www.cl51727.tw1.ru/hkyu/fp1.php
185.114.245.109200 OK 79 B URL HTTP/1.1 www.cl51727.tw1.ru/hkyu/fp1.php
IP 185.114.245.109:0
File type ASCII text, with no line terminators
Hash 36fb24dd60ea762e720016f7802913e2
d33dd6b3dc4b0307c32dea937a5451e7afad6b63
ba85e6c950121ffb4bef3dc1e02abb1cd68fb55fedf08f63b514f65491710280
GET /hkyu/fp1.php HTTP/1.1
Host: www.cl51727.tw1.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Thu, 23 Mar 2023 08:03:51 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 79
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6282
Expires: Thu, 23 Mar 2023 09:48:33 GMT
Date: Thu, 23 Mar 2023 08:03:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14495
Expires: Thu, 23 Mar 2023 12:05:26 GMT
Date: Thu, 23 Mar 2023 08:03:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 07:15:05 GMT
content-type: application/json
age: 2926
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15331
Expires: Thu, 23 Mar 2023 12:19:23 GMT
Date: Thu, 23 Mar 2023 08:03:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ev05d9ymiEiVvo711Fz5ZcfEDxcUFj7tbjXsX4c6iia+Y1o6AHMBa6RTJsM9IsVwi/+nZtgo6wJSgv1mE5PfZg==
x-amz-request-id: 1PEP15RB21VQP3SR
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 07:59:52 GMT
age: 240
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:03:52 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d85a0c5dbdd6105d70f3de5fb5411b68
4f87ba7fb164aca63645b6a4a7fe7e18c4376b0a
41a73fd656a518110f66e2023fc8cb71be5676366710fe2b718d65c1caa58a8c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41A73FD656A518110F66E2023FC8CB71BE5676366710FE2B718D65C1CAA58A8C"
Last-Modified: Wed, 22 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2635
Expires: Thu, 23 Mar 2023 08:47:47 GMT
Date: Thu, 23 Mar 2023 08:03:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0b1a19b29f02909e48bd3812575c89d0
cf9539ab5ab9d378e3fe1a93a8eea02b0ee69cc2
eb6dd565ad73a03d94aba6d6bece412708be16c972dce65fb8b01caa373abbea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB6DD565AD73A03D94ABA6D6BECE412708BE16C972DCE65FB8B01CAA373ABBEA"
Last-Modified: Thu, 23 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2787
Expires: Thu, 23 Mar 2023 08:50:19 GMT
Date: Thu, 23 Mar 2023 08:03:52 GMT
Connection: keep-alive
www.dagic.duckdns.org/pxek
217.170.197.81301 Moved Permanently 243 B URL HTTP/1.1 www.dagic.duckdns.org/pxek
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7f238ed0a419c0d023a9fc783d551d4a
be31f2349b797de87a41ef26b4b68bf2587e8e53
4e28b79066e7cc497e3ba7290327736827d117a7f55d1e8360ef3e5063f37662
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /pxek HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 243
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://www.dagic.duckdns.org/pxek/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 07:14:33 GMT
age: 2959
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Y7EJYKbFE0dz4gIgpfYV4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5KQXWEbANLAeo5CY7rDUgQ2ekYI=
Date: Thu, 23 Mar 2023 08:03:52 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.dagic.duckdns.org/pxek/
217.170.197.81302 Found 0 B URL HTTP/1.1 www.dagic.duckdns.org/pxek/
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /pxek/ HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/7.4.33
Location: ./acceder/
www.dagic.duckdns.org/pxek/acceder/
217.170.197.81200 OK 32 kB URL HTTP/1.1 www.dagic.duckdns.org/pxek/acceder/
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1498)
Hash eb86445241dee77d443a54de88c9ebb7
0b1ac7f39cbabf049613fc3ab8c908883d81f05e
22e13516246ee5cd3b198f68abef692aa67c49bd0f2e19b090b32dec65eca015
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /pxek/acceder/ HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Thu, 23 Mar 2023 02:48:17 GMT
ETag: W/"2439a-5f7884f0b7970"
Content-Encoding: gzip
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js
217.170.197.81404 Not Found 301 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7d04c75c538b4d0d33a2cf945b5c1f67
8db2ff65fa963fc0531026a96c81f5b8ea570a80
0a6cb3785078343d3808918c2a1c03df792fad0de41d45695847fcf62e5dd940
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 301
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js
217.170.197.81404 Not Found 305 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3ba17cc925aeb5bdc6287d930bb74b04
bb179ff1ebd489c04508422c0745e6a8c6c59afd
ae10cd2febd5e3a7a66eb69131f3390c2d31743034fb01214ef628f457fdcaec
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 305
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js
217.170.197.81404 Not Found 309 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dc22fe25e40debc9b769bc90f4334215
95379ce0ca63fb03bfa74ee8c9b2a53afa28c919
5baa385aaef8b6dd3dd24f850218acd609dc7e0d8559a327ac43984537912d86
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 309
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js
217.170.197.81404 Not Found 314 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ec22933b8d193b8f6050d4c190b04357
a5a990650f4064d25faca0639346b10de61bf120
5c2e644428be4209314b08c62f2618ad03fe617bf388142e6a1ef198fa8ec0f3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 314
Connection: keep-alive
Keep-Alive: timeout=60
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 08:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 08:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps-api-v3/api/js/49/7/intl/fr_ALL/util.js
142.250.74.46200 OK 58 kB URL HTTP/2 maps.google.com/maps-api-v3/api/js/49/7/intl/fr_ALL/util.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (545)
Hash e949f88943dfacc9de865ce530f6227d
28c087b585804636462b262a77bc309355ce1ff0
e618e35870bde1da7a99de3afa73d02156dd0a1603fc3d4e039bcb3891193474
GET /maps-api-v3/api/js/49/7/intl/fr_ALL/util.js HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 58520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 13:17:37 GMT
expires: Thu, 21 Mar 2024 13:17:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 27 Jun 2022 18:58:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 67575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4f8da975927d81564dfffb7816abf526
45a96b982d3b7f754058c61a41a260d2223a2806
0e46ad11b018afa8c638e3f4372f134cc20cca0dcc48a924028e4ce3527d6238
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 00:40:38 GMT
Expires: Wed, 29 Mar 2023 00:40:37 GMT
Etag: "45a96b982d3b7f754058c61a41a260d2223a2806"
Cache-Control: max-age=491204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac5290f9a4db4eb-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4f8da975927d81564dfffb7816abf526
45a96b982d3b7f754058c61a41a260d2223a2806
0e46ad11b018afa8c638e3f4372f134cc20cca0dcc48a924028e4ce3527d6238
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 00:40:38 GMT
Expires: Wed, 29 Mar 2023 00:40:37 GMT
Etag: "45a96b982d3b7f754058c61a41a260d2223a2806"
Cache-Control: max-age=491204,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac5290f9f0db4ed-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 08:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorAccesCRPart.min.ddd3469fd6c3f8f331e0d3b3d56134c3.css
158.191.172.47200 OK 3.3 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorAccesCRPart.min.ddd3469fd6c3f8f331e0d3b3d56134c3.css
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (1706)
Hash 901e90eae4125b35be9a4b2e6c5a3820
455a9708ce7e53bf3a335023646e2d67dd3ecdbd
39eac444c78bbf83d6d638975d560fc834e87ca8d3e2c40eadc0a81dd81bd391
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorAccesCRPart.min.ddd3469fd6c3f8f331e0d3b3d56134c3.css HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:48:13 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:13 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3313
Content-Type: text/css
vha6-origin: cats-rd15-prd
Age: 152139
X-Cache: HIT
X-Cache-Hits: 8487
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_1.js
23.13.251.114200 OK 60 kB URL HTTP/2 cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_1.js
IP 23.13.251.114:0
File type Unicode text, UTF-8 text, with very long lines (57148)
Hash 41723392061bd86649a4f6662175da33
4f0311de09727735aab5b240edefde82ac501635
6dbcac2227ab92b4c4e8767c3b5c70a0309b5b9ae6290d59d25505bfd90ac5be
GET /3315/tc_PortailClientCreditAgricole_1.js HTTP/1.1
Host: cdn.tagcommander.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript
etag: "18a89d71d705ced9b80948cd0e1a42a1+gzip"
last-modified: Thu, 09 Mar 2023 16:28:18 GMT
server: ECS (frb/6776)
vary: Accept-Encoding
x-amz-id-2: xnjs9zK1a2A4VVUoQ19pbGBEJtiD8vKpoa2cuKfppBJey8odSXMJN7YDv1Igba0TQQudl7kRm8I=
x-amz-request-id: J27NZ40YY32T4PS7
x-cdn: VDMS
content-length: 59619
cache-control: must-revalidate, max-age=86400
date: Thu, 23 Mar 2023 08:03:52 GMT
access-control-max-age: 31536000
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
x-ata: nar
X-Firefox-Spdy: h2
cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_4.js
23.13.251.114200 OK 20 kB URL HTTP/2 cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_4.js
IP 23.13.251.114:0
File type Unicode text, UTF-8 text, with very long lines (48499)
Hash 4ab2493c40d5600e40f9cf9bdd4062bc
ebf7786662048db91301cf20c8946f57497e1ad6
4687af3ecf609dbf3336982df4a354fbb76084673334c2cdea9a16ca3f898d1d
GET /3315/tc_PortailClientCreditAgricole_4.js HTTP/1.1
Host: cdn.tagcommander.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript
etag: "025139a95e4d9182989786e56aa9114b+gzip"
last-modified: Wed, 16 Nov 2022 13:50:52 GMT
server: ECS (frb/6725)
vary: Accept-Encoding
x-amz-id-2: TOVDzNvsp9ySLxzGaM3DDWeZtURY/LkGdOQfhEP+NVB5ZIbTgmKiuYZDQbrNqT+LWdLCivTl8Ys=
x-amz-request-id: 23CDZPYHHGZE4Z17
x-cdn: VDMS
content-length: 20387
cache-control: must-revalidate, max-age=86400
date: Thu, 23 Mar 2023 08:03:52 GMT
access-control-max-age: 31536000
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
x-ata: nar
X-Firefox-Spdy: h2
cdn.trustcommander.net/privacy/3315/privacy_v2_64.js
192.229.233.55200 OK 32 kB URL HTTP/2 cdn.trustcommander.net/privacy/3315/privacy_v2_64.js
IP 192.229.233.55:0
File type C source, Unicode text, UTF-8 text, with very long lines (65244)
Hash d34d5bb34b2e04928a49d616a54841b0
0259ce5df399fd34a4a5672189489c4b14ad124f
44ad264e76256a3161c90d8175800ddf506a19ed714aa4425432ea01a53dd5d5
GET /privacy/3315/privacy_v2_64.js HTTP/1.1
Host: cdn.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 31536000
cache-control: max-age=86400, must-revalidate
content-type: application/javascript
date: Thu, 23 Mar 2023 08:03:53 GMT
etag: "81628da2d703db3899b69a8d5cc6d823+gzip"
last-modified: Wed, 26 Jan 2022 10:42:02 GMT
server: AmazonS3
vary: Accept-Encoding
x-amz-id-2: Fu5sbxp1MfdlDxwtVk/f+2ALkRPx4ImgvmXKdpv8yNMtoADC12y0Ny6GOVDhufUZ79OHOJRpdBk=
x-amz-request-id: FFZZ62SEYECQ2VS8
x-cdn: VDMS
content-length: 31827
X-Firefox-Spdy: h2
cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_2.js
23.13.251.114200 OK 59 kB URL HTTP/2 cdn.tagcommander.com/3315/tc_PortailClientCreditAgricole_2.js
IP 23.13.251.114:0
File type Unicode text, UTF-8 text, with very long lines (55153)
Hash 5609194d374a035103be7c30b72170e5
4b225378e8702c659040870291851ecd17051c0d
4db3598b659c10ac66bf5bf8469d05c6e37080082f4ddd0a3f26cb9e6d9400eb
GET /3315/tc_PortailClientCreditAgricole_2.js HTTP/1.1
Host: cdn.tagcommander.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript
etag: "7d401d76319cf0fc83ba24da0bda2048+gzip"
last-modified: Wed, 01 Feb 2023 09:24:58 GMT
server: ECS (frb/6725)
vary: Accept-Encoding
x-amz-id-2: CPvrjk5hv3cULtAxjaSLqwXL7+nX39rNqhdxWVxNetbz25sOEH1TCquw+wFDTDmbp0wqLXeSUFA=
x-amz-request-id: 8NST9HV13V1V8665
x-cdn: VDMS
content-length: 59132
cache-control: must-revalidate, max-age=86400
date: Thu, 23 Mar 2023 08:03:52 GMT
access-control-max-age: 31536000
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
x-ata: nar
X-Firefox-Spdy: h2
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorT33Part.min.1f61aaac8fd08ba4c317656d6f0e4a62.css
158.191.172.47200 OK 4.2 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorT33Part.min.1f61aaac8fd08ba4c317656d6f0e4a62.css
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (1706)
Hash 82ec18c70629e85ea153cb56d72c87ad
5bbc78b8cd58b03d8555146a4c4d46905b8d9001
0061e3d403c7148ed3f9a7bf95e8076563ae484a7b41ab04c42f992b8012cc6e
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorT33Part.min.1f61aaac8fd08ba4c317656d6f0e4a62.css HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 14:22:40 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 14:22:40 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 14:22:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4153
Content-Type: text/css
Age: 150072
X-Cache: HIT
X-Cache-Hits: 37
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/utils.min.423ec59365a85ebded314ad7311ef508.js
158.191.172.47200 OK 3.9 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/utils.min.423ec59365a85ebded314ad7311ef508.js
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (547)
Hash 463049d793eabdbac8ae4e57b2a10ca7
011665ca0f2ca4db6e59f2f3cc3d9ddadbf11730
517abbf818972325e19936a02cac32ea14de3e1af6590ce46a27f35ab1e3dd8f
GET //etc.clientlibs/clientlibs/granite/utils.min.423ec59365a85ebded314ad7311ef508.js HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:13 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:13 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3936
Content-Type: application/javascript
vha6-origin: cats-rd16-prd
Age: 152200
X-Cache: HIT
X-Cache-Hits: 173332
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4f8da975927d81564dfffb7816abf526
45a96b982d3b7f754058c61a41a260d2223a2806
0e46ad11b018afa8c638e3f4372f134cc20cca0dcc48a924028e4ce3527d6238
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 00:40:38 GMT
Expires: Wed, 29 Mar 2023 00:40:37 GMT
Etag: "45a96b982d3b7f754058c61a41a260d2223a2806"
Cache-Control: max-age=491203,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac5290f98290b69-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4f8da975927d81564dfffb7816abf526
45a96b982d3b7f754058c61a41a260d2223a2806
0e46ad11b018afa8c638e3f4372f134cc20cca0dcc48a924028e4ce3527d6238
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 00:40:38 GMT
Expires: Wed, 29 Mar 2023 00:40:37 GMT
Etag: "45a96b982d3b7f754058c61a41a260d2223a2806"
Cache-Control: max-age=491203,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac5290f9fb90b55-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4f8da975927d81564dfffb7816abf526
45a96b982d3b7f754058c61a41a260d2223a2806
0e46ad11b018afa8c638e3f4372f134cc20cca0dcc48a924028e4ce3527d6238
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 00:40:38 GMT
Expires: Wed, 29 Mar 2023 00:40:37 GMT
Etag: "45a96b982d3b7f754058c61a41a260d2223a2806"
Cache-Control: max-age=491203,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac5290fa86eb4f9-OSL
www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/jquery/granite.min.579a107dd681c49bc61dae63734043cb.js
158.191.172.47200 OK 2.0 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/jquery/granite.min.579a107dd681c49bc61dae63734043cb.js
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (697)
Hash 35d8650ef29a52aad843bb646b784af9
fbc8c2d86c3bbc702b136a95a78c1198f16b9702
d7050f67214f0b4bfede756d0674e09b063a059ea1ef19bf1222c5bb03cd190e
GET //etc.clientlibs/clientlibs/granite/jquery/granite.min.579a107dd681c49bc61dae63734043cb.js HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:22 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:22 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2018
Content-Type: application/javascript
Age: 152191
X-Cache: HIT
X-Cache-Hits: 172663
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/jquery.min.aaffcbf7942d5bedb07855e48cbc1afa.js
158.191.172.47200 OK 43 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/clientlibs/granite/jquery.min.aaffcbf7942d5bedb07855e48cbc1afa.js
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (585)
Hash b2cb5ec0df7491a7dbf77c2a096af8bd
cd256128184df9fb517dc69a1922a12660acf004
acd382c682d443f991f484fb5b6325ae8d81cec6c80e970e2e1cb052f5a17635
GET //etc.clientlibs/clientlibs/granite/jquery.min.aaffcbf7942d5bedb07855e48cbc1afa.js HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:21 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:21 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 43442
Content-Type: application/javascript
vha6-origin: cats-rd20-prd
Age: 152192
X-Cache: HIT
X-Cache-Hits: 187544
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertPart.min.d41d8cd98f00b204e9800998ecf8427e.css
158.191.172.47200 OK 25 B URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertPart.min.d41d8cd98f00b204e9800998ecf8427e.css
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
Hash 363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertPart.min.d41d8cd98f00b204e9800998ecf8427e.css HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:16 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:16 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:16 GMT
Content-Type: text/css
vha6-origin: cats-rd18-prd
Age: 152197
X-Cache: HIT
X-Cache-Hits: 170304
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorPart.min.804c7ef8e65f13b908c3b5f2466ea356.css
158.191.172.47200 OK 3.5 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorPart.min.804c7ef8e65f13b908c3b5f2466ea356.css
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (1706)
Hash 9c41da1220fab5dd10021937e88ea886
4b41190295c822768fb9a6247c54f616d49c604b
15ad21a1d66978bafb25b331b65063ca48420072100bf5cf818b576e59403bc9
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorPart.min.804c7ef8e65f13b908c3b5f2466ea356.css HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 00:35:20 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Thu, 02 Mar 2023 22:47:32 GMT
Cache-Control: max-age=2592000
Expires: Fri, 21 Apr 2023 00:35:20 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3506
Content-Type: text/css
vha6-origin: cats-rd14-prd
Age: 1761381
X-Cache: HIT
X-Cache-Hits: 11
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-part.min.6997f510cd1b95aa8cb2ce288417bf45.css
158.191.172.47200 OK 180 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-part.min.6997f510cd1b95aa8cb2ce288417bf45.css
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Unicode text, UTF-8 text, with very long lines (9163), with CRLF, LF line terminators
Size 180 kB (180397 bytes)
Hash 8ca1cef455afec3447854bafb805009b
af10fd939c08de33b578d0990d83a5132259f3b4
e4854a8eb815e14a2eca95e7a093a7e1e63556a075d94877db1f4c10cd8788cd
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-part.min.6997f510cd1b95aa8cb2ce288417bf45.css HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 17:38:04 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Sat, 04 Mar 2023 11:17:25 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 17:38:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
vha6-origin: cats-rd18-prd
Age: 1629987
X-Cache: HIT
X-Cache-Hits: 24
Accept-Ranges: bytes
Content-Length: 180397
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibHeader.min.9b997b2ac9fca6031bd046f1edd29d81.js
158.191.172.47200 OK 21 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlibHeader.min.9b997b2ac9fca6031bd046f1edd29d81.js
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Unicode text, UTF-8 text, with very long lines (543)
Hash 0f9698f3b98184c4f3339a514c6cacd8
b8a401e2b96d9ea931380288dedae8ff0a289ef1
eb205de4970ff5276f5dc203e9a19451147c945dc49024a85b2f42d1611377d6
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlibHeader.min.9b997b2ac9fca6031bd046f1edd29d81.js HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:20 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:20 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:20 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21206
Content-Type: application/javascript
vha6-origin: cats-rd15-prd
Age: 152193
X-Cache: HIT
X-Cache-Hits: 196265
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.credit-agricole.fr//etc/cloudsettings.kernel.js/conf/ca/settings/cloudsettings/default/contexthub
158.191.172.47200 OK 60 kB URL HTTP/1.1 www.credit-agricole.fr//etc/cloudsettings.kernel.js/conf/ca/settings/cloudsettings/default/contexthub
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (646)
Hash 592bc6ccdcb38ae84fb362351943dd30
8d1dac0a1b8b7dfb8995b33053a933074adaa282
494f2cc9f2019e3f7b03a7307dba4ea1c4b88b456be00336b8effaca3e0de43c
GET //etc/cloudsettings.kernel.js/conf/ca/settings/cloudsettings/default/contexthub HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:02:46 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff, nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
ETag: "318f95f8416d7c105c07402de12054baa764f90d-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
Age: 66
X-Cache: HIT
X-Cache-Hits: 3887
Accept-Ranges: bytes
Content-Length: 59672
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-bootstrap-jquery.min.1661914e05c676ce450674555cc1e5b0.js
158.191.172.47200 OK 125 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-bootstrap-jquery.min.1661914e05c676ce450674555cc1e5b0.js
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Unicode text, UTF-8 text, with very long lines (567)
Size 125 kB (125217 bytes)
Hash c8b977e07f47b5618206dc2d3c1ce2bf
3640602e969ea4f811305a51aa97a61f3114ae19
83fd9d50794ef11fc8a202476b193d3dbdd1d016744253fe0f1dca37da8e021b
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-bootstrap-jquery.min.1661914e05c676ce450674555cc1e5b0.js HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:18 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:18 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/javascript
vha6-origin: cats-rd16-prd
Age: 152195
X-Cache: HIT
X-Cache-Hits: 214890
Accept-Ranges: bytes
Content-Length: 125217
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
www.credit-agricole.fr//content/dam/assetsca/npc/logos/logo_ca.png
158.191.172.47200 OK 2.0 kB URL HTTP/1.1 www.credit-agricole.fr//content/dam/assetsca/npc/logos/logo_ca.png
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type PNG image data, 83 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash a5777291aa794d7d07285c839571662a
284f3d6b64462c946a640072bb57e512307bf8ab
1c8399c9f4f09feb8f95fe39465cc7e70597b0097ad92da954db82646ec68dc3
GET //content/dam/assetsca/npc/logos/logo_ca.png HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:05:30 GMT
Content-Length: 2037
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:13 GMT
Content-Type: image/png
Age: 226702
X-Cache: HIT
X-Cache-Hits: 186070
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/autre/images/CA_Logo_seul-1.svg
158.191.172.47200 OK 4.7 kB URL HTTP/1.1 www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/autre/images/CA_Logo_seul-1.svg
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cbaae5274e188fc4d2a7d2ca6bd7315b
42305d482d76c79fe5dcce6e416b79e270b1a41c
496c50651eaf7fb688931365c6b48c921fc33c21d162062e22851f5d2a8c1dfb
GET //content/dam/assetsca/master/public/commun/images/autre/images/CA_Logo_seul-1.svg HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:36 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:36 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:36 GMT
Content-Type: image/svg+xml
vha6-origin: cats-rd19-prd
Age: 152177
X-Cache: HIT
X-Cache-Hits: 44585
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4738
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/autre/images/NPC-logo_Agir_chaque_jour_CA_H_Desktop-1.svg
158.191.172.47200 OK 6.3 kB URL HTTP/1.1 www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/autre/images/NPC-logo_Agir_chaque_jour_CA_H_Desktop-1.svg
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6aad7b35286876f8eaf5bc8ca659e1b5
ea44f6b518e680fb5188f18b8202111aae5034a3
4ecc8a8abebf54ec1c40d1461770ac546fe2397c97f0e696de3879c05d6189fc
GET //content/dam/assetsca/master/public/commun/images/autre/images/NPC-logo_Agir_chaque_jour_CA_H_Desktop-1.svg HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:21 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:15 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:21 GMT
Content-Type: image/svg+xml
vha6-origin: cats-rd14-prd
Age: 152198
X-Cache: HIT
X-Cache-Hits: 50341
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6260
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
www.dagic.duckdns.org/conf/ca/settings/wcm/segments/commun.seg.branche3.js
217.170.197.81404 Not Found 250 B URL HTTP/1.1 www.dagic.duckdns.org/conf/ca/settings/wcm/segments/commun.seg.branche3.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8346785bcc0088882e201bbcfd745d68
b663803592723960763b980bf3035e0720a930dd
e9371cf4d4e0a575357fc8f782237bcf997f2fbd9c0cf76c8e6d1906b160c7ff
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /conf/ca/settings/wcm/segments/commun.seg.branche3.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 250
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/conf/ca/settings/wcm/segments/national.seg.branche3.js
217.170.197.81404 Not Found 252 B URL HTTP/1.1 www.dagic.duckdns.org/conf/ca/settings/wcm/segments/national.seg.branche3.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c1f4b6b4625f41970f1ef2517b7f3dd3
f3b33796be52ef91ec7f32b19e466869086eb4f4
0e20810fd3665f4bb0d64ac2089da3c101ac132752da67906b9cf72797cbd494
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /conf/ca/settings/wcm/segments/national.seg.branche3.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 252
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js
217.170.197.81404 Not Found 301 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7d04c75c538b4d0d33a2cf945b5c1f67
8db2ff65fa963fc0531026a96c81f5b8ea570a80
0a6cb3785078343d3808918c2a1c03df792fad0de41d45695847fcf62e5dd940
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-google-map.min.87a76470d686bc99a65e1f582ee93f13.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 301
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js
217.170.197.81404 Not Found 309 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dc22fe25e40debc9b769bc90f4334215
95379ce0ca63fb03bfa74ee8c9b2a53afa28c919
5baa385aaef8b6dd3dd24f850218acd609dc7e0d8559a327ac43984537912d86
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlibStoreLocatorGeneral.min.fed0763fde2431a7c1b27d703f22ca4e.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 309
Connection: keep-alive
Keep-Alive: timeout=60
www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/zone-de-gauche/connect%C3%A9/acces_cr_part_carre.jpg
158.191.172.47200 OK 244 kB URL HTTP/1.1 www.credit-agricole.fr//content/dam/assetsca/master/public/commun/images/zone-de-gauche/connect%C3%A9/acces_cr_part_carre.jpg
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=791, bps=218, PhotometricIntepretation=RGB, description=Diverse culture people using mobile smartphone outdoor - Happy friends having fun with technology trends - Youth, new generatio, manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, width=1326], progressive, precision 8, 960x960, components 3\012- data
Size 244 kB (243919 bytes)
Hash b259c4797d838add41da1047021d2480
13de10f5a348efa8ff3d856f2e347eeff8a33579
c4966ab5e78e2270952b89576c4a0a386e8a7ea673c56f0f396d620abf4f81b8
GET //content/dam/assetsca/master/public/commun/images/zone-de-gauche/connect%C3%A9/acces_cr_part_carre.jpg HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:14 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:48:14 GMT
Content-Length: 243919
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:14 GMT
Content-Type: image/jpeg
vha6-origin: cats-rd17-prd
Age: 152139
X-Cache: HIT
X-Cache-Hits: 6580
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js
217.170.197.81404 Not Found 305 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3ba17cc925aeb5bdc6287d930bb74b04
bb179ff1ebd489c04508422c0745e6a8c6c59afd
ae10cd2febd5e3a7a66eb69131f3390c2d31743034fb01214ef628f457fdcaec
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-npc-components.min.b6efd65ae8c18d73875a5e228a1dc167.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Cookie: TCPID=123348415645727892
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 305
Connection: keep-alive
Keep-Alive: timeout=60
www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js
217.170.197.81404 Not Found 314 B URL HTTP/1.1 www.dagic.duckdns.org/etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ec22933b8d193b8f6050d4c190b04357
a5a990650f4064d25faca0639346b10de61bf120
5c2e644428be4209314b08c62f2618ad03fe617bf388142e6a1ef198fa8ec0f3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /etc.clientlibs/settings/wcm/designs/ca/npc/clientlibBoutonVertGeneralVitrine.min.6d249ff421b187a168e04f64e3949080.js HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Cookie: TCPID=123348415645727892
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 314
Connection: keep-alive
Keep-Alive: timeout=60
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff2
158.191.172.47200 OK 16 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 16284, version 1.0\012- data
Hash 9182885c98acd43d446eecc7a6e6d902
1665adbb4afbb77f3677be8827b14559db07a1c5
2b50e7a97d37fe560d34b0af009ef7a6af2caa7208518c2570b8205a02ac6299
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:04:36 GMT
Content-Length: 16284
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:12 GMT
Age: 226756
X-Cache: HIT
X-Cache-Hits: 193186
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff2
158.191.172.47200 OK 42 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 41488, version 3.19726\012- data
Hash 68ce85d44fef05344ea74f94f3e6b472
3a380914e04ef35820bbe619e1f902d4b250a997
ba17f8257b1f710aa0e7136f4bd4b91a9a7db4f9cac2c409caf8708a64787303
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:04:36 GMT
Content-Length: 41488
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:12 GMT
Age: 226756
X-Cache: HIT
X-Cache-Hits: 200464
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff2
158.191.172.47200 OK 39 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 39264, version 3.19726\012- data
Hash 003e90cf8cb3f8b4bef30d6764da18ed
512e44f40b54d0e5e081dda9fd5ea8a4429a508c
319881caca6f5f0d1e8e24040579d93386008e39dee1045965124b86303143e1
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:12 GMT
Content-Length: 39264
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:12 GMT
Age: 152201
X-Cache: HIT
X-Cache-Hits: 202591
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
www.dagic.duckdns.org/pxek/acceder/assets/images/favicon.png
217.170.197.81200 OK 3.8 kB URL HTTP/1.1 www.dagic.duckdns.org/pxek/acceder/assets/images/favicon.png
IP 217.170.197.81:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 267 x 189, 8-bit colormap, non-interlaced\012- data
Hash b7d5b0897597e94b4e81263139a76e75
12c509d15f15ba2488749ed522eba9bcebe01582
4610a720b569e2590c46a44bd4541944cb101c5884abe6e1418f92c6d714cd67
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /pxek/acceder/assets/images/favicon.png HTTP/1.1
Host: www.dagic.duckdns.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/pxek/acceder/
Cookie: TCPID=123348415645727892
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 08:03:53 GMT
Content-Type: image/png
Content-Length: 3846
Last-Modified: Thu, 23 Mar 2023 02:48:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "641bbe13-f06"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.credit-agricole.fr/content/dam/assetsca/npc/logos/logo_ca.png
158.191.172.47200 OK 2.0 kB URL HTTP/1.1 www.credit-agricole.fr/content/dam/assetsca/npc/logos/logo_ca.png
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type PNG image data, 83 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash a5777291aa794d7d07285c839571662a
284f3d6b64462c946a640072bb57e512307bf8ab
1c8399c9f4f09feb8f95fe39465cc7e70597b0097ad92da954db82646ec68dc3
GET /content/dam/assetsca/npc/logos/logo_ca.png HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:13 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:05:30 GMT
Content-Length: 2037
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:13 GMT
Content-Type: image/png
Age: 226703
X-Cache: HIT
X-Cache-Hits: 186072
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff2
158.191.172.47200 OK 18 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 18220, version 1.6619\012- data
Hash 1b054d18f01d0ca767e597615795e5b6
c0ea74867c250357d56bb261be5ced26bf4ca8e2
8911d63a11994899445b05a8a49bc5cc9b936263e24b4d1d1ba5ebc6706a984e
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:14 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:05:09 GMT
Content-Length: 18220
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:14 GMT
Age: 226724
X-Cache: HIT
X-Cache-Hits: 8640
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/plain
cdn.trustcommander.net/privacy/3315/privacy_v2_86.js
192.229.233.55200 OK 33 kB URL HTTP/2 cdn.trustcommander.net/privacy/3315/privacy_v2_86.js
IP 192.229.233.55:0
File type C source, Unicode text, UTF-8 text, with very long lines (65244)
Hash 6f01ce5991113a4c967b051a81b5de49
fbf3349e75741bed04e90a0f0dd30811664e8bc0
19e056cf4fd863186f26f8ce9eab2712b35d470f7eb5bf04068c6af5920f998d
GET /privacy/3315/privacy_v2_86.js HTTP/1.1
Host: cdn.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 31536000
age: 77909
cache-control: max-age=86400, must-revalidate
content-type: application/javascript
date: Thu, 23 Mar 2023 08:03:53 GMT
etag: "37b36aedafd3d36ec49d67720179cdd4+gzip"
last-modified: Thu, 22 Sep 2022 07:27:30 GMT
server: ECS (ska/F71D)
vary: Accept-Encoding
x-amz-id-2: 0mCJQ1umkD3dYFhs+L35bMhlghIaEcR8F01I/4mg+1bYOemtAgOSfm4hMI9JcRJ5EauGNALToG0=
x-amz-request-id: YX5Y3HZWE25YKGR2
x-cache: HIT
x-cdn: VDMS
content-length: 32728
X-Firefox-Spdy: h2
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff2
158.191.172.47200 OK 61 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 61364, version 1.0\012- data
Hash 72059a18e01dcfdddfc1b8b1d5f58e73
8de83095b1ac371e24652af35502e1b691ed21b5
9c4e734217f5e99191b4a74930a3d1c20fbbd82c5f5f3fb6d910867c2bd064ce
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:37 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:37 GMT
Content-Length: 61364
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:37 GMT
Age: 152176
X-Cache: HIT
X-Cache-Hits: 5532
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/plain
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff2
158.191.172.47200 OK 62 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format (Version 2), TrueType, length 61548, version 1.0\012- data
Hash e9681ca3d29d814a5621d4764dd1a11e
bbda68459fc0531b915bdf9e524ecc8f782db0aa
51f0bacf9e49a400a5a2947ef6b14127ef3241b0760d97721e0aedd7add66456
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:14 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:14 GMT
Content-Length: 61548
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:14 GMT
Age: 152199
X-Cache: HIT
X-Cache-Hits: 5654
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/plain
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff
158.191.172.47200 OK 56 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 56494, version 3.19726\012- data
Hash e38251871ffb8d2ba109d28d941a9279
f267b04e55c06d29003d64705fd3da709d6c96a1
829cd552114a54a7ecc85a2aed2cd47341b6173ed0dcf395e53c46b51c3a6677
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:14 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:14 GMT
Content-Length: 56494
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:14 GMT
Age: 152199
X-Cache: HIT
X-Cache-Hits: 1311
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-font-woff
status.thawte.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 47d761ec59de669c4b1386efc46b4132
2fc63afe66b4e4f1fcf06ce7f5d5d5222eb2f1f7
8674bd9053cf14015743c2db9fa810dfc2b9fff65d4cc48aab9e79e4c840db0d
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5099
Cache-Control: max-age=122306
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 08:03:53 GMT
Etag: "641b2ec0-1d7"
Expires: Fri, 24 Mar 2023 18:02:19 GMT
Last-Modified: Wed, 22 Mar 2023 16:37:20 GMT
Server: ECAcc (ska/F77E)
X-Cache: HIT
Content-Length: 471
privacy.trustcommander.net/privacy-consent/
15.236.240.30200 OK 43 B URL HTTP/1.1 privacy.trustcommander.net/privacy-consent/
IP 15.236.240.30:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
POST /privacy-consent/ HTTP/1.1
Host: privacy.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 146
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:54 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
cache-control: private, max-age=486000, pre-check=486000
pragma: private
expires: Wed, 21 Jun 2023 08:03:54 GMT
access-control-allow-origin: https://www.dagic.duckdns.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
vary: Origin
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff
158.191.172.47200 OK 19 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 19244, version 1.0\012- data
Hash b8f53c2f3058bc9fc96c1aa607271b5a
716ef31cad57547b326e28f2d6451726603f5521
f2715b2168926671f8ab715f1ea1ccd27a4ac5acbd631d7cda8d5a66e0090b1e
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:42 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 00:57:09 GMT
Content-Length: 19244
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:42 GMT
Age: 198404
X-Cache: HIT
X-Cache-Hits: 1008
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-font-woff
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff
158.191.172.47200 OK 56 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 56110, version 3.19726\012- data
Hash d633886e17bc246faeb0f7bd1ce7522b
28a5abc3eec258ca5f69816e7980ade765605f4a
3b1a769d951ccffffc1cbda9cd9abd3ddc10ca946f9a5c7004b498884c899d10
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:15 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:04:40 GMT
Content-Length: 56110
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:15 GMT
Age: 226753
X-Cache: HIT
X-Cache-Hits: 1336
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-font-woff
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff
158.191.172.47200 OK 54 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 53598, version 3.19726\012- data
Hash e5666d15a28a4c8dced1f506ef64fa34
15204f4e14a22059edd2f14813cd743507ba2624
01e953cb02a4dcac28cf5d8bd3612f1ae47fee64ddbcc7cecb20471980b0bca0
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:14 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:14 GMT
Content-Length: 53598
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:14 GMT
Age: 152199
X-Cache: HIT
X-Cache-Hits: 1163
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-font-woff
privacy.trustcommander.net/privacy-consent/
15.236.240.30200 OK 43 B URL HTTP/1.1 privacy.trustcommander.net/privacy-consent/
IP 15.236.240.30:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
POST /privacy-consent/ HTTP/1.1
Host: privacy.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 146
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:54 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
cache-control: private, max-age=486000, pre-check=486000
pragma: private
expires: Wed, 21 Jun 2023 08:03:54 GMT
access-control-allow-origin: https://www.dagic.duckdns.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
vary: Origin
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff
158.191.172.47200 OK 24 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 24144, version 1.0\012- data
Hash d50de954730eb642cdffcd0d0e84a9f1
f8585463c4b4579e687ad4a89d84e77a3dc48515
f55ae8b3bedf791b4836908c7d2d9d70a49fbbe2611e1cb677dbe8513862f32a
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 14:13:58 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 14:13:58 GMT
Content-Length: 24144
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 14:13:58 GMT
vha6-origin: cats-rd13-prd
Age: 150596
X-Cache: HIT
X-Cache-Hits: 22
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-font-woff
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.otf
158.191.172.47200 OK 54 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type OpenType font data\012- data
Hash 84a0ab805a4956e78381159f4eaa5415
b211a9bc425118d35098da250e75a1924c0e72af
04ea190d230ffec61075268fd5235c11d55121dd5e11d7f511ae14cfe110f6be
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Medium.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:47:24 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:24 GMT
Content-Type: application/vnd.oasis.opendocument.formula-template
Age: 152189
X-Cache: HIT
X-Cache-Hits: 453
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.ttf
158.191.172.47200 OK 20 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.ttf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, npcicons-crunchyRegularnpcicons-crunchynpcicons-crunchyVersion 1.0npcicons-crunchyGenerated by s\012- data
Hash 319cf64dbc2a23f36e33124e03afe8d9
8198df58f8c8ea02ef1da68c916f04675e5ac5c9
ffe0678a237d9adf7589eb9198a4b0e1be31a79509efba01d74e78321fa970ad
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/npcicons-crunchy/npcicons-crunchy.ttf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:49:07 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:04:45 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:49:07 GMT
vha6-origin: cats-rd14-prd
Age: 226749
X-Cache: HIT
X-Cache-Hits: 205
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19531
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-font-ttf
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.otf
158.191.172.47200 OK 51 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type OpenType font data\012- data
Hash 54f78f83bae5976c0b0b84aef27a9571
4cf384ded265b5c48f33bbdf3208b22e032bcefb
a3a2bb7639ee56cd7047989d1f95d9aa74e60161dd105aa7d39a6129e6231028
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Bold.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:55 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:48:55 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:55 GMT
Content-Type: application/vnd.oasis.opendocument.formula-template
vha6-origin: cats-rd13-prd
Age: 152098
X-Cache: HIT
X-Cache-Hits: 219
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7614
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:03:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7614
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:03:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7614
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:03:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7614
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:03:54 GMT
Connection: keep-alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.otf
158.191.172.47404 Not Found 20 B URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Light.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 23 Mar 2023 08:02:59 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff, nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Content-Type: application/vnd.oasis.opendocument.formula-template
Age: 54
X-Cache: HIT
X-Cache-Hits: 8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff
158.191.172.47200 OK 12 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 70184, version 1.10\012- data
Hash 6dced1143932e829d043538d8d5c9aa4
cc006dbddc71a6f5bd6e19ba2d542ff96d6052c4
3eaef6e3fdc59a9e87cb476b40e5a81aa2882fce3a9b3aaef4adad06e89297e4
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:58:42 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:58:42 GMT
Content-Length: 70184
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:58:42 GMT
vha6-origin: cats-rd14-prd
Age: 151512
X-Cache: HIT
X-Cache-Hits: 34
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-font-woff
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31ad983ec21e3dee7b6083bc04742aee
a98933e2845c02158175a54d9648f12086a96569
8cb18730db03dd8727b2ff42ecfa7885b9e8dbe3c37c08b1ad0c67e629338b95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5915
x-amzn-requestid: 1c6acb42-48cc-4113-a8d0-6a811cd16613
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xXaGUVoAMFwIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64156295-0edcaad90df031882fa7457c;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:04:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6f6NSPPmIBAP_pxmZuHRz6WJJjnp3NIO26SNyKYhq2FikQkP5hOe7w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:58:52 GMT
age: 36302
etag: "a98933e2845c02158175a54d9648f12086a96569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.otf
158.191.172.47200 OK 11 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
Hash d4e085a9e8810abac553a55dc366a96c
abf174fb4f1691d471a95aa6a32acf94a74cea1e
08717bc3833096fef5cddd64e5b31c456ad9d4209a6d94a00350c29e5687c6d1
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:48:18 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 13:48:18 GMT
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:48:18 GMT
Content-Type: application/vnd.oasis.opendocument.formula-template
vha6-origin: cats-rd17-prd
Age: 152136
X-Cache: HIT
X-Cache-Hits: 437
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c05bfdf1411a931d8ea9adc64b07bc74
156ef59e53564a4f2b27002b2695fafecd578d82
15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jj5lAwItWYm45j5kLqQnd3fhsiGsiuSiSVtrBUOolyHvPAmCc0S71A==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:54:24 GMT
age: 570
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff
158.191.172.47200 OK 16 kB URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
File type Web Open Font Format, TrueType, length 69884, version 1.10\012- data
Hash 43b8ce6353c3a3a5ec13de2b3f000455
0ce95d800197b878851e52433611b502ec4342a2
ae3288c94aeed438d952d7b271d2605865d8201af9c8fe0a35aaa14cf96b1086
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.woff HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 18:04:54 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Tue, 21 Mar 2023 18:04:54 GMT
Content-Length: 69884
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 18:04:54 GMT
vha6-origin: cats-rd20-prd
Age: 136740
X-Cache: HIT
X-Cache-Hits: 12
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-font-woff
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.otf
158.191.172.47404 Not Found 20 B URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Bold.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 23 Mar 2023 08:02:59 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff, nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Content-Type: application/vnd.oasis.opendocument.formula-template
vha6-origin: cats-rd16-prd
Age: 55
X-Cache: HIT
X-Cache-Hits: 1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.otf
158.191.172.47404 Not Found 20 B URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.otf
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/opensans/OpenSans-Semibold.otf HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 23 Mar 2023 08:02:59 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff, nosniff
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Content-Type: application/vnd.oasis.opendocument.formula-template
Age: 54
X-Cache: HIT
X-Cache-Hits: 8
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f148d2e3cd5679fe5cb9cd58630517c7
b312f7c6526254709a0f7424502952e9eaff9c78
6e98a90935a53caa8871238088e77269e5d7215d16dccabe7e9e4af09f39f7b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: a49dca74-54fa-457c-a5b6-e347fd139d1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8ovEgAIAMFcnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b749e-673461e13b7d2f4e7ad66e7f;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:35:26 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ATbmD8auxaSsKlj6KDtI9biU-euAHDVEIVMiHR7hmroViIWghZUsKQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:45 GMT
age: 37209
etag: "b312f7c6526254709a0f7424502952e9eaff9c78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b71912efe1dac71a6135c9fa5ee00d10
3fc98ad11ab568df8ae11c8399d45e8a407b9eb2
44609192d9a6f853de8ec32176627dd8c0b1bebbbe41dda63da34c3b404783b2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 01:59:25 GMT
Expires: Wed, 29 Mar 2023 01:59:24 GMT
Etag: "3fc98ad11ab568df8ae11c8399d45e8a407b9eb2"
Cache-Control: max-age=495929,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac529191875b4eb-OSL
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 59ce2c74efa5ea7e9e9b7a16793c0ff3
f76d6eb54b9138f6cbe3c8e807a1550f0e67a22b
e90b489b1113999d57e3f2a78ff9f1d2597fec0775b9c3f49068bbf14149c37f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111342
Date: Thu, 23 Mar 2023 08:03:54 GMT
Etag: "641b003c-1d7"
Expires: Fri, 24 Mar 2023 14:59:36 GMT
Last-Modified: Wed, 22 Mar 2023 13:18:52 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v5t_WTELdbRSn6il0y-V67k1mLcSviZW9oqkVTWaN-Il5KAtd8cNtQ==
Age: 6044
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 59ce2c74efa5ea7e9e9b7a16793c0ff3
f76d6eb54b9138f6cbe3c8e807a1550f0e67a22b
e90b489b1113999d57e3f2a78ff9f1d2597fec0775b9c3f49068bbf14149c37f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110627
Date: Thu, 23 Mar 2023 08:03:54 GMT
Etag: "641b003c-1d7"
Expires: Fri, 24 Mar 2023 14:47:41 GMT
Last-Modified: Wed, 22 Mar 2023 13:18:52 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lCm8bBayiFerOmDe3n8KNXnJ26mD4Ya4Qn1cY4PUnMdfUwokrBNdJg==
Age: 5329
botcli.credit-agricole.fr/front/npc-mbot-launcher.js
158.191.139.28200 OK 65 kB URL HTTP/1.1 botcli.credit-agricole.fr/front/npc-mbot-launcher.js
IP 158.191.139.28:0
ASN #9159 Credit Agricole S.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 50e0a7a26cc1dcad5df1d071a4749789
ff9b616c9922895b4150bea395e9967801839f55
f5c1de4b789bdac284a21d7d4a2c7773a37d596d41e1bd8b5587aaf579137e31
GET /front/npc-mbot-launcher.js HTTP/1.1
Host: botcli.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:03:52 GMT
Last-Modified: Wed, 08 Mar 2023 07:07:52 GMT
Vary: Accept-Encoding
ETag: "64083448-26ad3"
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Expires: Thu, 23 Mar 2023 08:18:52 GMT
Cache-Control: public
Access-Control-Allow-Methods: GET, OPTIONS, FETCH
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Accept-Ranges: bytes
Content-Encoding: gzip
Age: 2
Content-Length: 65058
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
credit-agricole.inbenta.com/jsonp/inbenta-1.0.0.js
3.251.34.23200 OK 1.1 kB URL HTTP/2 credit-agricole.inbenta.com/jsonp/inbenta-1.0.0.js
IP 3.251.34.23:0
Hash 332377cbb414d28549b72fd4015d72d5
84d855b3377adf70682f57621cc4edd9c91c0211
0038c442a6769f1d2243cbc36112b9b3c85628e5c3d45d3a4421d14214d94328
GET /jsonp/inbenta-1.0.0.js HTTP/1.1
Host: credit-agricole.inbenta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:03:54 GMT
content-type: application/javascript
content-length: 1072
server: Apache
cache-control: max-age=172800
etag: 1e8fd2283c5e10b97694b3349ca296bc
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
credit-agricole-compagnon.inbenta.com/jsonp/inbenta.js
3.251.34.23200 OK 504 B URL HTTP/2 credit-agricole-compagnon.inbenta.com/jsonp/inbenta.js
IP 3.251.34.23:0
Hash db0a53490b4bed2c069474f6b3e7e60c
2d33f732a9e341533cdde24ec4af3b35cc9cf6fe
83aade01a1089538d7584294ff6221c9549150b08aed6ddb2ae9be8fbfd17942
GET /jsonp/inbenta.js HTTP/1.1
Host: credit-agricole-compagnon.inbenta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:03:54 GMT
content-type: application/javascript
content-length: 504
server: Apache
cache-control: max-age=172800
etag: 4daf5868c340224dbdbe956c4ab44797
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
credit-agricole.inbenta.com/assets/js/inbenta-1.0.0.js
3.251.34.23200 OK 22 kB URL HTTP/2 credit-agricole.inbenta.com/assets/js/inbenta-1.0.0.js
IP 3.251.34.23:0
File type Unicode text, UTF-8 text, with very long lines (32046)
Hash f1edd0f2d689453ea9880eba2a6e72d6
cfb3702c8605fc6231b34e4ea4001ae8e227660e
c60515c5b79e4342b0c4414f39db754e886c86febf4ab5092eb2721830b87871
GET /assets/js/inbenta-1.0.0.js HTTP/1.1
Host: credit-agricole.inbenta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:03:54 GMT
content-type: application/x-javascript
content-length: 22491
server: Apache
last-modified: Thu, 23 Feb 2023 10:51:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
X-Firefox-Spdy: h2
credit-agricole-compagnon.inbenta.com/assets/js/inbenta.js?20220121
3.251.34.23200 OK 11 kB URL HTTP/2 credit-agricole-compagnon.inbenta.com/assets/js/inbenta.js?20220121
IP 3.251.34.23:0
File type Unicode text, UTF-8 text, with very long lines (32047)
Hash 3d5ff97abbe2404d4f174c04197dbe87
20d48901b8c459fc1a9c45079136448a14596a62
7b9c6af1f43b77eafca4b3cf12640dadcc9c271ea6d3100dc8cdd7b06bc3cdbe
GET /assets/js/inbenta.js?20220121 HTTP/1.1
Host: credit-agricole-compagnon.inbenta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:03:54 GMT
content-type: application/x-javascript
content-length: 10720
server: Apache
last-modified: Mon, 06 Mar 2023 15:42:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
X-Firefox-Spdy: h2
logs1410.xiti.com/hit.xiti?s=598954&idclient=a4108a10-a39c-41c9-ace7-51d8377c5fd1&ts=1679558642292&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804027576350&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref=
54.230.217.59200 OK 35 B URL HTTP/2 logs1410.xiti.com/hit.xiti?s=598954&idclient=a4108a10-a39c-41c9-ace7-51d8377c5fd1&ts=1679558642292&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804027576350&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref=
IP 54.230.217.59:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /hit.xiti?s=598954&idclient=a4108a10-a39c-41c9-ace7-51d8377c5fd1&ts=1679558642292&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804027576350&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref= HTTP/1.1
Host: logs1410.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
date: Thu, 23 Mar 2023 08:03:54 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6a0bTqrW-qrRnuDdUKQMPIRIYTu_0-TKe5ie1ShVzhvoo9jgWqR2Rw==
X-Firefox-Spdy: h2
logs1410.xiti.com/hit.xiti?s=598954&idclient=3f4a0274-2ffb-46a2-aa40-4f5834f8add3&ts=1679558642317&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804021886537&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref=
54.230.217.59200 OK 35 B URL HTTP/2 logs1410.xiti.com/hit.xiti?s=598954&idclient=3f4a0274-2ffb-46a2-aa40-4f5834f8add3&ts=1679558642317&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804021886537&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref=
IP 54.230.217.59:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /hit.xiti?s=598954&idclient=3f4a0274-2ffb-46a2-aa40-4f5834f8add3&ts=1679558642317&vtag=5.18.0&ptag=js&r=1280x1024x24x24&re=1280x939&hl=8x4x2&lng=en-US&idp=0804021886537&jv=0&p=Acces_CR&s2=7&vrn=1&x4=[Credit_Agricole]&x5=[store_locator_trouver_ma_CR_50]&x8=[prospect]&x9=[0]&x12=[https://www.dagic.duckdns.org/pxek/acceder/]&x14=[particulier]&stc=%7B%22version_banniere%22%3A%2286%22%2C%22env_entite_ca%22%3A%22Vitrine_Nationale%22%2C%22env_id_CR%22%3A%2298100%22%2C%22page_nom%22%3A%22acces-cr%22%2C%22page_arbo_niveau_2%22%3A%22acces-cr%22%2C%22action_realisee%22%3A%22chargement_page%22%7D&ref= HTTP/1.1
Host: logs1410.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
date: Thu, 23 Mar 2023 08:03:54 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RTIsC6-_ZqEe55VYB8xdisNabfsxAR3Ieq3l5pUTusGkmceuWxXr3g==
X-Firefox-Spdy: h2
credit-agricole-compagnon.inbenta.com/?callback=jQuery22409463492485591656_1679558640931&action=extraInfos&cr=national&browser%5Bname%5D=Netscape&browser%5BcodeName%5D=Mozilla&browser%5Bversion%5D=5.0+(X11)&browser%5Bcookies%5D=true&browser%5BuserAgent%5D=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&_=1679558640932
3.251.34.23200 OK 147 B URL HTTP/2 credit-agricole-compagnon.inbenta.com/?callback=jQuery22409463492485591656_1679558640931&action=extraInfos&cr=national&browser%5Bname%5D=Netscape&browser%5BcodeName%5D=Mozilla&browser%5Bversion%5D=5.0+(X11)&browser%5Bcookies%5D=true&browser%5BuserAgent%5D=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&_=1679558640932
IP 3.251.34.23:0
File type ASCII text, with no line terminators
Hash aa74ef451b2c86e0f54e43fec4f30c20
8a83316c358ece04902ff662e64898da96492002
18d78c7b5135ab43f999bd843354346c5951c7fe202313860752f4e0bdf51673
GET /?callback=jQuery22409463492485591656_1679558640931&action=extraInfos&cr=national&browser%5Bname%5D=Netscape&browser%5BcodeName%5D=Mozilla&browser%5Bversion%5D=5.0+(X11)&browser%5Bcookies%5D=true&browser%5BuserAgent%5D=Mozilla%2F5.0+(Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A105.0)+Gecko%2F20100101+Firefox%2F105.0&_=1679558640932 HTTP/1.1
Host: credit-agricole-compagnon.inbenta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:03:54 GMT
content-type: text/javascript; charset=UTF-8
content-length: 147
server: Apache
set-cookie: PHPSESSID=c8qmeo64nbrqm5n53onotck9u2; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
maps.google.com/maps-api-v3/api/js/49/7/intl/fr_ALL/common.js
142.250.74.46200 OK 0 B URL HTTP/2 maps.google.com/maps-api-v3/api/js/49/7/intl/fr_ALL/common.js
IP 142.250.74.46:0
GET /maps-api-v3/api/js/49/7/intl/fr_ALL/common.js HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dagic.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68963
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 13:17:37 GMT
expires: Thu, 21 Mar 2024 13:17:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 27 Jun 2022 18:58:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 67575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff2
158.191.172.47200 OK 0 B URL HTTP/1.1 www.credit-agricole.fr//etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff2
IP 158.191.172.47:0
ASN #9159 Credit Agricole S.A.
GET //etc.clientlibs/settings/wcm/designs/ca/npc/clientlib-resources/resources/fonts/gotham/Gotham-Book.woff2 HTTP/1.1
Host: www.credit-agricole.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dagic.duckdns.org
Connection: keep-alive
Referer: https://www.credit-agricole.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 13:47:12 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Mar 2023 17:04:36 GMT
Content-Length: 41728
Cache-Control: max-age=2592000
Expires: Thu, 20 Apr 2023 13:47:12 GMT
Age: 226757
X-Cache: HIT
X-Cache-Hits: 208338
Accept-Ranges: bytes
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain