firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tpnha_KxzvT-F57hX08dfyxj9JSatIuOrCm63UdPJmHI30-yUFHdeQ==
Age: 9058
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7809
Expires: Wed, 05 Oct 2022 20:28:25 GMT
Date: Wed, 05 Oct 2022 18:18:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9946
Expires: Wed, 05 Oct 2022 21:04:02 GMT
Date: Wed, 05 Oct 2022 18:18:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NILnrWn2Ykl1cGppRHoFnXox5r3Ee0SOw/Jts5gCZ3z8mThPQK/DXiWgIuEHCFaQ71J06/H2VBk=
x-amz-request-id: YE5KPBHNYER3W4TY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 17:58:23 GMT
age: 1193
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 18:18:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 17:24:10 GMT
Expires: Wed, 05 Oct 2022 17:46:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4cIc3xDhKGPRCIjn0-LHa_UI8wcR0hlDKvqfWlsz971-aByCLvg6KQ==
Age: 3245
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6543
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:16 GMT
Last-Modified: Wed, 05 Oct 2022 16:29:13 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0gWP9zcE5r2U/QoWMeVyBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: p8h6KOcySueqzM5x6VhioU84I4g=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4057
Expires: Wed, 05 Oct 2022 19:25:55 GMT
Date: Wed, 05 Oct 2022 18:18:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3257b782efae9b64e6e18a547866ec50
4daf0c001e86af8477fb097e8ca932edb8e5f981
899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iR82CJ6A06dpqy_nm6JrmjeUJT-uhI5rr0dr6ZnhrQQo9Jqxh10qRQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:43 GMT
age: 74075
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 51129
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1de7c17a0ba9295135e7f8b490b6a8d3
70e8d1589f3daf71378965dd197934e220fb6aa4
ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:25 GMT
age: 74093
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d7d7df8d4c440f9db445c3d99e818d6
612b6dbd4ba895c167964ff7e6d9263013b52b0a
bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3585
x-amzn-requestid: 43c510d4-d87c-4665-a132-d798b836d415
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaJbLHEOoAMFfxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a55e0-614faff31425ff183b7ca4dd;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:24:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d1LCc44Gj_0Je8adu7Iv3I9MwkaDPgWqlNHI96UAtZub22l210J65A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:53:07 GMT
age: 48311
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 229c99cfb655a8c9f1a22de69fdff73c
6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: UPEhTwAYEIRy-Cnb0ITefEotLyg3rFe_NaGy92xwWe_7hrdo6UQLwQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:56:53 GMT
age: 73285
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 100559d746bedd7c3802661c875c35ee
5261a6c2ee6d6cc87e91ee82e32d8be234db393e
ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8f83Wv7OrO7NOd1y1LXjfphRmJjdwrkcAxrxUN4A4qSgsEzIQMq81g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:38:40 GMT
age: 70778
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
54.36.138.152301 Moved Permanently 424 B URL HTTP/1.1 mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
IP 54.36.138.152:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c067c40fa2826944274ad4111c064712
e136f64baf0dd7cf4ce942b26ada0dcb2495175d
8013fa182ec82aa010af7aa8b42099871bc3c586b775496fa0f2cccb8a5b0727
GET /arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e= HTTP/1.1
Host: mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 05 Oct 2022 18:18:18 GMT
Server: Apache/2.4.54 (Debian)
Location: https://mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
Content-Length: 424
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ef7183087509da0ae3485d8498edb059
585bed2776fd6163d4ec9256137d45a305289227
0035658afcaedb1c322343663e39ca735d261e9f5b9ec7b8c51e43fddf823453
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0035658AFCAEDB1C322343663E39CA735D261E9F5B9EC7B8C51E43FDDF823453"
Last-Modified: Tue, 04 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 06 Oct 2022 00:18:19 GMT
Date: Wed, 05 Oct 2022 18:18:19 GMT
Connection: keep-alive
mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
54.36.138.152301 Moved Permanently 429 B URL HTTP/2 mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
IP 54.36.138.152:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0b32958b7928d2ef428be5bf4319db59
e73bd330890ca0992e7a9f29fae388048abe3da9
98333b98ab270ad5aba066afadde4668181644632edbe9f27bf9346e7acef939
GET /arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e= HTTP/1.1
Host: mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
location: https://www.mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
content-length: 429
content-type: text/html; charset=iso-8859-1
date: Wed, 05 Oct 2022 18:18:19 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
54.36.138.152301 Moved Permanently 0 B URL HTTP/2 www.mes-dents-blanches.com/arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e=
IP 54.36.138.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /arh2?axl=zvaln430&jtrxbp=ncz3win45aglk2c57wycdjadbyb282zhcvmkwp+mmmt1ewujjoeb7inwynbaux7q87e= HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
vary: Accept-Encoding
location: https://www.mes-dents-blanches.com
referrer-policy: no-referrer-when-downgrade
content-length: 0
content-type: text/html; charset=UTF-8
date: Wed, 05 Oct 2022 18:18:19 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/
54.36.138.152200 OK 12 kB URL HTTP/2 www.mes-dents-blanches.com/
IP 54.36.138.152:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 96673ab6dd89654c211c11a945284cbb
e1df788afd8afaad97de99f22a20898eb9edf83b
974c5240406654dfec6eed8142be54a667184dcf6d45305dcec885a76a5172d2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 05 Oct 2022 17:39:09 GMT
etag: "2dea-5ea4d0ddb27b4"
accept-ranges: bytes
content-length: 11754
referrer-policy: no-referrer-when-downgrade
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 05 Oct 2022 18:18:19 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
54.36.138.152200 OK 972 B URL HTTP/2 www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 54.36.138.152:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:25 GMT
etag: "aab-5e9e59c7766fe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 972
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva-child-ft/style-ft.css?ver=6.0.2
54.36.138.152200 OK 26 B URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva-child-ft/style-ft.css?ver=6.0.2
IP 54.36.138.152:0
Hash 6fd0ec56dcd25b9d297a068af8107e55
217f20e586c4b96c9600e91aa650de512a6b848f
91adffa0adc1570c109dde28cf08c540802af99a94dfc6881cfe28fb4bc8fad3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva-child-ft/style-ft.css?ver=6.0.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:55 GMT
etag: "1a-5cc0398423fc0"
accept-ranges: bytes
content-length: 26
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
54.36.138.152200 OK 12 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 12 Jul 2022 19:24:31 GMT
etag: "15b64-5e3a09e2439c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 11681
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/css/owl.carousel.min.css?ver=2.3.4
54.36.138.152200 OK 1.1 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/css/owl.carousel.min.css?ver=2.3.4
IP 54.36.138.152:0
File type ASCII text, with very long lines (3184), with CRLF line terminators
Hash 876317e545381a07cee87c128b58caee
b7ee0636454c35d65266e3184417c48dc27cc29a
c52b1d154239012738c124d954c81601915ce231f896b982ca79c2f94b2a81d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/css/owl.carousel.min.css?ver=2.3.4 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "d1c-5e9e59ce320af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1072
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/css/animate.min.css?ver=3.5.2
54.36.138.152200 OK 2.6 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/css/animate.min.css?ver=3.5.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (16755), with CRLF line terminators
Hash 9484a16ba12551f6a3ea9952f5be8a12
8bf8d3eaa85602d6bfc4f73151803ab1c89d1bd5
f4d041677373077f6254407b6258ee17290c5042269eae3c1d8ac9f5c267cafe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/css/animate.min.css?ver=3.5.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "4242-5e9e59ce320af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2626
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva-child-ft/style.css?ver=1.0.0
54.36.138.152200 OK 208 B URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva-child-ft/style.css?ver=1.0.0
IP 54.36.138.152:0
Hash a40efb4b801db899526cae8b76ad3168
08db158b4f003c3fd9cc1115bb0b742fa7a3d9e5
d02377bf8437f4fbb3e2dd5546f32186e32047338dd9d6676bbc0be376fe0b52
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva-child-ft/style.css?ver=1.0.0 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:55 GMT
etag: "12e-5cc0398423fc0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 208
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/css/gutenberg.min.css?ver=1.0.0
54.36.138.152200 OK 2.6 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/css/gutenberg.min.css?ver=1.0.0
IP 54.36.138.152:0
File type ASCII text, with very long lines (14134), with no line terminators
Hash e7998a4756644d82a9fb65859bee2fb9
27b2d27b8ca90ed67846f70be61634847833f890
ba7a1192851914573e8c55f91c672c5853fc97f462299c2e6695299b17bfa85f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/css/gutenberg.min.css?ver=1.0.0 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "3736-5e9e59ce320af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2591
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
54.36.138.152200 OK 4.2 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:17 GMT
etag: "2bd8-5cc0395fe6a40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4169
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/style.css?ver=6.0.2
54.36.138.152200 OK 43 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/style.css?ver=6.0.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (13389), with CRLF line terminators
Hash 996b065a81d20dc02deff481b8f76f29
f2d21d9c3a03874ae0724482859763057689a55a
a84c777632c279c64c3f66667ac0107c0c401d632f28f38e50d54aaf777f9983
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/style.css?ver=6.0.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "505bc-5e9e59ce33fef-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 43250
content-type: text/css
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
54.36.138.152200 OK 31 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 54.36.138.152:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:17 GMT
etag: "15db1-5cc0395fe6a40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 30908
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
54.36.138.152200 OK 2.9 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 54.36.138.152:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:25 GMT
etag: "25d0-5e9e59c7766fe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2914
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
54.36.138.152200 OK 3.9 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 54.36.138.152:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:25 GMT
etag: "2fb3-5e9e59c7766fe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3934
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/js/v4-shims.min.js?ver=6.1.1
54.36.138.152200 OK 7.4 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/v4-shims.min.js?ver=6.1.1
IP 54.36.138.152:0
File type ASCII text, with very long lines (25929), with CRLF line terminators
Hash aca2e5499d781bf3902b5e93a47c7f18
df56752347286bb0afe20808b6793be5c13f1cba
6f29284a6c937a41184b365f3edb565d1d527a476e39e6a82f8ef596b159d135
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/js/v4-shims.min.js?ver=6.1.1 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "6629-5e9e59ce3110f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7409
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/js/owlcarousel2-a11ylayer.min.js?ver=0.2.1
54.36.138.152200 OK 1.3 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/owlcarousel2-a11ylayer.min.js?ver=0.2.1
IP 54.36.138.152:0
File type ASCII text, with very long lines (732), with CRLF line terminators
Hash 524c4f7b0bf7aae3e04e24343344e545
df55e212fb34f9db79ed0d50ec01a738ee6ccab2
3d37acae174961d4a14193321e001f8e292e309d4bd6c6d2c85a305e54e7f258
GET /wp-content/themes/vilva/js/owlcarousel2-a11ylayer.min.js?ver=0.2.1 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "f53-5e9e59ce3016f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1272
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
54.36.138.152200 OK 1.8 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 54.36.138.152:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:17 GMT
etag: "15fd-5cc0395fe6a40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1834
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mes-dents-blanches.com/wp-content/themes/vilva/js/custom.min.js?ver=1.0.0
54.36.138.152200 OK 1.4 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/custom.min.js?ver=1.0.0
IP 54.36.138.152:0
File type ASCII text, with very long lines (6150)
Hash 53c7bc8b6e39e090a72fc804ed974f0b
08a5e34a8600df65f3ad057dd943d9eba4fee90f
e53c2dbac8d8b1beed8c827191bdf14a0975052486a6b2a7e0467d942c279931
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/js/custom.min.js?ver=1.0.0 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "1830-5e9e59ce320af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1437
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/js/modal-accessibility.min.js?ver=1.0.0
54.36.138.152200 OK 2.0 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/modal-accessibility.min.js?ver=1.0.0
IP 54.36.138.152:0
File type ASCII text, with very long lines (5958)
Hash 02535fbbdd7c5ddb769f9455e9ba72cd
08876b12e208eabd76b51b67a32baba632640618
e49c78232f1035a03b10351076182f42b1a8480854aef0558246ca73dc26bdfe
GET /wp-content/themes/vilva/js/modal-accessibility.min.js?ver=1.0.0 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "1770-5e9e59ce320af-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2027
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/js/masonry.min.js?ver=4.2.2
54.36.138.152200 OK 7.4 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (23966)
Hash d56e5016a4d65d6d654add02bee3f792
9238046ef54c80e04b940f86683ea33cf44d40c1
6f1a28f0ef5ad427f7d99aecc29db61d8eb25190d5eb5e539c524c916d1442f9
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 15 Sep 2021 07:24:17 GMT
etag: "5e4a-5cc0395fe6a40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7382
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/js/owl.carousel.min.js?ver=2.3.4
54.36.138.152200 OK 11 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/owl.carousel.min.js?ver=2.3.4
IP 54.36.138.152:0
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash d2e4ab6ba660a80841bd9dde942c23e6
94069146ed504f5a4bb7605c606a3d0b36301c74
fa0b3bc9df7190dbb9cfce51eedd617cc7b97ac3d6dda39b1d81d4f717ce6ddb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/js/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "ad3c-5e9e59ce3110f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 11418
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
54.36.138.152200 OK 5.0 kB URL HTTP/2 www.mes-dents-blanches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 54.36.138.152:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 27 May 2022 14:18:40 GMT
etag: "48b9-5dffefba2f000-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5009
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/themes/vilva/js/all.min.js?ver=6.1.1
54.36.138.152200 OK 633 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/themes/vilva/js/all.min.js?ver=6.1.1
IP 54.36.138.152:0
Size 633 kB (632720 bytes)
Hash dee83405610953c9c69c9edeac7d92db
972d2e9e29ab65b2ef4e69a2ec25dcf2ab35c624
72b3cb8235242c44358bf4c01c6c34ab740e276ee79162e65a054f82128f6181
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/vilva/js/all.min.js?ver=6.1.1 HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 30 Sep 2022 14:14:32 GMT
etag: "1a58e9-5e9e59ce3110f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mes-dents-blanches.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:08:02 GMT
expires: Tue, 03 Oct 2023 21:08:02 GMT
cache-control: public, max-age=31536000
age: 162618
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Nunito+Sans%3A200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3Aregular%2C500%2C600%2C700%2C800%2Citalic%2C500italic%2C600italic%2C700italic%2C800italic%7CEB+Garamond%3Aregular
142.250.74.10200 OK 2.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans%3A200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3Aregular%2C500%2C600%2C700%2C800%2Citalic%2C500italic%2C600italic%2C700italic%2C800italic%7CEB+Garamond%3Aregular
IP 142.250.74.10:0
Hash 37908e0cbbfb69f94677426b7934be55
440b6827226dcf943829e5ccc8810a28a99ba258
7ec34dabea0fdf7a1e646c9b3cbd833bad606fb965412c6dbe1f3086e173b0a6
GET /css?family=Nunito+Sans%3A200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CEB+Garamond%3Aregular%2C500%2C600%2C700%2C800%2Citalic%2C500italic%2C600italic%2C700italic%2C800italic%7CEB+Garamond%3Aregular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mes-dents-blanches.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 18:18:20 GMT
date: Wed, 05 Oct 2022 18:18:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mes-dents-blanches.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 16:57:53 GMT
expires: Wed, 04 Oct 2023 16:57:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
age: 91227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mes-dents-blanches.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:55:18 GMT
expires: Tue, 03 Oct 2023 21:55:18 GMT
cache-control: public, max-age=31536000
age: 159782
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280-300x134.jpg
54.36.138.152200 OK 8.4 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280-300x134.jpg
IP 54.36.138.152:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x134, components 3\012- data
Hash 5067b18c2d401700a8d164e6844df6a0
631090283430ce448a45df740480db98e212beeb
38bd548b665606b57d167c454f8ed864bfab06c6ca41ff0ee66b1218904fbb27
GET /wp-content/uploads/2021/09/beauty-739667_1280-300x134.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 20 Sep 2021 14:49:28 GMT
etag: "20f3-5cc6e634cce00"
accept-ranges: bytes
content-length: 8435
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17688, version 1.0\012- data
Hash 241b1d6a680b6b0d1c70cc45d6aa4066
d10bc093bac070d725ff9379686201b19d9c70f9
9b73529b4e8246ea3f18a62d5166c59e9912d10b4ed05cf4880adb3688a26408
GET /s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mes-dents-blanches.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 08:54:50 GMT
expires: Wed, 04 Oct 2023 08:54:50 GMT
cache-control: public, max-age=31536000
age: 120210
last-modified: Mon, 09 May 2022 18:31:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 18:18:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mes-dents-blanches.com/wp-content/uploads/2022/01/dentist-gdbc4da3d5_640.jpg
54.36.138.152200 OK 70 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2022/01/dentist-gdbc4da3d5_640.jpg
IP 54.36.138.152:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=NIKON CORPORATION, model=NIKON D300], baseline, precision 8, 640x425, components 3\012- data
Hash b97a04adeeaa60e8aa587068f980b051
0d1bd876ff37d79dcc0addfcc1c893b8a4c28493
cda90bb3d2f1d6ddfdc9537707ccbad33b20db0634bf80eb30b22a531fed0eaf
GET /wp-content/uploads/2022/01/dentist-gdbc4da3d5_640.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 04 Jan 2022 14:46:05 GMT
etag: "1119d-5d4c2b2610540"
accept-ranges: bytes
content-length: 70045
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2022/01/orthodontics-g08da29953_640.jpg
54.36.138.152200 OK 56 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2022/01/orthodontics-g08da29953_640.jpg
IP 54.36.138.152:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=SONY, model=ILCE-7M3], baseline, precision 8, 640x427, components 3\012- data
Hash 516aa026e55d99f8526c51a9cf4d73fe
399da5642e30b84912c9f9f270b9502445e994bb
d93b15d1094c87ec9c0a114302a4a6352bfe4d89cbf538535732a90e2ceaf275
GET /wp-content/uploads/2022/01/orthodontics-g08da29953_640.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 04 Jan 2022 14:34:42 GMT
etag: "dc39-5d4c289ab4480"
accept-ranges: bytes
content-length: 56377
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2021/09/girl-2198018_1280.jpg
54.36.138.152200 OK 62 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2021/09/girl-2198018_1280.jpg
IP 54.36.138.152:0
File type JPEG image data, progressive, precision 8, 1024x550, components 3\012- data
Hash 853f7f0f7acdb732a7c982f27ed2e373
f79a4c8c80be3e51ac2ca7294cec7a8f1779967b
e22ad3c6a1db293720ff9ac2bbf3d84a474cb23fd434f546ded7537c4ffb6632
GET /wp-content/uploads/2021/09/girl-2198018_1280.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 20 Sep 2021 14:58:18 GMT
etag: "f090-5cc6e82e3f680"
accept-ranges: bytes
content-length: 61584
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2
216.58.207.195200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 40144, version 1.0\012- data
Hash 0116041b31726cea3144332b673919e8
c6f0008edefdcf305498582fa145917b7ce420c2
306b0d4768246ba448fa14872f6b5d7dcfcf3734fb3c9b68f9041cf86884c6ce
GET /s/ebgaramond/v26/SlGUmQSNjdsmc35JDF1K5GR1SDk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mes-dents-blanches.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40144
date: Wed, 05 Oct 2022 18:18:20 GMT
expires: Thu, 05 Oct 2023 18:18:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:16:41 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280.jpg
54.36.138.152200 OK 106 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280.jpg
IP 54.36.138.152:0
File type JPEG image data, progressive, precision 8, 1024x459, components 3\012- data
Size 106 kB (105775 bytes)
Hash a613fed94f88492f22966b024173dc46
23d3c5078da02793b95dde6ae4817151e897e395
7ec4569282b3bdd336e3e72933c1f730e9ac7cf13e93b5c52720ee55992d2053
GET /wp-content/uploads/2021/09/beauty-739667_1280.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 20 Sep 2021 14:49:28 GMT
etag: "19d2f-5cc6e634cce00"
accept-ranges: bytes
content-length: 105775
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280-150x150.jpg
54.36.138.152200 OK 4.9 kB URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2021/09/beauty-739667_1280-150x150.jpg
IP 54.36.138.152:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 26c6b2f44c2d7c74f296889b06ca3030
3fa88b5f38a6c09c14a3f71ef031a39388a7e211
7414f9bde7c813a4507ef373e77cd46e500a0a388dd3d59154d704c0b8d89170
GET /wp-content/uploads/2021/09/beauty-739667_1280-150x150.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 20 Sep 2021 14:49:28 GMT
etag: "1317-5cc6e634cce00"
accept-ranges: bytes
content-length: 4887
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F676142f2-cb92-4708-b83c-ad957a033441.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F676142f2-cb92-4708-b83c-ad957a033441.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba5a7ded72f65160b112a3eada922e47
29a97374345ddab39f2bea5644d184d72b9b6ef6
f8d5fed7624f14a31aa11ab47ed445c0561e445f2ead92fa40ae1abda24d2096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F676142f2-cb92-4708-b83c-ad957a033441.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13239
x-amzn-requestid: d2009bdf-f2fa-4733-8587-cbd66965fbfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZYosLHYMIAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6339bb1a-0fce50b634a41f345834b02d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 16:23:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1aZvMRYuhF52yRt4GPH6lwtRlCdW28tRRDBfCK8DElQneJOhbdBhIw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 16:56:26 GMT
age: 4919
etag: "29a97374345ddab39f2bea5644d184d72b9b6ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.mes-dents-blanches.com/wp-content/uploads/2021/09/tooth-2414909_1280.jpg
54.36.138.152200 OK 0 B URL HTTP/2 www.mes-dents-blanches.com/wp-content/uploads/2021/09/tooth-2414909_1280.jpg
IP 54.36.138.152:0
GET /wp-content/uploads/2021/09/tooth-2414909_1280.jpg HTTP/1.1
Host: www.mes-dents-blanches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.mes-dents-blanches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 20 Sep 2021 14:58:19 GMT
etag: "1556e-5cc6e82f338c0"
accept-ranges: bytes
content-length: 87406
cache-control: max-age=31536000
expires: Thu, 05 Oct 2023 18:18:20 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Wed, 05 Oct 2022 18:18:20 GMT
server: Apache/2.4.54 (Debian)
X-Firefox-Spdy: h2