monevenement.live/
141.94.170.170301 Moved Permanently 238 B IP 141.94.170.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7502313ac064c0b978633793c2f8cff0
01b6cc4113ded9ec711bd27d8d65d61e82d66e42
6792eaea7240b67512c71f9611c6962f5b8202d005738b614a05dab0b51abbbd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: monevenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Sep 2022 00:49:55 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 238
Connection: keep-alive
Location: http://www.mon-evenement.live/
X-Powered-By: PleskLin
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9370
Expires: Wed, 07 Sep 2022 03:26:05 GMT
Date: Wed, 07 Sep 2022 00:49:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 00:02:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xoEw3_0YiR9PRCqZn4wtZYtTkKkWCgr9t9rjrYRKzYG12TyJnIFedw==
Age: 2823
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 90Ircm21-20EZs-9uCuZAx4g4Wq7r-rhGglPrWre5vzJO8WyNhiVHA==
age: 84878
X-Firefox-Spdy: h2
www.mon-evenement.live/
141.94.170.170301 Moved Permanently 162 B IP 141.94.170.170:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Sep 2022 00:49:55 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.mon-evenement.live/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 3736d0766da2455c34f66e5df082fbef
782141be10592e4c35b384e5ef98f5d2e03bd6f8
55c6f80bb649b0b7c7dd2c69cd91fc75f8aa7d68809ebea49ed822cfe3e15a21
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Sep 2022 00:49:55 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Sep 2022 23:50:42 GMT
Expires: Wed, 07 Sep 2022 23:50:42 GMT
ETag: "782141be10592e4c35b384e5ef98f5d2e03bd6f8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.mon-evenement.live/
141.94.170.170301 Moved Permanently 0 B IP 141.94.170.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-redirect-by: WordPress
location: https://mon-evenement.live/
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 07 Sep 2022 00:38:18 GMT
Cache-Control: max-age=3600
Expires: Wed, 07 Sep 2022 00:48:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b1UyKG7zxlNBrSKpD_9MhdFE8bOCFgfXwMm53rypfAJ8rT4WhrTwMg==
Age: 698
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6223
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:56 GMT
Last-Modified: Tue, 06 Sep 2022 23:06:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mon-evenement.live/wp-content/uploads/2020/03/PlanRapproche_BaseLine-300x172.jpg
141.94.170.170200 OK 35 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/PlanRapproche_BaseLine-300x172.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, PhotometricIntepretation=CMYK, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2011:10:25 11:41:07], baseline, precision 8, 300x172, components 3\012- data
Hash 5088d9137be69785055f07fc16980f10
4354b3ddee1ce764df6cd4e462b1fd4b60f1e099
a33c8c04e0bbad64ebd4ba2e27e35c5c2443827280517c918d755af843f6dafc
GET /wp-content/uploads/2020/03/PlanRapproche_BaseLine-300x172.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 34783
last-modified: Fri, 13 Mar 2020 13:49:45 GMT
etag: "5e6b8f79-87df"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/Header_3.jpg
141.94.170.170200 OK 44 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/Header_3.jpg
IP 141.94.170.170:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2020:03:26 15:05:21], baseline, precision 8, 1280x250, components 3\012- data
Hash 275fe6812cabd96a933230d8941f450c
ddf639e128c741f7b052a383668473f335ac5723
63e87a14744ccf771f08d59c70f0ae0226ddbbfdf32349db5585510b95e2625e
GET /wp-content/uploads/2020/03/Header_3.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 44393
last-modified: Thu, 26 Mar 2020 14:06:59 GMT
etag: "5e7cb703-ad69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-17946085-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-17946085-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 5326dac36916691266a7346407ec349c
25d7b39d45e4339c4c00a4ed0f9ef24810b18714
1792429de2b55f30d92a4b9dec0ff9b04875753842105c3633035371189becfb
GET /gtag/js?id=UA-17946085-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 00:49:56 GMT
expires: Wed, 07 Sep 2022 00:49:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41849
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2021/06/NewsletterLive_Visuel_MultiCam_V4b.jpg
141.94.170.170200 OK 64 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/06/NewsletterLive_Visuel_MultiCam_V4b.jpg
IP 141.94.170.170:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x350, components 3\012- data
Hash b95a037949f60656edd9352c08b54253
6ab9aa06a88e885de4b577436b0429af16900cba
1427991a7a60eb270649de1a5f2ddfc3ef12546d87259880a19f4676054a095a
GET /wp-content/uploads/2021/06/NewsletterLive_Visuel_MultiCam_V4b.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 63479
last-modified: Tue, 22 Jun 2021 08:52:03 GMT
etag: "60d1a4b3-f7f7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Statistiques_V2.jpg
141.94.170.170200 OK 20 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Statistiques_V2.jpg
IP 141.94.170.170:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x350, components 3\012- data
Hash fcc6df86311417182b18bba3766ffb93
0134892d6e5224ae43aac32ff540e7148a921488
89ff7094fcb664dee8b1eef0852667c30c68266c1b3691e28cccc5f14f8619c6
GET /wp-content/uploads/2020/03/NewsletterLive_Visuel_Statistiques_V2.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 19857
last-modified: Fri, 13 Mar 2020 14:35:58 GMT
etag: "5e6b9a4e-4d91"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/10/Visuel_PersonnalisationPage.jpg
141.94.170.170200 OK 42 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/10/Visuel_PersonnalisationPage.jpg
IP 141.94.170.170:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2020:10:30 21:06:15], baseline, precision 8, 600x300, components 3\012- data
Hash df07718504c0caf5786663df33e55433
7200cc9be496f178d66e9b356fc944b44ab04233
e0844bc681bedd46d0162f4b1b8099fb5ce6625669651956c6d89fc2d3d4766d
GET /wp-content/uploads/2020/10/Visuel_PersonnalisationPage.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 42313
last-modified: Fri, 30 Oct 2020 20:08:39 GMT
etag: "5f9c72c7-a549"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/Visuel_Exemple_AlanGeaam.png
141.94.170.170200 OK 45 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/Visuel_Exemple_AlanGeaam.png
IP 141.94.170.170:0
File type PNG image data, 600 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f92970637ea1bb2513be96666d82d33
a37c8854db562b73ab25d1e471b1d6db4d98a8c2
37a09d16a52dbb25a90ca0797d7f5ff9fec860da87a1e152310c0b2e560e874a
GET /wp-content/uploads/2020/03/Visuel_Exemple_AlanGeaam.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 44827
last-modified: Wed, 25 Mar 2020 14:21:53 GMT
etag: "5e7b6901-af1b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/picto_formation-300x300.png
141.94.170.170200 OK 13 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/picto_formation-300x300.png
IP 141.94.170.170:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 71ef43fce33fdccd758ce9f34cd6809a
78459b421e61b6993e60877623e0bdefe3fcba31
0cc36643a98c6b173b7be2cf43db393a45c16a90a3f15a1abaddc5a6b94fb869
GET /wp-content/uploads/2020/03/picto_formation-300x300.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 13304
last-modified: Fri, 14 May 2021 13:27:36 GMT
etag: "609e7ac8-33f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/picto_ateliers-300x300.png
141.94.170.170200 OK 27 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/picto_ateliers-300x300.png
IP 141.94.170.170:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 77da25d71714aae2c0a9bda6c55d8d5f
b773d3cf822332ba67403ae1591e25bda0ab278c
a9b6d21e228529f4ac6f44118803b14526a09b0b3e7ec40545ed322845e7ec66
GET /wp-content/uploads/2020/03/picto_ateliers-300x300.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 26657
last-modified: Fri, 14 May 2021 13:27:41 GMT
etag: "609e7acd-6821"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/picto_AG-300x300.png
141.94.170.170200 OK 20 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/picto_AG-300x300.png
IP 141.94.170.170:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 06dd27af1bc8052878c34349bba090c7
29eeeb61bc32b297c49526e17932515104b7029e
f794aa5773244b1790f771091b6f5b8912d9dfbda9b6c6b69844655c05e8e17c
GET /wp-content/uploads/2020/03/picto_AG-300x300.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 19900
last-modified: Fri, 14 May 2021 13:27:42 GMT
etag: "609e7ace-4dbc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/picto_discours-300x300.png
141.94.170.170200 OK 38 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/picto_discours-300x300.png
IP 141.94.170.170:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash fa151ada9018f45627ca0bd52e31efc8
ea06cd7d97d67579717f2d48109fff5e11099ac2
57b2edc54f7cd5da4d42297cebd2848c26fbef175b691fb4478ead8eb4b35b1b
GET /wp-content/uploads/2020/03/picto_discours-300x300.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 38454
last-modified: Fri, 14 May 2021 13:27:38 GMT
etag: "609e7aca-9636"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/picto_conference-300x300.png
141.94.170.170200 OK 15 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/picto_conference-300x300.png
IP 141.94.170.170:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a5102cacbad9dbd98189bc371cb554b
7fd118922b6926f46025c2864fcf4585b868f88e
138e814e69eea36461d5c5ee54a55b22c28b8fcb04adc33125b6d0f931b8426e
GET /wp-content/uploads/2020/03/picto_conference-300x300.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 15363
last-modified: Fri, 14 May 2021 13:27:39 GMT
etag: "609e7acb-3c03"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2021/02/31170113-2790-4EC5-B645-636B95B364A8_REC-300x189.jpg
141.94.170.170200 OK 60 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/02/31170113-2790-4EC5-B645-636B95B364A8_REC-300x189.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=18, height=3024, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone XR, orientation=upper-left, width=4032], baseline, precision 8, 300x189, components 3\012- data
Hash c8755ba757a4188b697efb555db1f222
392becd84b4630f9f1449cdf0bd6cbc484381667
97bd1ee55276f6e9b0bf7d9298e4be195f195ff7abdf956cbcdac409b1d8c372
GET /wp-content/uploads/2021/02/31170113-2790-4EC5-B645-636B95B364A8_REC-300x189.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 59637
last-modified: Fri, 26 Feb 2021 13:54:48 GMT
etag: "6038fda8-e8f5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/Visuel_Exemple_RosCon-300x150.png
141.94.170.170200 OK 6.5 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/Visuel_Exemple_RosCon-300x150.png
IP 141.94.170.170:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 5389a456da68c51b187ec8df6fffc0d3
1603fed894fa44bdb9eaa42308ab69fdd0b74b54
4c4668615fd452f5dbf1b311639e172c758ae238c32f25323a271fff1af869c0
GET /wp-content/uploads/2020/03/Visuel_Exemple_RosCon-300x150.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 6481
last-modified: Wed, 25 Mar 2020 14:22:05 GMT
etag: "5e7b690d-1951"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2021/06/Header_4.jpg
141.94.170.170200 OK 70 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/06/Header_4.jpg
IP 141.94.170.170:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1280x250, components 3\012- data
Hash 09f632510579b053cab0702dbea6cedc
bac7285c45e3d99d393b1f7bf102c27a452e0aa6
e702d45417568d022ac81d36f36388f2ff64790a2167d672f90c4ec5fe6298df
GET /wp-content/uploads/2021/06/Header_4.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 69528
last-modified: Tue, 22 Jun 2021 08:42:57 GMT
etag: "60d1a291-10f98"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.png
141.94.170.170200 OK 89 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.png
IP 141.94.170.170:0
File type PNG image data, 600 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 622494d6ec3e2ae53f17af5a77e94065
c8c847efa1672eb693811bfbca57cbbdd5e0dcc5
0c4ecfed55d7e07ff748e939126b301e56270702d9c2eb98fd253539e100f159
GET /wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 89429
last-modified: Fri, 30 Oct 2020 20:08:39 GMT
etag: "5f9c72c7-15d55"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2ZMSBrhN5XgvC2z8QVDIMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ygIBBN4a9ST5RluxaN6xLbHT1V0=
mon-evenement.live/wp-content/uploads/2021/06/Weber-Live-1-300x169.jpg
141.94.170.170200 OK 74 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/06/Weber-Live-1-300x169.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x169, components 3\012- data
Hash 269cfb890f6958d7b0977d475bfd3495
1be85931a974be3ce73ce03d2ad00e7e440168bc
16a75857dc87bba0689a93d5fe60be25019a17385305030df870f7a2d3cb1f9d
GET /wp-content/uploads/2021/06/Weber-Live-1-300x169.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 73624
last-modified: Tue, 22 Jun 2021 08:28:51 GMT
etag: "60d19f43-11f98"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2021/02/Sto_Live-300x169.jpg
141.94.170.170200 OK 88 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/02/Sto_Live-300x169.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=19, height=3024, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 8, orientation=upper-left, width=4032], baseline, precision 8, 300x169, components 3\012- data
Hash d70d476b1e13338cdabaaa03a86ac2e2
8e57c007123b825a6da9c1d47f12c0ac63f82c31
f70c6c30e047e1d8e5fe7959d4ca3a784edeb1a989372ca58cd22c05ef32f9b7
GET /wp-content/uploads/2021/02/Sto_Live-300x169.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 87855
last-modified: Fri, 12 Feb 2021 13:50:26 GMT
etag: "602687a2-1572f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Youtube_V1.png
141.94.170.170200 OK 151 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Youtube_V1.png
IP 141.94.170.170:0
File type PNG image data, 600 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 151 kB (151286 bytes)
Hash e41840ff5878e6e67bc00f6c3747e748
c18fb7b49ebe39fd76263a904900b0391f196bdc
09374750f96f247e20c6321cf824829694eedaedb5d0c9a3d1bf8c885c81992f
GET /wp-content/uploads/2020/03/NewsletterLive_Visuel_Youtube_V1.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 151286
last-modified: Fri, 13 Mar 2020 14:35:59 GMT
etag: "5e6b9a4f-24ef6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2022/01/Sto-Convention2021-1030x579.jpg
141.94.170.170200 OK 579 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2022/01/Sto-Convention2021-1030x579.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1030x579, components 3\012- data
Size 579 kB (579082 bytes)
Hash 6796eb9d1beed3e603f7bdf1525f5edf
476d4258aa4c33b3e0396751a7e7bf227d16e32a
0553a4191db5854049367075532ded8814d5ca533206dabf1f21e27034926971
GET /wp-content/uploads/2022/01/Sto-Convention2021-1030x579.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 579082
last-modified: Wed, 05 Jan 2022 16:19:23 GMT
etag: "61d5c50b-8d60a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2022/04/FBC-2022-1030x579.jpg
141.94.170.170200 OK 196 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2022/04/FBC-2022-1030x579.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1030x579, components 3\012- data
Size 196 kB (195782 bytes)
Hash 6c015b10510d4e31ecc2bd6d6ea9f7bd
65ef6dd3732836fb3f30d6501ac028a9b14d765f
ae249aace6b533825a7bbf57c5846db6bf4d5c7da5687c5d1f9f136f32d60e7f
GET /wp-content/uploads/2022/04/FBC-2022-1030x579.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 195782
last-modified: Thu, 21 Apr 2022 11:59:11 GMT
etag: "6261470f-2fcc6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/Logo_Transp-1500x862.png
141.94.170.170200 OK 258 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/Logo_Transp-1500x862.png
IP 141.94.170.170:0
File type PNG image data, 1500 x 862, 8-bit/color RGBA, non-interlaced\012- data
Size 258 kB (258464 bytes)
Hash c146e63e01190c6f0953eda1ea8bd29e
29b362d8e454ff9d24e09846dfa5edca79badfcf
5a7220e789b5bc693173697ba4c31304512478c1d8a8719a2ec89ae2fcdd0978
GET /wp-content/uploads/2020/03/Logo_Transp-1500x862.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 258464
last-modified: Thu, 26 Mar 2020 13:57:42 GMT
etag: "5e7cb4d6-3f1a0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2021/07/FBC-2021-1030x579.jpg
141.94.170.170200 OK 263 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2021/07/FBC-2021-1030x579.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1030x579, components 3\012- data
Size 263 kB (262983 bytes)
Hash 9487e844c3386068c9591b3a98506888
c13e01f75f259337add2adc8a154b931359e45d7
ddba845eb3f998457ffd09d8776098062f2f9c9bd4541970e2d2ef25d706028b
GET /wp-content/uploads/2021/07/FBC-2021-1030x579.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 262983
last-modified: Tue, 27 Jul 2021 10:30:55 GMT
etag: "60ffe05f-40347"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
141.94.170.170200 OK 39 kB URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
IP 141.94.170.170:0
File type Web Open Font Format (Version 2), TrueType, length 39220, version 1.0\012- data
Hash 88bd94b6a31a73b5ee2b4a9799c7285e
59b220f616928d7baef57b681093c55c3f787abd
7f260ff280b2e54e84e6f9c2790da49cc9abadc457b77d1df4dea121a8c8ab6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: font/woff2
content-length: 39220
last-modified: Mon, 25 Apr 2022 21:01:48 GMT
etag: "62670c3c-9934"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mon-evenement.live/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5
141.94.170.170200 OK 22 kB URL HTTP/2 mon-evenement.live/wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5
IP 141.94.170.170:0
File type ASCII text, with very long lines (25961)
Hash c943825fbf1b29051c094be0b5de47b2
7b8734037b9a081b35f16efcf02725baa0e7d6a7
1bfe7409dd1801d2fd389237f8b5e3aec4e23464cae72da75aa48307ea68d8d4
GET /wp-content/plugins/page-scroll-to-id/js/page-scroll-to-id.min.js?ver=1.7.5 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Fri, 11 Feb 2022 15:47:47 GMT
etag: W/"62068523-6591"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
142.250.74.163200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mon-evenement.live
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 15:39:46 GMT
expires: Sat, 02 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 378611
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=7.1.3
141.94.170.170200 OK 40 kB URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=7.1.3
IP 141.94.170.170:0
File type ASCII text, with very long lines (65343)
Hash cc90ee136e9fab13055935097212e992
0a3ee8ed9c9084fad58cf477a466ceeaadffdd5c
0bd46c7f716f5020881f773274de15632a5200bcb6d46cfb08fc1fb8206c59cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.utils.js?ver=7.1.3 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Mon, 25 Apr 2022 21:01:53 GMT
etag: W/"62670c41-1e049"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/dynamic_avia/avia-footer-scripts-b6926eb952f3b8bfd789cec42036f6b0---62b77cab3f662.js
141.94.170.170200 OK 33 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/dynamic_avia/avia-footer-scripts-b6926eb952f3b8bfd789cec42036f6b0---62b77cab3f662.js
IP 141.94.170.170:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (10532)
Hash 82c7b13d3544fdd50536000bafdd78f7
5664882fc911a10708d658ad7ce3e8773549e22e
cca835f9128c906dd8b12dc9187a0a534f45e14b1e9c31889eda323d582185d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/dynamic_avia/avia-footer-scripts-b6926eb952f3b8bfd789cec42036f6b0---62b77cab3f662.js HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Sat, 25 Jun 2022 21:22:51 GMT
etag: W/"62b77cab-1c84b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/framework/js/conditional_load/avia_google_recaptcha_api.js
141.94.170.170200 OK 4.7 kB URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/framework/js/conditional_load/avia_google_recaptcha_api.js
IP 141.94.170.170:0
Hash 443e599becf037c8ef4bcb626abc8634
da2f0d7d26c4aa5b385f1275304aaa9fa3539cf6
9902315c5509107c89c140241dbbb13720d21efaa032db3538888e9057d0bccd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/enfold/framework/js/conditional_load/avia_google_recaptcha_api.js HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:57 GMT
content-type: application/javascript
last-modified: Mon, 25 Apr 2022 21:01:31 GMT
etag: W/"62670c2b-4be3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/s/player/c16db54a/www-player.css
216.58.207.206200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/c16db54a/www-player.css
IP 216.58.207.206:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 666388d9ac2c812d3d9b0e511b1cfea0
4dfa524e6558a4aaf676578dd3275f544cb36625
a1532094c979ab2823b5baf7e5843d731e1c64765a8b8495f89bb56b7f7df117
GET /s/player/c16db54a/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49081
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 20:42:16 GMT
expires: Sat, 02 Sep 2023 20:42:16 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:46:29 GMT
content-type: text/css
age: 360461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/dynamic_avia/avia-merged-styles-b92d195a7d258cd782a676bbd6cbe684---62684d0d164cb.css
141.94.170.170200 OK 48 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/dynamic_avia/avia-merged-styles-b92d195a7d258cd782a676bbd6cbe684---62684d0d164cb.css
IP 141.94.170.170:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7a8ae552ed58a582124dc146584368c
65a77039d6444192189ce590259fcc0d5febfb62
4f99e002591c41f3dbde8a5ad8778a40d32e7a479263e2a4075b9181f050fd49
GET /wp-content/uploads/dynamic_avia/avia-merged-styles-b92d195a7d258cd782a676bbd6cbe684---62684d0d164cb.css HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/css
last-modified: Tue, 26 Apr 2022 19:50:37 GMT
etag: W/"62684d0d-54474"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/s/player/c16db54a/www-embed-player.vflset/www-embed-player.js
216.58.207.206200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/c16db54a/www-embed-player.vflset/www-embed-player.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (592)
Hash 26b6e79984361d593bcf000927f559db
36dc3faef99c68636ed7d8a2d46783ccfc3be7ff
2795564d0f494ec4aed32d6708062dd699c22324d3df26588d5e2e2c2a956b36
GET /s/player/c16db54a/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 20:42:16 GMT
expires: Sat, 02 Sep 2023 20:42:16 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:46:29 GMT
content-type: text/javascript
age: 360461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fc7316fab55e89a81536e926eab6f83
7fcab743b176312e76999b39a1b2a3b97dbeb10f
8178b9805611209f5c47dce32da555117870a90648e026d08cc691a4103169a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 12:31:58 GMT
expires: Sun, 03 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 303479
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/c16db54a/fetch-polyfill.vflset/fetch-polyfill.js
216.58.207.206200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/c16db54a/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.207.206:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/c16db54a/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 20:42:16 GMT
expires: Sat, 02 Sep 2023 20:42:16 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:46:29 GMT
content-type: text/javascript
age: 360461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=6.0.2
141.94.170.170200 OK 1.2 kB URL HTTP/2 mon-evenement.live/wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=6.0.2
IP 141.94.170.170:0
File type ASCII text, with CRLF line terminators
Hash f035658702ea90cf5dcbf3df788aa40f
08441782704ea4f770aa9f09a6cd7a9d7aa04a9f
c5a960106d6d6d9ff25266de3786616021aafbd2d1c27181e1898c0fc8397234
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/login-sidebar-widget/css/style_login_widget.css?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/css
last-modified: Wed, 05 Jan 2022 16:10:10 GMT
etag: W/"61d5c2e2-8b2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/PlanRapproche_recadr%C3%A9-1-300x159.jpg
141.94.170.170200 OK 50 kB URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/PlanRapproche_recadr%C3%A9-1-300x159.jpg
IP 141.94.170.170:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=484, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=914], baseline, precision 8, 300x159, components 3\012- data
Hash 3b4b3621593b575de8ad827ee6dbd33f
962f9b75d95a207d9b741dcc8836edcc9e78de2a
4e8114dff5c481a0464dcf9774c6f80bc90121c25ca4b433dc857fe32af04de4
GET /wp-content/uploads/2020/03/PlanRapproche_recadr%C3%A9-1-300x159.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:57 GMT
content-type: image/jpeg
content-length: 50138
last-modified: Wed, 25 Mar 2020 16:45:51 GMT
etag: "5e7b8abf-c3da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
player.vimeo.com/video/426986048?h=3076593a06&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
162.159.128.61200 OK 5.3 kB URL HTTP/1.1 player.vimeo.com/video/426986048?h=3076593a06&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16145)
Hash 1a2d37f58a22067c2b8b6028e7748816
7f972a8af9efdd15747a345961fcb1de6ad47289
436e17653cd31cfecfa4eae11f66ba66f31a78b763aff87d38bf8c789a515010
GET /video/426986048?h=3076593a06&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 00:49:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-65494d8d99-sjt7p
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-4
x-backend-proxy: playproxy5
x-bapp-server: player-65494d8d99-sjt7p
Age: 0
X-Served-By: cache-bma1659-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662511797.182009,VS0,VE301
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=wG62Ca3ndAhi86e_WCxZD5T7DieM0Q374zwEY20ue5k-1662511797-0-AZKn1WH4hnTnL2HKuCC2iSqRegEf2JAFclWHoUZulEhF4yMtZXSsiiLvcB1yVygYBx5aZVNcwONM04YeXKYFdqs=; path=/; expires=Wed, 07-Sep-22 01:19:57 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746b728c4fbab51e-OSL
Content-Encoding: gzip
player.vimeo.com/video/511593628?h=68fa453c7f&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
162.159.128.61200 OK 5.2 kB URL HTTP/1.1 player.vimeo.com/video/511593628?h=68fa453c7f&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16119)
Hash f289c574e62704564cc2fad12abcd579
08e745d1bbc42cacd9c45ec23630f68ccc8756d2
a410290130e00e6bdff12ce845866b7d60d1146f1431a85c9d7c2d238db5b7ee
GET /video/511593628?h=68fa453c7f&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 00:49:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-65494d8d99-sjt7p
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-1
x-backend-proxy: playproxy2
x-bapp-server: player-65494d8d99-sjt7p
Age: 0
X-Served-By: cache-bma1665-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662511797.172230,VS0,VE333
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=7.5eH2GsitF_VnmCRCDHmWLVRTf6nH1B7R2sSY3Ib70-1662511797-0-AWoFaJkJinempZWhGI0Ezzyd3v6yOf0bMY1bAsW6ic7gbpJy9awxGUrDVcK0/ll1ZoUvr0aSkIG571GyzWBLqAI=; path=/; expires=Wed, 07-Sep-22 01:19:57 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746b728c3c07b4f3-OSL
Content-Encoding: gzip
player.vimeo.com/video/426983080?h=5b25079e68&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
162.159.128.61200 OK 5.5 kB URL HTTP/1.1 player.vimeo.com/video/426983080?h=5b25079e68&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17228)
Hash b69eec586e474a99e5db141695751449
c7406407cfc9ab2a701d7293b5cd6f5dd416de1d
ae5e82607eae6f6fd79a3ead75d623b50fe6de2ab5edbefe28910fd8ef2b554b
GET /video/426983080?h=5b25079e68&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 00:49:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-65494d8d99-p2pnw
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-9
x-backend-proxy: playproxy10
x-bapp-server: player-65494d8d99-p2pnw
Age: 0
X-Served-By: cache-bma1673-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662511797.181947,VS0,VE310
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=jgE9CwNBwuLLlWN5WWw5Q6hO6AZNdhRxxCpQwTfICbs-1662511797-0-AcD7qVt1LXP6K/i0RvfzDAU5VVkNJTMFm9F458euUR7NhD0PfzUufDEmY5ekRW+lI5SeaWEQVtVbbgfwrxCTk7I=; path=/; expires=Wed, 07-Sep-22 01:19:57 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746b728c4a13b509-OSL
Content-Encoding: gzip
player.vimeo.com/video/383785778?h=6343b7d4c0&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
162.159.128.61200 OK 5.5 kB URL HTTP/1.1 player.vimeo.com/video/383785778?h=6343b7d4c0&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17236)
Hash 90bbb3e1c4a9474b875b196cb77472d6
04bba2a4122b14476277f12203f8435e8cf0237d
c2ee40432abc55e280d9b4d4a21fd9b84c0be1d7a64b8f0575b6baa430f9cf31
GET /video/383785778?h=6343b7d4c0&dnt=1&app_id=122963&autoplay=0&loop=0&controls=1&muted=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 00:49:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-65494d8d99-htjzn
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-9
x-backend-proxy: playproxy10
x-bapp-server: player-65494d8d99-htjzn
Age: 0
X-Served-By: cache-bma1649-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1662511797.181146,VS0,VE334
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=GcsIPmXkgzUvJRaPWqgIwm7tPyEEJF8mi_v6gpgI8.0-1662511797-0-AczCWLKk2r5uJrWFZuCkP9N25fDktWqJ8vRwFc9x+JoYfe37RCAE1rm3i0EGfPth+i23CikWlSCg6yjVmZGVCF8=; path=/; expires=Wed, 07-Sep-22 01:19:57 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 746b728c4cbeb50f-OSL
Content-Encoding: gzip
mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/jquery.countdown.min.js?ver=2.2.0
141.94.170.170200 OK 7.7 kB URL HTTP/2 mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/jquery.countdown.min.js?ver=2.2.0
IP 141.94.170.170:0
File type ASCII text, with very long lines (4136)
Hash 62811e26293c729dcaa6c8a879e5edf8
38d3af031673f4f5723a30e097b2ac0d9b7e32b0
e90724f953196eed7a04e43e3e2575d4ca3f1b07bc370eedb33ed3754ddf6986
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hurrytimer/assets/js/jquery.countdown.min.js?ver=2.2.0 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 13:26:11 GMT
etag: W/"62557df3-14db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.9.7/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.9.7/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65496)
Hash 71d3efd5e60d34d7ab350e8f7d81c1cc
10deb0ff317c64fa736290e244e5df40dad43dba
a6c468e00c1247f0352c7120cba6afb71047e0a2078ce89edd4cfc15b9647fc4
GET /p/4.9.7/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 547727
x-served-by: cache-iad-kcgs7200176-IAD, cache-bma1625-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 98776
x-timer: S1662511798.674312,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20154
X-Firefox-Spdy: h2
i.vimeocdn.com/video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.6 kB URL HTTP/2 i.vimeocdn.com/video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash d9e0470c3933dd8b4a9c42c92ef63875
4d1e066d605a8daeb556137b55ae371cfc430b0e
2625b6d0872cef9d998eb27373f89f87d17220350d2b1f08bb61af37131cf003
GET /video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: d9e0470c3933dd8b4a9c42c92ef63875
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-east1-7fs5
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 623853
x-served-by: cache-dfw-kdfw8210072-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.686683,VS0,VE1
content-length: 1605
X-Firefox-Spdy: h2
i.vimeocdn.com/video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.6 kB URL HTTP/2 i.vimeocdn.com/video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 1349169fa4e2dbbc9d311024314eb3f6
82918460c5efba42ba1fbf2cb18cf2b7618ba1af
db20fdd137a9f12289512857fc6a8d05ff2d7023c5772f89471d7b845aac6556
GET /video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 1349169fa4e2dbbc9d311024314eb3f6
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-east1-952q
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 727543
x-served-by: cache-dfw-kdfw8210041-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.686829,VS0,VE1
content-length: 1645
X-Firefox-Spdy: h2
i.vimeocdn.com/video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.5 kB URL HTTP/2 i.vimeocdn.com/video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 3ce0bdc2cff06505a9e98c8ce3df5c06
f9431c5c583e43f664efd88a7b5c90628cd58c96
8b04a7216f170c6164870dbe4b9b3d59175b8427f828ae3bbfa28e6cd3593a4a
GET /video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 3ce0bdc2cff06505a9e98c8ce3df5c06
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-ffvc
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 2249995
x-served-by: cache-dfw-kdfw8210054-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.687832,VS0,VE1
content-length: 1511
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.9 kB URL HTTP/2 i.vimeocdn.com/video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash b39da6c56e1a9fe491c666ccf21a150d
4f0127df55da1b0307e40392056b76e5170eda55
ecf24f819f9c15b40096e54498d1059ade77ff31e3aca710da15dcf263c93f9a
GET /video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: b39da6c56e1a9fe491c666ccf21a150d
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-3nn1
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 1850023
x-served-by: cache-dfw-kdfw8210039-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.687662,VS0,VE1
content-length: 1859
X-Firefox-Spdy: h2
www.youtube.com/s/player/c16db54a/player_ias.vflset/en_US/base.js
216.58.207.206200 OK 212 kB URL HTTP/2 www.youtube.com/s/player/c16db54a/player_ias.vflset/en_US/base.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (64650)
Size 212 kB (211887 bytes)
Hash 3b3bbde441818bd38701e0f6224726cb
019b38057e6685d8e370399ddc2bba7bf05f9b7b
ffce5dd99056f8bb0dfb0442ef11797a732a31f8d17724c3ee51f430a78af6f7
GET /s/player/c16db54a/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 586778
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 20:50:27 GMT
expires: Sat, 02 Sep 2023 20:50:27 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:46:29 GMT
content-type: text/javascript
age: 359970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.vimeocdn.com/video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.6 kB URL HTTP/2 i.vimeocdn.com/video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash ed29e3298d64bd26daf0d4f4beaa546b
c2a246267d52cfb49199b92acd52b410161f34bc
3f6002a6fdb3eb6cbd354096a91b58ef3a66ac04ffd4166ae4f5651f5740efae
GET /video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: ed29e3298d64bd26daf0d4f4beaa546b
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-9kkf
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:57 GMT
age: 727544
x-served-by: cache-dfw-kdfw8210105-DFW, cache-bma1625-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1662511798.686951,VS0,VE127
content-length: 1602
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d?mw=400&mh=225
151.101.86.109200 OK 17 kB URL HTTP/2 i.vimeocdn.com/video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 036a267471ea1c6f4c65ef3c089202dc
142a06fe7ac4761d50c57f57c816538e5c7e0742
9859a32736bb723c1856da990ca9ca275f31a672d429bc462b0231282efa8582
GET /video/1059014202-3a4b14238a83765b49b45917639770b9c69ce1fb99c61e8b4c7170e168bf1b4a-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 036a267471ea1c6f4c65ef3c089202dc
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-d2n7
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 1252782
x-served-by: cache-dfw-kdfw8210087-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.072442,VS0,VE1
vary: Accept
content-length: 16619
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10119
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 00:49:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10119
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 00:49:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10119
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 00:49:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10119
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 00:49:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06ecbe48-320f-4519-b483-d18aef3d2553.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06ecbe48-320f-4519-b483-d18aef3d2553.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0408a050e5a372bd7779e85c795657c
0982f165e38844efca891ed93a50bdd7207e0a0b
9edf3e51b6d968619b4996b478e66a10dc44df3e1d4eeeb72b414fa3cc7a422f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06ecbe48-320f-4519-b483-d18aef3d2553.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9979
x-amzn-requestid: dd8213ad-743d-4427-b71b-b149394fc69b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X-FSLFLXIAMFSjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63158274-31ee142e3fec71c16a5221f0;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 05:00:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GkJqu6f6Jrh3zDUi0D0DRNENK7wnNyztFsn7EXdpXjI9yWDPrj8fhA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:49:11 GMT
age: 10847
etag: "0982f165e38844efca891ed93a50bdd7207e0a0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 7862
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb8aa6e-cd0e-437b-8dd5-987975f699c1.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb8aa6e-cd0e-437b-8dd5-987975f699c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ef4fa1124d22326a35b623fbe8c5265
ef57fc0f565c41e42637ca1a71d3143c20a7c2e6
8dd5cbcd791cf3db88011ac65a1097a491d0fd0e1e52eb879c2ef27f22c2d3aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb8aa6e-cd0e-437b-8dd5-987975f699c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9014
x-amzn-requestid: 774c43be-0f3a-48c2-8f14-b48b4b09767c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqN9tGsVoAMFVng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d9057-00c7330e5b1d960021691df2;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 04:21:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 77V2cHcwKSvu4b0ikOJ5s3yf-bcK2eh2Sfe85UrhyuRLpzudBO6vXQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:57:28 GMT
age: 6750
etag: "ef57fc0f565c41e42637ca1a71d3143c20a7c2e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg
34.120.237.76200 OK 31 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg
IP 34.120.237.76:0
Hash ef1c85ab7f8c8a53cde7791a629a4d2d
045d63f3b1baa3049b8b75d0955b17ef2a219050
6be18a97f7ec60776d2b7866a55fd62a032c29c45e36e0b07b0d1feb4550d36a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3529
x-amzn-requestid: 6ee305f1-aaaf-49eb-94b5-1176943a1922
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YCjYWFzNoAMFajg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63174c35-7e8ef3554da3194d47726d0d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 13:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: u3PSpvVEoPGJTFmcB643hOaVUAp-iW0X68PxtIaJZvGHc-Bh79gPgQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:50 GMT
age: 27256
etag: "a99519726bc82f2cc0541c79f47ddd15c7362669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 44ee4c9bd1e550045d69f24ad511070c
3bf0d51801523d7014ac76b5ab90c989fc7a770f
ee48c13050faa498f79222216f9c71b20b3a4e5e8e5c59c7156c276ab942703c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8756
x-amzn-requestid: d48113bc-fe40-4d59-b700-194b1092ab67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqmxQEbVoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db807-14ff6f5b0ffb9a7f08e57906;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:11:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YKs0giofWi83MnLBqx6zAu1NGd_A9-l6y2pULUBn2RK0-H3KNRzrUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 15:59:32 GMT
age: 31826
etag: "3bf0d51801523d7014ac76b5ab90c989fc7a770f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: d75d69c1-87be-47e2-8684-3c9a25edee2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYpFL-IAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd0-1c6d025672cc490734bb54e4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yzw88Z7aubNEll7UXkvaIWbftL95Y0UDTMnOEh_uhKqWgNycBA9Adw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:22 GMT
age: 11316
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.vimeocdn.com/video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d?mw=400&mh=225
151.101.86.109200 OK 12 kB URL HTTP/2 i.vimeocdn.com/video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash c201b4b2b125e8e44261df9cea2ecb3e
194e2cce120427b214a740969f6ec09612047e68
423938743bd55a70e823982d186ecb7f552907e30d2b31cacb5882eb26b9f91b
GET /video/845337582-a685778606a662494c4ba52c87d891a9947c124970e64443b7362cbe3b26e97e-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: c201b4b2b125e8e44261df9cea2ecb3e
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-qgqc
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 1262152
x-served-by: cache-dfw-kdfw8210033-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.248870,VS0,VE1
vary: Accept
content-length: 11925
X-Firefox-Spdy: h2
i.vimeocdn.com/video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d?mw=400&mh=225
151.101.86.109200 OK 8.2 kB URL HTTP/2 i.vimeocdn.com/video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 24ff53f5d67ad51e03a5b96aac6f0342
c329c1c7298624499608dcde098911d1bb7dd8cf
aa4fb5cd56427c55b1e5c10d7b87d54d373402ff0a51fe9a373ac775682eb5de
GET /video/905664284-b0de352e653a447dc2a7ef6f950faab0f3ee06e382371a1a18668717ffc33bcb-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 24ff53f5d67ad51e03a5b96aac6f0342
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-2q0n
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 2178540
x-served-by: cache-dfw-kdfw8210072-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.369965,VS0,VE1
vary: Accept
content-length: 8228
X-Firefox-Spdy: h2
i.vimeocdn.com/video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d?mw=400&mh=225
151.101.86.109200 OK 11 kB URL HTTP/2 i.vimeocdn.com/video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 6a70ce7707d5082804b9fd8f8d0fe490
1e2c1804e9f8119f1eca35bce2154a926ae15f68
94f8c0afdf0d6fef38ae0fd6c200a066727b97f8474b72ad12528e955936a68e
GET /video/905677770-d4e2acd6f7b4333b5b891d7431fd63ebb6ea85cc79ff45325f4dd5e0492c847b-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 6a70ce7707d5082804b9fd8f8d0fe490
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-3qnp
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 1130402
x-served-by: cache-dfw-kdfw8210060-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511798.461904,VS0,VE1
vary: Accept
content-length: 10690
X-Firefox-Spdy: h2
i.vimeocdn.com/video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d?mw=400&mh=225
151.101.86.109200 OK 14 kB URL HTTP/2 i.vimeocdn.com/video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d?mw=400&mh=225
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 53c68d95a150e0aaae58107ebc61c908
a8f89cfe0482eea8f7f13614c894064324c536b9
d6da25200fcf7fe4fd3af234799955bbf88e585a2dd9e8fc5fba835ef88671f4
GET /video/981236155-1e24f63bd04e49067cde851866228352efb822f1a1779dc9946cd13daaf108af-d?mw=400&mh=225 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 53c68d95a150e0aaae58107ebc61c908
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-ss2w
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 1288804
x-served-by: cache-dfw-kdfw8210127-DFW, cache-bma1625-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662511799.548546,VS0,VE1
vary: Accept
content-length: 13746
X-Firefox-Spdy: h2
i.vimeocdn.com/portrait/5044314_60x60.jpg
151.101.86.109200 OK 962 B URL HTTP/2 i.vimeocdn.com/portrait/5044314_60x60.jpg
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 60x60, components 3\012- data
Hash 1a788308bfb43a50d768dc8b05321cea
48d81158bfdb9b9125363e9244f6d9dd005f7522
5c50cd68c30c3c636f8b3d932f16bc25199ab045df5ceabf73415511eb31a998
GET /portrait/5044314_60x60.jpg HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 1a788308bfb43a50d768dc8b05321cea
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-ftsx
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 07 Sep 2022 00:49:58 GMT
age: 579697
x-served-by: cache-dfw-kdfw8210088-DFW, cache-bma1625-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1662511799.840101,VS0,VE137
content-length: 962
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e27313c78bb1b4915b56819ea1681c89
aeea006638532562eb6d03ce71f1928f16a79e14
54f506e01b24da86d55bed7a799101e97f051c3ae9f40adb8627b28f611d4570
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:44:23 GMT
expires: Wed, 07 Sep 2022 00:59:23 GMT
cache-control: public, max-age=900
age: 336
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 07 Sep 2022 00:49:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e27313c78bb1b4915b56819ea1681c89
aeea006638532562eb6d03ce71f1928f16a79e14
54f506e01b24da86d55bed7a799101e97f051c3ae9f40adb8627b28f611d4570
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Sep 2022 00:49:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 58f75fa7bcc64344a55ebe13c6ab39af
30d526d848ecd8049df615908e80f1a8645a1b7c
3128f6964a59de0e24a95d35af24e63a1aaf9418242da53c1c49e90cf80d987b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Sep 2022 00:49:59 GMT
server: ESF
cache-control: private
content-length: 30667
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1e3618360c113152e2ace6d959b95a6
a300d90c784376801014cd04c3df458647ba9985
7aeb4c402546444e2e2824b5d1543fa121fd31f9626331cae94580fc9b0640d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/58-nGxbCP8Q/default.webp
142.250.74.54200 OK 2.0 kB URL HTTP/2 i.ytimg.com/vi_webp/58-nGxbCP8Q/default.webp
IP 142.250.74.54:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4e3a2d45d2a449766c50a066aac14238
d905b02c4b89bdd637ac53a34058de61c8c15f7f
0a859813d0f63f7a898130364bc44aa98fbb0459ca8a9fcfbf8eb45fc1b76b80
GET /vi_webp/58-nGxbCP8Q/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:49:59 GMT
expires: Wed, 07 Sep 2022 02:49:59 GMT
cache-control: public, max-age=7200
etag: "1622449956"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f826e6c7ed5681ea2e4fb221deee4c65
85450db9a100d7b512f454c49237d8071e6f5a05
d96e95c4e9ec09f5e53aef9d6be1e36858601c5b999587f1d104e588bbc49e8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1e3618360c113152e2ace6d959b95a6
a300d90c784376801014cd04c3df458647ba9985
7aeb4c402546444e2e2824b5d1543fa121fd31f9626331cae94580fc9b0640d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu9dM-TP1bfhMOAXd1IniXXn8zfGgnd4pZZxzS05Vw=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.6 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu9dM-TP1bfhMOAXd1IniXXn8zfGgnd4pZZxzS05Vw=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash b49f7e991b905478ece93a7cc00406c2
c6aaa985a1b3d6535f78edd1f1dc7159c3353a1d
98a80094b5aa7ddf81e4f7d7087dbaba08a6fe3e24d68c2d13ac5d51fc61cbc6
GET /ytc/AMLnZu9dM-TP1bfhMOAXd1IniXXn8zfGgnd4pZZxzS05Vw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1617
x-xss-protection: 0
date: Wed, 07 Sep 2022 00:49:59 GMT
expires: Mon, 05 Sep 2022 01:50:02 GMT
cache-control: public, max-age=86400, no-transform
etag: "ve2"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f826e6c7ed5681ea2e4fb221deee4c65
85450db9a100d7b512f454c49237d8071e6f5a05
d96e95c4e9ec09f5e53aef9d6be1e36858601c5b999587f1d104e588bbc49e8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&gjid=636933045&_gid=1373647755.1662511794&_u=YEBAAUAAAAAAAC~&z=705651384
142.251.1.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&gjid=636933045&_gid=1373647755.1662511794&_u=YEBAAUAAAAAAAC~&z=705651384
IP 142.251.1.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&gjid=636933045&_gid=1373647755.1662511794&_u=YEBAAUAAAAAAAC~&z=705651384 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mon-evenement.live
Connection: keep-alive
Referer: https://mon-evenement.live/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mon-evenement.live
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Sep 2022 00:49:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f53ebd30fa3351f320ca2c8764734ff1
9205e35b1cef1602414af2350ba6205f4129234c
d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&_u=YEBAAUAAAAAAAC~&z=1586090894
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&_u=YEBAAUAAAAAAAC~&z=1586090894
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-17946085-1&cid=1597581538.1662511794&jid=1270497630&_u=YEBAAUAAAAAAAC~&z=1586090894 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Sep 2022 00:49:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Sep 2022 00:49:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f53ebd30fa3351f320ca2c8764734ff1
9205e35b1cef1602414af2350ba6205f4129234c
d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 00:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 122 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3f0a0c2ddff7c35b0131cd42686bff67
30b9df4d5f9ee0597347405f5dd5f83dae30f430
5d9f805ae918a936709bc4a9485d2a55dedc25fccff12f10d733aa1750fb0365
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1095
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Sep 2022 00:49:59 GMT
server: ESF
cache-control: private
content-length: 122
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Website_V4.png
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/NewsletterLive_Visuel_Website_V4.png
IP 141.94.170.170:0
GET /wp-content/uploads/2020/03/NewsletterLive_Visuel_Website_V4.png HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/png
content-length: 108206
last-modified: Fri, 13 Mar 2020 14:35:58 GMT
etag: "5e6b9a4e-1a6ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/hurrytimer/css/4f01e0d7d2c9844e.css?ver=6.0.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/uploads/hurrytimer/css/4f01e0d7d2c9844e.css?ver=6.0.2
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/hurrytimer/css/4f01e0d7d2c9844e.css?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/css
last-modified: Sun, 10 Jan 2021 19:07:36 GMT
etag: W/"5ffb5078-f84"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=6.0.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=6.0.2
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/login-sidebar-widget/js/jquery.validate.min.js?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Wed, 05 Jan 2022 16:10:10 GMT
etag: W/"61d5c2e2-5a1e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=7.1.3
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=7.1.3
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.transitions.js?ver=7.1.3 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Mon, 25 Apr 2022 21:01:53 GMT
etag: W/"62670c41-54f7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 00:42:12 GMT
etag: W/"62ce14e4-15b64"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=6.0.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=6.0.2
IP 141.94.170.170:0
GET /wp-content/plugins/login-sidebar-widget/js/additional-methods.js?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Wed, 05 Jan 2022 16:10:10 GMT
etag: W/"61d5c2e2-9fc8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/wpwebinarsystem/includes/js/moment-with-locales.min.js?ver=2.26.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/plugins/wpwebinarsystem/includes/js/moment-with-locales.min.js?ver=2.26.2
IP 141.94.170.170:0
GET /wp-content/plugins/wpwebinarsystem/includes/js/moment-with-locales.min.js?ver=2.26.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 08:44:12 GMT
etag: W/"630341dc-52243"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/03/Visuel_Diff_V2.jpg
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/03/Visuel_Diff_V2.jpg
IP 141.94.170.170:0
GET /wp-content/uploads/2020/03/Visuel_Diff_V2.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: image/jpeg
content-length: 103380
last-modified: Thu, 26 Mar 2020 12:07:57 GMT
etag: "5e7c9b1d-193d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.jpg
141.94.170.170404 Not Found 0 B URL HTTP/2 mon-evenement.live/wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.jpg
IP 141.94.170.170:0
GET /wp-content/uploads/2020/10/Visuel_Exemple_Patrimoine.jpg HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/html
last-modified: Thu, 12 Mar 2020 13:13:02 GMT
etag: W/"404-5a0a81cd19380"
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=7.1.3
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=7.1.3
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=7.1.3 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Mon, 25 Apr 2022 21:01:53 GMT
etag: W/"62670c41-1f04e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0
IP 216.58.207.206:0
GET /embed/58-nGxbCP8Q?feature=oembed&autoplay=0&loop=0&controls=1&mute=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 07 Sep 2022 00:49:57 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=nVTZJgPzCe4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=0wH741sDuyc; Domain=.youtube.com; Expires=Mon, 06-Mar-2023 00:49:57 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+309; expires=Fri, 06-Sep-2024 00:49:57 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/uploads/avia_posts_css/post-165.css?ver=ver-1651002708
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/uploads/avia_posts_css/post-165.css?ver=ver-1651002708
IP 141.94.170.170:0
GET /wp-content/uploads/avia_posts_css/post-165.css?ver=ver-1651002708 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/css
last-modified: Tue, 26 Apr 2022 19:51:48 GMT
etag: W/"62684d54-586d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Wed, 12 Jan 2022 15:26:11 GMT
etag: W/"61def313-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 141.94.170.170:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Wed, 12 Jan 2022 15:26:11 GMT
etag: W/"61def313-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Sat, 25 Jun 2022 20:50:02 GMT
etag: W/"62b774fa-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/
141.94.170.170200 OK 0 B IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://mon-evenement.live/wp-json/>; rel="https://api.w.org/", <https://mon-evenement.live/wp-json/wp/v2/pages/165>; rel="alternate"; type="application/json", <https://mon-evenement.live/>; rel=shortlink
set-cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb; path=/
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/skins/outline/skin.css
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/skins/outline/skin.css
IP 141.94.170.170:0
GET /wp-content/themes/enfold/config-layerslider/LayerSlider/assets/static/layerslider/skins/outline/skin.css HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb; _ga=GA1.2.1597581538.1662511794; _gid=GA1.2.1373647755.1662511794; _gat_gtag_UA_17946085_1=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:59 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 21:02:06 GMT
etag: W/"62670c4e-2635"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/cookie.min.js?ver=3.14.1
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/cookie.min.js?ver=3.14.1
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hurrytimer/assets/js/cookie.min.js?ver=3.14.1 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 13:26:11 GMT
etag: W/"62557df3-690"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/hurrytimer.js?ver=2.7.2
141.94.170.170200 OK 0 B URL HTTP/2 mon-evenement.live/wp-content/plugins/hurrytimer/assets/js/hurrytimer.js?ver=2.7.2
IP 141.94.170.170:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/hurrytimer/assets/js/hurrytimer.js?ver=2.7.2 HTTP/1.1
Host: mon-evenement.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mon-evenement.live/
Cookie: PHPSESSID=gm2cctrrn3gp23pvs6575ah2hb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 00:49:56 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 13:26:11 GMT
etag: W/"62557df3-6fc7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2