb0da7761914 Loading...

	#8 Eval - 69f927a5660fc98774db181652412537	19 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 17:20:55 Times Seen1 Hash 69f927a5660fc98774db181652412537 d3d93846e36c3783ceb40a0b2124007fe673937f ecdf91c7c854d87cf8a7579d03f3abcc26dd646d41fffcd72aaa852601283af0 Loading...

	#9 Eval - f4feb3e119377564eae398abc9835231	273 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash f4feb3e119377564eae398abc9835231 94195b85ac941c625dc4de4ff0095a8007388bbf be0a86579db6560f787641dfe27ea7b9d0f3c87da876091bc5d3e7f158e156bc Loading...

	#10 Eval - 60b479d2c3d7f57f9945949d6200930b	16 kB	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 16:33:44 Last Seen2023-03-14 05:19:53 Times Seen1 Hash 60b479d2c3d7f57f9945949d6200930b 98d3867e1aa7e8bee354772620599b3b7bac7fd0 9798520110338f3c791f91e279952fd9aaa6070524321521478df22d97f035c2 Loading...

	#11 Eval - b34fa4899dbb4d243aae6949f9a086d5	1.9 kB	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash b34fa4899dbb4d243aae6949f9a086d5 bc9f3e93d05ebbaf84e5d797f8ba1d999dfe1add 1bcb6df79920b928d2e769982b49b2671f064af4530ca9dee18a0cb55b89790b Loading...

	#12 Eval - c81b46ad8d2d428c18483be3a40b6d64	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:52 Last Seen2023-03-13 17:26:34 Times Seen1 Hash c81b46ad8d2d428c18483be3a40b6d64 df4f47063bbb236fb0523516df0f1e80bdf3ff33 e12c1209e13ba8bc70ecfd0a5fd091233268871a34a1c46780d258ae2c14fa8e Loading...

	#13 Eval - 50c1c9f510b6bb055120b26f97a94892	1.9 kB	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 50c1c9f510b6bb055120b26f97a94892 0d7cd7a769c0a8bd2ec4f295a0335d65e823d597 f913329ddead30e16252007f3efe5c80bdd593c6d8254e73be77e2ba820d2c07 Loading...

	#14 Eval - f8ada8277e96951245e7ef1d6e209a1d	64 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 16:33:44 Last Seen2023-03-14 05:19:53 Times Seen1 Hash f8ada8277e96951245e7ef1d6e209a1d fc00881420b786504655f929574f2fb3f7947b78 92a039c1a3305aceaaa43cfbd9b3108c49206b2a13a0ce2a685062a7c6b64978 Loading...

	#15 Eval - 782709676279fc3e5a27c5d3c2463afc	16 kB	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:52 Last Seen2023-03-13 17:26:35 Times Seen1 Hash 782709676279fc3e5a27c5d3c2463afc 11588c15760d7bc9fa3143c1be09dcae20861ce8 9379275ad27034fcf68d55a7ad83cb0c3e44ebdca2bde908b345ba36c18a09ae Loading...

	#16 Eval - 05d96224839b72f0df81e8225144d378	62 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:52 Last Seen2023-03-13 17:26:35 Times Seen1 Hash 05d96224839b72f0df81e8225144d378 8d22a7d4163ee0ddaa42d5e7213f016c171710cc 54f7e5c8791fdd930e2cb2bc5f7fa5b7eaa741341ed10a401c999169db515488 Loading...

	#17 Eval - e167c0bfbb2f028dd3fc4ccc67210804	305 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 17:20:55 Times Seen1 Hash e167c0bfbb2f028dd3fc4ccc67210804 f10b0ea1a5e0a21a9b21f7e1934d3b9ecbfcc384 c27da9d12443a800dd314708e7d9d2f53ddc113f6564a4eb6a00a52a72b14da2 Loading...

	#18 Eval - bd854929c13910e1f3913427ae0cb395	267 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash bd854929c13910e1f3913427ae0cb395 1b70550205ba279d27ea2f9b8d4303a83f78a900 158b00157f474dd9ae1660d2bfb1a3a8ec3eec4ca4c95b041f5494390c22919b Loading...

	#19 Eval - d16c5ed51c23708ac7fef3dfe049a780	1.9 kB	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash d16c5ed51c23708ac7fef3dfe049a780 be3b008a57fde1358e992dffcc4e9206a80ff2d1 ac6dbe4bdeaa610f281df6be2ecce8d1caafb70ac191d871fc61eca272482f07 Loading...

	#20 Eval - d5f8e4f6ea4e72561c8418449db9a701	1.9 kB	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash d5f8e4f6ea4e72561c8418449db9a701 92913825c28baff9becc92a5dfef2c83d2805fcd efd0d919dac293e0051bcd0f2c6f9513be45c105dd631107058017762da0d01f Loading...

	#21 Eval - 35074c9f220d6e5f38cacc63a01d107a	304 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 35074c9f220d6e5f38cacc63a01d107a 23e39acfa170b0dd784bd306eeab16097a894aee e03d753cd8aa6dc49255ec951c2729673f61ba3e68231b6d98950b5700ba6c3c Loading...

	#22 Eval - 428910f551912540de454170d7d15703	22 B	2023-03-13	2023-03-14
Pretty Observations First Seen2023-03-13 16:33:44 Last Seen2023-03-14 05:19:53 Times Seen1 Hash 428910f551912540de454170d7d15703 f31d8c41214548e9d9ce8757069576c1f6aeeb36 0c082d9bb6cc59248898a1569d9abad8f729df5be6a4340e3824975de639be16 Loading...

	#23 Eval - 3dc2164da18c61f17086e2cde30aaf52	15 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 17:20:55 Last Seen2023-03-13 17:20:55 Times Seen1 Hash 3dc2164da18c61f17086e2cde30aaf52 ec8e0d0c217086517d7298aa41124c3fa768ec54 9c6a6b94a2011eab0c4a4df36c626548618c1bf61d4ade2c5357d64922781725 Loading...

	#24 Eval - d7aec0eb4329ec6812e51eb2a3fab1a8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:39:52 Last Seen2023-03-13 17:26:35 Times Seen1 Hash d7aec0eb4329ec6812e51eb2a3fab1a8 1d51133eb4e741d9a5d96d1e8ec7944653ca4161 569ca77f87058495ab438ddd60282e2438f2c62bd040b56cff89232d3fc12356 Loading...

	#25 Eval - fa8874538a86c62066ec56f32092ffcc	617 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 17:20:55 Times Seen1 Hash fa8874538a86c62066ec56f32092ffcc cdc507db90fad9d6d6cfc2158919abe60d99966d 15e64ce6ed376ce796c424a5e8554185d2caaa4a789b70dcbe51461a8ddfa573 Loading...

	#26 Eval - c651e29a06a43061d0df6288bc247729	139 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash c651e29a06a43061d0df6288bc247729 f1948bc33c4a11aad1954be4b57e681da9a00f5d 1cb199c39960cfde55dd784bd0743f7bb221a6516c4c672e9e301f13c51e1479 Loading...

	#27 Eval - 84dbf3164592209e21cbf95199c39469	122 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-14 11:35:40 Times Seen1 Hash 84dbf3164592209e21cbf95199c39469 ccd92ace708d5cfa60efece3c837a6279bb15490 8f464879276237347af3239762c9a21a0d0d81ad9ef129f6a173d68555267ff8 Loading...

	#28 Eval - 15b7b4a72989f21b0cdfee69814b525e	273 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash 15b7b4a72989f21b0cdfee69814b525e c4bf42fe867ee65e7db4d3e851b67cb45c3b7b7a 20a8e7d312ae3ed4f1e4ba0970d33790748f069826ab9ac90cc924861c130110 Loading...

	#29 Eval - 7d5b27dbbbe7782c3f4d93ac30f015ed	1.9 kB	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash 7d5b27dbbbe7782c3f4d93ac30f015ed b7ac507280128867e764039524a7d669f60a5463 7c1d9336507c384d3befc3ef97ef4c55c768c2c1ce9375e9ca6fa1aec2771400 Loading...

	#30 Eval - 9a66a4692377ddabec167577288e5436	84 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 21:31:44 Last Seen2023-03-13 18:46:24 Times Seen1 Hash 9a66a4692377ddabec167577288e5436 9c1046f91d7dcc1aebbffde8c4d7b243b1ec93b3 6f92faeb737d2a3d992b5e13edafec0c8ffc0a3dc38fef6224ed9b645e783da2 Loading...

HTTP Transactions (76)

URL IP Response Size

www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19

54.230.111.38

301 Moved Permanently

167 B

URL HTTP/1.1
www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

HTTP Headers

GET /entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 05:16:28 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
X-Cache: Redirect from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q1RjJoBZ8fktvmwnQqbr3oqIJ8QFQAYNFU4d1J0VxqkWw_zgRKj9Fw==
X-XSS-Protection: 1
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
Server:

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12382
Expires: Sun, 05 Feb 2023 08:42:50 GMT
Date: Sun, 05 Feb 2023 05:16:28 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15580
Expires: Sun, 05 Feb 2023 09:36:08 GMT
Date: Sun, 05 Feb 2023 05:16:28 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 04:33:54 GMT
content-type: application/json
age: 2554
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3719
Expires: Sun, 05 Feb 2023 06:18:27 GMT
Date: Sun, 05 Feb 2023 05:16:28 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 9pRnXc2J6c9c1zpc+0otCpaWYDooq6BtLnf+o9XQ6WskAf2oT9VI4eOowFhT4VGovok309/y3wY=
x-amz-request-id: TT5N3CT189JS4FYY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 04:24:19 GMT
age: 3129
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 05:16:28 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f55dc001e115fab782e2afa789f1de0a
26819bf6b0317551ce530fb7c67d785d9ebf212f
ab6b80cef55aa9be59db4664755b6426deb4cbdb774a0c3de584f6c3c90524f1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 05:16:28 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: A-TgYi52m0aootcPQeJfOIBi73T6Gu_VwvUV9t1gmgT3ia8rWrpFgg==

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 05:07:20 GMT
age: 549
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/quebecPrint.gif

54.230.111.38

200 OK

2.4 kB

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/quebecPrint.gif
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 199 x 60\012- data
Size
2.4 kB (2446 bytes)
Hash
cadd6864c1db664400c963210d5bfa51
aba52cee2dc1421b37fe1d1681d73f5ca72bb4b8
5221c9ff7b88d0f55663952429061b48b453a10f5dafd86a3efe21eb007a3b82

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/quebecPrint.gif HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 2446
date: Fri, 03 Feb 2023 20:03:30 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-98e"
expires: Sun, 05 Mar 2023 20:03:30 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VDpdAfJeFXT_DEKpSSrgUu5NsIgLsVPsbVjL_Oh_FmZctsu-BMDZLQ==
age: 119579
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12577
Expires: Sun, 05 Feb 2023 08:46:06 GMT
Date: Sun, 05 Feb 2023 05:16:29 GMT
Connection: keep-alive

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-droite.svg

54.230.111.38

200 OK

386 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-droite.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (386), with no line terminators
Size
386 B (386 bytes)
Hash
039f602fb270a534432fb34ca01991ee
99ae4fc490bbf8105078538eef1ff5f03d9aaf1b
eb7909341af5f55e364e886102aa85fb1b3b7e78fe7b7b5fe9147d32ca091fe6

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-droite.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 386
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-182"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fg_Qm_ImAZcCEYrkWeHnrDvcmkr-WYacBFDvAEgQ1zXBKjYe1Id9Cg==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Avis/general.svg

54.230.111.38

200 OK

705 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Avis/general.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (705), with no line terminators
Size
705 B (705 bytes)
Hash
debb3e98668572c7e72db248b2406c68
15f109840738287c547029d2136bea2725944031
43ef55d22eeea7ec3ba69dd5473e443e040f0874d5844859318f3231bba084de

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Avis/general.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 705
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-2c1"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lFbTBHC20LpSiuSo8LfDiWIpU-hEUtsg8u0HbiM_xq8W_LZWzvxW2g==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/lien-externe.svg

54.230.111.38

200 OK

946 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/lien-externe.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
946 B (946 bytes)
Hash
112d701491dc13d50adfc7ce22eed772
83775f6edf9db55327baa763426dd23cb34c5ffa
ead1d6958517b9b57f2a69322ea91e9df2498d1abfc68fc95ef759678c37d141

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/lien-externe.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 946
date: Fri, 03 Feb 2023 20:03:29 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-3b2"
expires: Sun, 05 Mar 2023 20:03:29 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: htk5M3SAsNH3_vcWJkrh284oMkoYV3ut6AZ7Tgc_r7OUiV24AE6k9A==
age: 119580
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Youtube.svg

54.230.111.38

200 OK

524 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Youtube.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (524), with no line terminators
Size
524 B (524 bytes)
Hash
85b8763fb9eec0c18916b8d6edda9b2f
356008ec366f0df75d3559795452bae88352bf1f
d2afc84fc314507ba2539d86f45700ce6e5d87ecab62b82b3f3e321f3fa828c0

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Youtube.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 524
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-20c"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AM9i6M97lLtViLfIKfaQS-PiUzQzkoTS9N5KeCAIyBuJrUo8Dabhnw==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Twitter.svg

54.230.111.38

200 OK

814 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Twitter.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (814), with no line terminators
Size
814 B (814 bytes)
Hash
e6670f5316aa420f12b3ccf314118d6a
c88f86627543c0fdb6164b1f4bee4cdcc27bc6b6
27921f3dbba6e89ca9696474a2c778ee5200d729ef336d2798f49323411f89b5

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Twitter.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 814
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-32e"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rnh0J3-aJK03tZarAdACs8CnSlS28WJpI-uXxTm2-f6G3eOqFwbLiA==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/fleche-precedent.svg

54.230.111.38

200 OK

455 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/fleche-precedent.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (363)
Size
455 B (455 bytes)
Hash
f8f1316d0a2f5ff6b16e56e27adc3992
53245f81ab1d15a4f09ad99c90622d24918755c9
b793bb446f61ab71ebcf14b87354d04287bff2a8b0b8f7ba6ce46f7278f854fb

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/fleche-precedent.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 455
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-1c7"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p-etpYBN6VyT4gz6yWwTv9s7Q4hQjqVTs4lHcMc_FYP3Sl7ZAzb6cw==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/signature-PIV.svg

54.230.111.38

200 OK

2.2 kB

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/signature-PIV.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
data
Size
2.2 kB (2189 bytes)
Hash
f7e0253319e3b89647f4967eb5742593
f9d77d2e1914ce87bb2891d3a6f6434d6b56fcd7
b2ad33119e996f6ade313c5bd87d19546d3933cd6752f2e05218368ca2ff66ea

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/signature-PIV.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 20:03:30 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: W/"63dd1422-13c7"
expires: Sun, 05 Mar 2023 20:03:30 GMT
cache-control: max-age=2592000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LlZeyBKP12y6GccJ9UaifXIEBjYJZ7O65m8PR0OJuZ0ZNo6cOcNRdA==
age: 119579
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Facebook.svg

54.230.111.38

200 OK

731 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Facebook.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (731), with no line terminators
Size
731 B (731 bytes)
Hash
290bd79e662c76e0c6ff2e4708c81937
22f02618b4d13cbd6e84d4c3eb039709ba820769
23d7b64b1377347451a71ec7b2e54aebdb2088494a780a729b3bd7ed34a2b301

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/Facebook.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 731
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-2db"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BdZBupnGPT9w5kdI6htf1LjxGrx9UrSMC39DYmqJpf_d2bFWQcFEfQ==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-ui-1.13.2.min.js?1675456498

54.230.111.38

200 OK

68 kB

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-ui-1.13.2.min.js?1675456498
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
data
Size
68 kB (68204 bytes)
Hash
e3ba2410af94132230db0ebcc9995edb
55ab32f53d9cc08a326374c9073aaeb81b6e2f0a
fd59966c8b4a20a0e1f9fe4a6c851471630491ff9f3cf8f2c2afe969d890af4c

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/JavaScript/Libs/jquery-ui-1.13.2.min.js?1675456498 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 20:41:33 GMT
server: 
last-modified: Fri, 03 Feb 2023 20:34:58 GMT
etag: W/"63dd6ff2-3e46c"
expires: Sat, 03 Feb 2024 20:41:33 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6BFIsfaVCFVpE-k7cr33FcOIf6sAbQaXXD9BJ4uKEFuZZzPet-C7Qg==
age: 117296
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5908
Cache-Control: max-age=146824
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 22:03:33 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

cdn.jsdelivr.net/npm/@accessible360/accessible-slick@1.0.1/slick/slick.min.js

151.101.1.229

200 OK

10 kB

URL HTTP/2
cdn.jsdelivr.net/npm/@accessible360/accessible-slick@1.0.1/slick/slick.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (43577), with no line terminators
Size
10 kB (10447 bytes)
Hash
769338b1aaf3df7d77333f5bc88baeba
a22c476c165ea98d2e529f21686f0b497a48c093
9424bd26085420af4186d51290c5fef078b309d37e2cc560213312bb77c2bec6

HTTP Headers

GET /npm/@accessible360/accessible-slick@1.0.1/slick/slick.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.0.1
x-jsd-version-type: version
etag: W/"aa39-F/+INHoWuPhKTMUEacs+KfI31SM"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 05:16:29 GMT
age: 2766950
x-served-by: cache-fra-eddf8230081-FRA, cache-bma1627-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10447
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js

104.17.24.14

200 OK

6.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20831)
Size
6.6 kB (6646 bytes)
Hash
368c425fc94c424e1688caadefbed981
13d24c22c199ef6668d758434819f44307a65094
ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102

HTTP Headers

GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:16:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1299640
expires: Fri, 26 Jan 2024 05:16:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K5st3HAs8mIBo9jAj3oP8C5nEw5SEi89mrVFQW4RjMSB6bHFCd72aczqXu0lCrvRUhK8mZ4o7x4IduK8lIlbJuw7CnbnPR7%2BiC0fHDH7TRbY0Vli6FryYHV68ekxAbcYMwp4YSVK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79492c9cef521c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2717
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Last-Modified: Sun, 05 Feb 2023 04:31:12 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?hl={lang}

216.58.211.4

200 OK

553 B

URL HTTP/2
www.google.com/recaptcha/api.js?hl={lang}
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
553 B (553 bytes)
Hash
c40fb3e99bdf4c051379206b381f995b
3cf6ce4a866abbd13ce857357061a1cfa3a27690
0c45a6582686059e9d82919355c239be284c5740680f56332419ce0516280183

HTTP Headers

GET /recaptcha/api.js?hl={lang} HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sun, 05 Feb 2023 05:16:29 GMT
date: Sun, 05 Feb 2023 05:16:29 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5908
Cache-Control: max-age=146824
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 22:03:33 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
29a46327b716ea1ae07c951f412d077d
866e9d78e3c516310fa71472a782583dd2738d60
311eeb32b0f3893d4035a1b0323304c829e7b19aec8def91a16e6479a00903cb

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 05:16:29 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "08C1F4EA7A21D0738C0FE2E79D3C2BB456898D77"
Expires: Sun, 05 Feb 2023 16:00:00 GMT
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 602
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79492c9d2d8db52d-OSL

www.google.com/recaptcha/api.js?hl=fr

216.58.211.4

200 OK

553 B

URL HTTP/2
www.google.com/recaptcha/api.js?hl=fr
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
553 B (553 bytes)
Hash
00a5d891aa7a086b43b23603547adceb
c6b854bc1c6f8d2c6dd8ed273462e9b46e76d616
533c8d0a566cc361bce43218e6891981b512db6467bced8edd68e9220a751da6

HTTP Headers

GET /recaptcha/api.js?hl=fr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sun, 05 Feb 2023 05:16:29 GMT
date: Sun, 05 Feb 2023 05:16:29 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/chevron-fil.svg

54.230.111.38

200 OK

891 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/chevron-fil.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
891 B (891 bytes)
Hash
5629d4a58c2d8df9bf0ed254d973e429
9524475ec60fafc4b74ae82b2a25778c4d85cdce
55431954bff86e56e769c86ae533921171b55102eb0e1c58e220aea79567f383

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/chevron-fil.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/typo3temp/assets/compressed/merged-b39ffc180c69bd1405ff24c6b06f1154-4deb4ceef6bcada127edbee9380e5193.css?1675456871
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 891
date: Fri, 03 Feb 2023 20:03:33 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-37b"
expires: Sun, 05 Mar 2023 20:03:33 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NcLODw6dfoYh2mBJN6T5YWzrrL5RgZBfvvfJ3karCz-jNboRPzerYw==
age: 119576
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-fonce.svg?v=1

54.230.111.38

200 OK

483 B

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-fonce.svg?v=1
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (483), with no line terminators
Size
483 B (483 bytes)
Hash
94f23e1529d620218ba6ed52c87d8cd6
0bd955306971c0eef980f9d24c0c50ce61febe6c
13914dce548df776b8f6878d2c4cb8c52e142fc8b50e9aa5486d497b19c9b5d2

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/loupe-piv-fonce.svg?v=1 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 483
date: Fri, 03 Feb 2023 20:04:47 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: "63dd1422-1e3"
expires: Sun, 05 Mar 2023 20:04:47 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9SLyWZZEfNAU4sGYLWSeSKOgVTv1OurILlkHaNhRaT-HAEFcvRSzXg==
age: 119502
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.149.117.124

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.117.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: naTMTdbKlt+PhDhBZ03Y9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P/kWK5abqj5iz+T/RmQL6Izurz0=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-contenu.quebec.ca/cdn-contenu/minimum.css?1652294481

143.204.55.114

200 OK

2.9 kB

URL HTTP/2
cdn-contenu.quebec.ca/cdn-contenu/minimum.css?1652294481
IP
143.204.55.114:0
ASN
#16509 AMAZON-02

File type
data
Size
2.9 kB (2936 bytes)
Hash
cec90503994a645f57e2c23665dc990c
348072a30d92787c4e06043ccd79d7f2d67a4fad
f65f5069af1739861204a2e83178c846762b18b1a6b1e79460431499be4b737c

HTTP Headers

GET /cdn-contenu/minimum.css?1652294481 HTTP/1.1
Host: cdn-contenu.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css
x-amz-id-2: +PDGGFKftoP/ef2hBaBRU2kUD+ChFD7z7sKgFGMQXM3Gy1YCcs4lKyxAwEyUjmso0nj7VCi3kQs=
x-amz-request-id: DFYA80472A4FTJ15
x-amz-replication-status: COMPLETED
last-modified: Wed, 11 May 2022 18:42:07 GMT
x-amz-version-id: RGbmE23KzbPXz9Knfpxz3FBDtUGCSfSe
server: AmazonS3
content-encoding: gzip
date: Sat, 04 Feb 2023 20:55:43 GMT
etag: W/"6b07185a2831ea0e0c943d270302fe1e"
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h_h52ixocRCRYO4siMOdMKXq_aJOfuE7KBCAkDzyRJPzCiamns6tFg==
age: 30047
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Size
21 kB (20969 bytes)
Hash
fd816bf7723bd214d5066c1672245b9d
8a9f574374e65484bb793991b42ff7e84304aceb
a1e818be945b050af4a1e52b23f58df6f188f1585ffedcaf58550d9751147efd

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20969
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:35:11 GMT
expires: Thu, 01 Feb 2024 19:35:11 GMT
cache-control: public, max-age=31536000
age: 294078
last-modified: Mon, 15 Aug 2022 18:16:22 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPHA.ttf

142.250.74.35

200 OK

30 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPHA.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Size
30 kB (29896 bytes)
Hash
bcc59501c17e9c43c03dfbb44aa8d311
318ea6e58471e405e9cb7dcd25d44560929a35ec
ae699e878ee64fef0553f17db1ad57a336c561141cfd45028f160f13b2007c5a

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPHA.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 19:32:41 GMT
expires: Tue, 30 Jan 2024 19:32:41 GMT
cache-control: public, max-age=31536000
age: 467028
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size
21 kB (20828 bytes)
Hash
8e27a7dd9438d6dd62f5ea442383fda6
62c6638308925076fb6768e4805027e61ea3dcef
51ca2c0878d83c2acdcc09d73956e858f08393f9db53a09d6551bb710cf66e6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc9.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 08:16:14 GMT
expires: Thu, 01 Feb 2024 08:16:14 GMT
cache-control: public, max-age=31536000
age: 334815
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVc.ttf

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVc.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansB\012- data
Size
20 kB (20549 bytes)
Hash
b73eebdd9c5c427b82775306f97ecdb2
bebd6da6ebbdb6c088dfaec52511abff8c83bf45
e2dbfef8e74289b61601e005da08f20676252fcbeea948d9f1e28a7744078ce1

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20549
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:45:25 GMT
expires: Fri, 02 Feb 2024 00:45:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:45 GMT
content-type: font/ttf
age: 275464
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc9.ttf

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc9.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med\012- data
Size
21 kB (20948 bytes)
Hash
cae9cc25950d9f8fdf8fed00d534070d
ee94d63b33f456fa60f35d3dcb2e13a98ec8f1aa
c338aa01260dd08fe553f92551e3be5ec9cc292e5f7b4d530fbf958ad97f4806

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc9.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:28:37 GMT
expires: Wed, 31 Jan 2024 04:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/ttf
age: 434872
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.quebec.ca/typo3temp/assets/compressed/merged-b39d5ed498546d19356971619f3daf2a-d5d87ea7e7105b84d88a469c4161e48d.css?1675456871

54.230.111.38

200 OK

22 kB

URL HTTP/2
www.quebec.ca/typo3temp/assets/compressed/merged-b39d5ed498546d19356971619f3daf2a-d5d87ea7e7105b84d88a469c4161e48d.css?1675456871
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
data
Size
22 kB (21991 bytes)
Hash
015e9ef053250a987ff0b1708f7200b9
5cd22974536fe42c612669bf8db3ad526d6e85c7
b902cbeb012059d089bdd9bdd4af6b7874d9054a66d575e5b8b70778ed71fc85

HTTP Headers

GET /typo3temp/assets/compressed/merged-b39d5ed498546d19356971619f3daf2a-d5d87ea7e7105b84d88a469c4161e48d.css?1675456871 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Fri, 03 Feb 2023 20:41:33 GMT
server: 
last-modified: Fri, 03 Feb 2023 20:41:11 GMT
etag: W/"63dd7167-b8c"
expires: Sat, 03 Feb 2024 20:41:33 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VRsEI3uNjANagT3UNk-cyx8UReNrdWZUKiunwzi6ulu0RZX1Enoydw==
age: 117296
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-TRWV88D

216.58.207.200

200 OK

62 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-TRWV88D
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (32471)
Size
62 kB (62044 bytes)
Hash
9403f6bec6af904e4d07a8dceab29552
7451d6345931b6b845baf3527ff153fce8e65666
2b0e749178a28c9c655a977c81bc2c657b76e853dd5a50fdb255f2feca7120b4

HTTP Headers

GET /gtm.js?id=GTM-TRWV88D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 05:16:29 GMT
expires: Sun, 05 Feb 2023 05:16:29 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62044
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansR\012- data
Size
21 kB (21006 bytes)
Hash
63f124cc58fb3f1e5e04b2961edc0f7b
a7e225ab157af0246fbc151ffe513c0b555032c5
484be1fa4b0ddf5a535046b293963ce7cfe6f2659f50309d7bdb6399a732637d

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21006
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:43:13 GMT
expires: Tue, 30 Jan 2024 18:43:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/ttf
age: 469996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js

104.18.11.207

200 OK

17 kB

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (57791)
Size
17 kB (16658 bytes)
Hash
dbb7c5d7f1198dd4d2f54326ce5d49f8
30cbc50b30e2dda77ff9575669033fbffed7a399
c84f83fa8cbe495837c3c3aff9966a6983cf700f709fd29d9bbdaf0b1ec12255

HTTP Headers

GET /bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 05 Feb 2023 05:16:29 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 2021-04-23 06:42:10
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 9f77a8320c556613cd1db316f0f748d4
cdn-cache: HIT
cf-cache-status: HIT
age: 23684504
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79492c9cde06b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.quebec.ca/typo3temp/assets/compressed/merged-132aa2c1ffa11cb3bc97885c431b5fad-df80435d91ea8fae5828f8c713cd89ab.js?1673807032

54.230.111.38

200 OK

69 kB

URL HTTP/2
www.quebec.ca/typo3temp/assets/compressed/merged-132aa2c1ffa11cb3bc97885c431b5fad-df80435d91ea8fae5828f8c713cd89ab.js?1673807032
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
data
Size
69 kB (68679 bytes)
Hash
faa2aefa2ab55dcd37a2381c9e7b7f2a
d26cb6854ce8158b3da8deed58992209982d408f
a4f74cd0928e72e7dba4e5a41561b5eb5b3f3831ae448d58603ab118fc8647f4

HTTP Headers

GET /typo3temp/assets/compressed/merged-132aa2c1ffa11cb3bc97885c431b5fad-df80435d91ea8fae5828f8c713cd89ab.js?1673807032 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 20:03:30 GMT
server: 
last-modified: Sun, 15 Jan 2023 18:23:52 GMT
etag: W/"63c444b8-40bf"
expires: Sat, 03 Feb 2024 20:03:30 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nfN8rqjJH9dMcGeWPFEBho29NSo0NUq-QKLocoZDY_rA9RLGCIIBFA==
age: 119579
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/piv-pied-page.svg

54.230.111.38

200 OK

166 kB

URL HTTP/2
www.quebec.ca/typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/piv-pied-page.svg
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (5693)
Size
166 kB (165837 bytes)
Hash
0a00d571373b865ea230510928a88624
c828b4ed5f295c208379dedd94b124292a9bf9df
90e2f4ee94df2a70b1099677f6de75d8c9a4dd3581e00aef063f0915b19eb193

HTTP Headers

GET /typo3conf/ext/gabarit_pgu/Resources/Public/Images/Templates/piv-pied-page.svg HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 20:03:31 GMT
server: 
last-modified: Fri, 03 Feb 2023 14:03:14 GMT
etag: W/"63dd1422-162f"
expires: Sun, 05 Mar 2023 20:03:31 GMT
cache-control: max-age=2592000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gZG4YwCb8b_d-P9YGytUgVrPBiW3c33g4oWVci9hoJQ34HpiQDtkcw==
age: 119578
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8BGN8R6SNX&cid=113176710.1675574229&gtm=45je3210&aip=1&z=940363798

142.250.74.131

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8BGN8R6SNX&cid=113176710.1675574229&gtm=45je3210&aip=1&z=940363798
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8BGN8R6SNX&cid=113176710.1675574229&gtm=45je3210&aip=1&z=940363798 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 05:16:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.quebec.ca/typo3temp/assets/compressed/merged-376637d65dfe9649ab155486583aec05-18fa24b016001f06da936ccfbf8ac4a9.js?1675456871

54.230.111.38

200 OK

36 kB

URL HTTP/2
www.quebec.ca/typo3temp/assets/compressed/merged-376637d65dfe9649ab155486583aec05-18fa24b016001f06da936ccfbf8ac4a9.js?1675456871
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type
data
Size
36 kB (36389 bytes)
Hash
58d2369bf1e94f74e36ffb223a5a9675
24dd320f23a6c8a9e44f7f11304c00b48746670c
161a0624869f9a345a4036184cc06eb3492ce771798b61e6b59bd35bfb8274c2

HTTP Headers

GET /typo3temp/assets/compressed/merged-376637d65dfe9649ab155486583aec05-18fa24b016001f06da936ccfbf8ac4a9.js?1675456871 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 20:41:33 GMT
server: 
last-modified: Fri, 03 Feb 2023 20:41:11 GMT
etag: W/"63dd7167-2062b"
expires: Sat, 03 Feb 2024 20:41:33 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AeaKLM54HZp7UB0UHvBtKNWKvLHlW_dmtqjMNIXOvFD85GbgJ7KaMg==
age: 117296
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 199707
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 218147
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-116524607-1&cid=113176710.1675574229&jid=1373527244&gjid=677571059&_gid=811542019.1675574229&_u=YEBAAEAAAAAAACgAI~&z=806355031

64.233.161.157

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-116524607-1&cid=113176710.1675574229&jid=1373527244&gjid=677571059&_gid=811542019.1675574229&_u=YEBAAEAAAAAAACgAI~&z=806355031
IP
64.233.161.157:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-116524607-1&cid=113176710.1675574229&jid=1373527244&gjid=677571059&_gid=811542019.1675574229&_u=YEBAAEAAAAAAACgAI~&z=806355031 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.quebec.ca
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 05 Feb 2023 05:16:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 05:16:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Sun, 05 Feb 2023 07:11:34 GMT
Date: Sun, 05 Feb 2023 05:16:30 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Sun, 05 Feb 2023 07:11:34 GMT
Date: Sun, 05 Feb 2023 05:16:30 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Sun, 05 Feb 2023 07:11:34 GMT
Date: Sun, 05 Feb 2023 05:16:30 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Sun, 05 Feb 2023 07:11:34 GMT
Date: Sun, 05 Feb 2023 05:16:30 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12256 bytes)
Hash
062e186a259eda97173695240a492c63
9b476a4ec219667f560b88199a3a4e4b0a93b579
d18570d3c4ada689b5c2a99b0783ce41c629bd125e6683cf225e01b7032f14a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9070541c-6707-464e-b141-b6c767d8a58a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12256
x-amzn-requestid: 1b959eb9-cf69-414c-b57b-4a63277d709c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvgx-EhgoAMF2wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc7b3f-2c58e8ac2aee8a8f409a93a0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 03:10:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mujn0m9G4SIcD-5qZiD5kaYHg8x3rDtx-jYus-hrWFx_UjWEMNM_Tw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 04:43:25 GMT
age: 1985
etag: "9b476a4ec219667f560b88199a3a4e4b0a93b579"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3474 bytes)
Hash
d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 26704
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6434 bytes)
Hash
0d632f8be93820b9746f76146fe3ff0e
7e5e9b16819af678ba84ddb6f45c073e659e2f4e
26ad66cf5e4fe4de99ad31b5c4f0fa3d05c085be04610de8ad80989528c100bf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01d9feca-e9dc-4ee4-9694-bcc983e3a7c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6434
x-amzn-requestid: ccf74c35-c654-4a9a-8121-ab27fc4cd862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WWYFbJoAMFgSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f5-10dedb6a287acd2b10cdfdb4;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3bv0yNuzTWh742AZFesuU0caKmg0nMFc3P0bLYkhGd-TAeg5R9W_vQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:28 GMT
age: 26702
etag: "7e5e9b16819af678ba84ddb6f45c073e659e2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F685cff1e-52eb-4db3-b937-986385529f6d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10109 bytes)
Hash
a118e823631b0566a87aaa72123af893
286a0ef82fe504a7721b98a726bd6ef28198393d
57cd7640cfaa81f2dd7deddefccfbf024064d92ce5cadafae27bfa9e9136dbcf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F685cff1e-52eb-4db3-b937-986385529f6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10109
x-amzn-requestid: 5fc8bfc5-459e-476a-b74e-51de6fe31cea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fjbUrHEiIAMFxSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d7a5b7-739df0b602e9d9001495a8a7;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 11:10:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -FXyVXIcXGusNAfcF7uEimmu2d1cLzlwMp37ooaVv0lpkN7X2Fi86A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:59:43 GMT
age: 4607
etag: "286a0ef82fe504a7721b98a726bd6ef28198393d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-8BGN8R6SNX&gtm=45je3210&_p=1520456805&_gaz=1&cid=113176710.1675574229&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fwww.quebec.ca%2Fentreprises-et-travailleurs-autonomes%2Fsoutien-covid-19%2Faide-urgence-pme-covid-19&sid=1675574229&sct=1&seg=0&dt=Aide%20d%E2%80%99urgence%20aux%20petites%20et%20moyennes%20entreprises%20(COVID-19)%20%7C%20Gouvernement%20du%20Qu%C3%A9bec&en=page_view&_fv=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-8BGN8R6SNX&gtm=45je3210&_p=1520456805&_gaz=1&cid=113176710.1675574229&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fwww.quebec.ca%2Fentreprises-et-travailleurs-autonomes%2Fsoutien-covid-19%2Faide-urgence-pme-covid-19&sid=1675574229&sct=1&seg=0&dt=Aide%20d%E2%80%99urgence%20aux%20petites%20et%20moyennes%20entreprises%20(COVID-19)%20%7C%20Gouvernement%20du%20Qu%C3%A9bec&en=page_view&_fv=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-8BGN8R6SNX&gtm=45je3210&_p=1520456805&_gaz=1&cid=113176710.1675574229&ul=en-us&sr=1280x1024&uaW=1&_s=1&dl=https%3A%2F%2Fwww.quebec.ca%2Fentreprises-et-travailleurs-autonomes%2Fsoutien-covid-19%2Faide-urgence-pme-covid-19&sid=1675574229&sct=1&seg=0&dt=Aide%20d%E2%80%99urgence%20aux%20petites%20et%20moyennes%20entreprises%20(COVID-19)%20%7C%20Gouvernement%20du%20Qu%C3%A9bec&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.quebec.ca
date: Sun, 05 Feb 2023 05:16:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7060 bytes)
Hash
75caf9549ac23c827c10d6baabb84884
e8391e4046acb91cd4a6113974fda1c44dcd3865
a01e3a9aaa0b0fa156303bcbf38c1c45ea6abe8d0a052734b05ea4da82f176c4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad342374-789b-497a-b212-29d0b2aaced0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7060
x-amzn-requestid: 9379b64e-3a3f-4b8d-aba2-bc3cd7dab98f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3cgFCkIAMFrhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c4f-6ac6da215407497043249929;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75uKxGlJDSXzIUgR5Rm4f13SClTT1UIDLgbkTrFDEDvKmGmViQ3Djg==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:25:50 GMT
age: 24640
etag: "e8391e4046acb91cd4a6113974fda1c44dcd3865"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a85f9ff-45f7-4467-9bcf-99adfc764c87.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4493 bytes)
Hash
e011d457dc1153c2be3958161c109d4c
7579fae4b76a48eba7acd8f8572db91191db0c19
03156808efbab06a9a28138dd185c7870a1144f758b9743878f480de863eb884

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a85f9ff-45f7-4467-9bcf-99adfc764c87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4493
x-amzn-requestid: 83e58e1a-ee1d-46a9-861c-1119166df08b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJsrFmmoAMFkdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcb7-70db4dc502641c010e29fd08;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fnUx-d1GCQ_kAeCwkEaS7f0EvS1WfNBtuk0Jhi6Q0IWpWX_PXDBR2w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 10:35:52 GMT
age: 67238
etag: "7579fae4b76a48eba7acd8f8572db91191db0c19"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.quebec.ca/typo3temp/assets/compressed/merged-b39ffc180c69bd1405ff24c6b06f1154-4deb4ceef6bcada127edbee9380e5193.css?1675456871

54.230.111.38

200 OK

0 B

URL HTTP/2
www.quebec.ca/typo3temp/assets/compressed/merged-b39ffc180c69bd1405ff24c6b06f1154-4deb4ceef6bcada127edbee9380e5193.css?1675456871
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /typo3temp/assets/compressed/merged-b39ffc180c69bd1405ff24c6b06f1154-4deb4ceef6bcada127edbee9380e5193.css?1675456871 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Fri, 03 Feb 2023 20:41:32 GMT
server: 
last-modified: Fri, 03 Feb 2023 20:41:11 GMT
etag: W/"63dd7167-5ac6d"
expires: Sat, 03 Feb 2024 20:41:32 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dMZZxoSu9OX8NWxDszRem9wVo7QeymQWKm9nCfRjVgwbTaUmev0H_Q==
age: 117297
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.youtube.com/iframe_api

216.58.211.14

200 OK

0 B

URL HTTP/2
www.youtube.com/iframe_api
IP
216.58.211.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sun, 05 Feb 2023 05:16:29 GMT
date: Sun, 05 Feb 2023 05:16:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=P5N0GXgA5Ow; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=TJvCvHW-LsY; Domain=.youtube.com; Expires=Fri, 04-Aug-2023 05:16:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TmpVek5qTTBORFUxTURZd09UazFPQT09EK33/J4GGK33/J4G; Domain=.youtube.com; Expires=Fri, 04-Aug-2023 05:16:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+778; expires=Tue, 04-Feb-2025 05:16:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19

54.230.111.38

200 OK

0 B

URL HTTP/2
www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

HTTP Headers

GET /entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Sun, 05 Feb 2023 05:16:29 GMT
server: 
content-language: fr
expires: Sun, 05 Feb 2023 06:34:02 GMT
cache-control: max-age=4653
pragma: public
x-ua-compatible: IE=Edge
content-encoding: gzip
etag: W/"e63f013393c3ac7fadb2db903a9dfea9"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N2Oo32P5wF0QzOc7C4CmgTVqV6Po4KaLh3AfOr79LQ7bcMluUKJQng==
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__fr.js

216.58.211.3

200 OK

0 B

URL HTTP/2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__fr.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__fr.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/
Origin: https://www.quebec.ca
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 11:28:17 GMT
expires: Wed, 31 Jan 2024 11:28:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 409692
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.quebec.ca/typo3temp/assets/compressed/merged-d196a61b6c62ac41619edff0af4a1299-3ccc46a8b7c33211139b846a9d9f8c69.js?1675422938

54.230.111.38

200 OK

0 B

URL HTTP/2
www.quebec.ca/typo3temp/assets/compressed/merged-d196a61b6c62ac41619edff0af4a1299-3ccc46a8b7c33211139b846a9d9f8c69.js?1675422938
IP
54.230.111.38:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /typo3temp/assets/compressed/merged-d196a61b6c62ac41619edff0af4a1299-3ccc46a8b7c33211139b846a9d9f8c69.js?1675422938 HTTP/1.1
Host: www.quebec.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.quebec.ca/entreprises-et-travailleurs-autonomes/soutien-covid-19/aide-urgence-pme-covid-19
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 03 Feb 2023 20:03:30 GMT
server: 
last-modified: Fri, 03 Feb 2023 11:15:38 GMT
etag: W/"63dcecda-d579"
expires: Sat, 03 Feb 2024 20:03:30 GMT
cache-control: max-age=31536000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZqMegeTydhmhvtNRB8toiekfjQB1s_2tUKgGE0sGDGy3l1OnJTyROQ==
age: 119579
x-xss-protection: 1
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (53)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL