firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 19:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 101fQThq2Pr4N6o5wAixKRMreyt-CBSQkwl1UqTDultYu_qtXrbWAQ==
Age: 2726
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3225
Expires: Wed, 28 Sep 2022 20:54:50 GMT
Date: Wed, 28 Sep 2022 20:01:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LWT8iHkFmkNbYFw84UiynSTObcc-I6buwnXlZTqNQVZYHDS9Lj9M4Q==
age: 52359
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:01:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
65.144.0.116200 OK 49 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type HTML document, ASCII text, with very long lines (49206)
Hash 87ae067168ef8f6d838f070ee796ec12
4d0d486e7fe8d611dac85367267b9cbafa08864f
c53303e382478bf04584ff2b4cf6ea6365e16e367303543ec232fdeeddb37365
Analyzer Verdict Alert openphish Generic/Spear Phishing
fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/index.html HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: text/html
Content-Length: 49207
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 19:29:33 GMT
Expires: Wed, 28 Sep 2022 20:26:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jp-7evwL181vJu66Yaj_i12CSbqbw9rTQ_aGDjICG1whLIKfDZDQMw==
Age: 1892
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/push-download-app-mobile.css
65.144.0.116200 OK 3.7 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/push-download-app-mobile.css
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
Hash 00ff3ad936011e91bbc864091f343a0e
d92c6d15c2733e839022e19a2466ce352e3bb7f6
2959bf26d16e9895f197fcd9237cbe561ffe3f3c863e61fcb571d5851d01946f
GET /wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/push-download-app-mobile.css HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: text/css
Content-Length: 3745
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/layer-responsive.css
65.144.0.116200 OK 4.7 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/layer-responsive.css
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (655)
Hash 8d83c7b5ed2f93ff72cd337492d7862a
d04889eef207de8d2cac406816919c6fdec2172b
2ad1aef5d85b1a3bef999b2be42e8f17c6212b51988abf50aa37d4b2ab2890a3
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/layer-responsive.css HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: text/css
Content-Length: 4653
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-v2-script.js
65.144.0.116200 OK 2.6 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-v2-script.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
Hash 41b1db7d0b74423b6b8c8c577c1d9161
84661491177cdb52590cbd42562b519acbe56014
c2e02c70c2c45e9be92a0b533b31c1acd42dd99949df36731944d8fd2a1bb380
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-v2-script.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: application/javascript
Content-Length: 2609
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-jquery.placeholder.js
65.144.0.116200 OK 3.5 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-jquery.placeholder.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (963)
Hash 1eb0d9b9d3244b606582dbd992bd2ef7
5b1454a9b01cc2efd4143b5869d0ae40d6ee4645
ecbfc6603df8a516ae88bab0a7b85ccd5c77416faf0f40ca3a0beb0be4523763
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/mire-jquery.placeholder.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: application/javascript
Content-Length: 3488
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/resources/ist/loader.sfr.min.js
65.144.0.116200 OK 3.3 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/resources/ist/loader.sfr.min.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type HTML document text\012- HTML document, ASCII text, with very long lines (1098)
Hash 6649d91a79fce95a6b589c7da7df8031
ac4ac3bd2bdc9f4bd7ba57eacb0272a90ce622e3
5b6e2fb597ec0bd5b964bdd103b22d2233101966dfbcaf4bb9cf5ba693807cb3
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/resources/ist/loader.sfr.min.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: application/javascript
Content-Length: 3308
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6274
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:01:06 GMT
Last-Modified: Wed, 28 Sep 2022 18:16:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive.css
65.144.0.116200 OK 32 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive.css
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (590)
Hash c6ec68b39a6e2508f56dc2e739f27efb
fa703f4ba120c5b22ea2cb456908f8d4ecafadc8
1dae88ef94ec673a92828dd2e460f71c96c3532487597ba52df67cd23c84e9b0
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive.css HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: text/css
Content-Length: 32462
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/www.google.com/recaptcha/api.js
65.144.0.116200 OK 850 B URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/www.google.com/recaptcha/api.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (850), with no line terminators
Hash 6030532d7a91076541b3bdaff4737aa5
645a6edc064e7fcd4ba6f7ebe3e3d249d2c3479b
dd41cc9723bd22c18d4d49b624afa612e85121d69dea2aba27dc20795002e7ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/www.google.com/recaptcha/api.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: application/javascript
Content-Length: 850
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/js/push-download-app/push-download-app-mobile.js
65.144.0.116200 OK 1.9 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/js/push-download-app/push-download-app-mobile.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
Hash aaa2ff53359f52c1026c12275493ff60
f1884d6a8a2796121befebb630dd4ea585a7f8de
f28e40ed1ada3853c974530a3c11deb17b36c3be65d435793b0395d414b047d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/js/push-download-app/push-download-app-mobile.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: application/javascript
Content-Length: 1911
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/header.js
65.144.0.116200 OK 125 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/header.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type Unicode text, UTF-8 text, with very long lines (1988)
Size 125 kB (124839 bytes)
Hash d23d75087d2520edc0c9e9517478ba0b
b01ec62f7439d0221ec64c91fa7a81dcbe49b90c
11a39f3c0f0ac35e1d2b13d59adc494a5d73305d429a3704ccd15941535fa13e
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/header.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: application/javascript
Content-Length: 124839
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/buttons.css
65.144.0.116200 OK 48 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/buttons.css
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (650)
Hash 073120bfdede91368b7beef0987d59d7
175a99fb4c948c4d0b95cadd027d81dc6e571de9
6eeb5afa3fb7660724ce4352cef925e9b62518993f7d19cced6a54df608cb107
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/buttons.css HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:05 GMT
Content-Type: text/css
Content-Length: 48202
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive-update.css
65.144.0.116200 OK 1.9 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive-update.css
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (343)
Hash 53ac2fb54e069075957483dd2bb1ff8d
14f84e5dd3df653fed54ed3d5cf44578470d894c
c1f711b661bb3d0ad380f2b883ac8d0c966af3e943b2252c3036170689e4f0e4
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive-update.css HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: text/css
Content-Length: 1942
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6E17mp5+zEMX+ADlM7twXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lKDi5ANXAsk9gGbNRs0Gjdl/VeA=
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/bitmap.png
65.144.0.116200 OK 17 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/bitmap.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type PNG image data, 405 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ea20a71ad35a1d2e9c40923e445c33d
8a2618846989a23472f070eb3ef6ffec9587608a
2f587f735f5e096ac920ab3d511e60893f7693ee9f010581d8a54b10a2cc36c2
GET /wp-admin/sfr/www.sfr.fr-login-return_url/images/bitmap.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: image/png
Content-Length: 17338
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/google-play-badge.png
65.144.0.116200 OK 19 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/google-play-badge.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type PNG image data, 408 x 126, 8-bit/color RGBA, non-interlaced\012- data
Hash b3f3cd3e1002a2a2dd9e7d8a3c55fd71
413bcc175a8aa51ab83e9bc14f0a27ef24bef217
63fb569879b521803347af90744dcaa974768c9d4296874723c66bbee5269a89
GET /wp-admin/sfr/www.sfr.fr-login-return_url/images/google-play-badge.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: image/png
Content-Length: 19075
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/layer-content-1.jpg
65.144.0.116200 OK 28 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/layer-content-1.jpg
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x111, components 3\012- data
Hash 43d37376f3e9f6de565652ca90e43a7b
85b1055063df606d2ceeeb2e5bd49c30260e1f82
149aa738b1cd062359330f7705f4a22684fa3f14e647120e28067a0a4fb064f2
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/layer-content-1.jpg HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: image/jpeg
Content-Length: 28047
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/footer.js
65.144.0.116200 OK 88 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/footer.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
Hash 62de0a352959115db2dfb47125e53649
5cf3726bd2d36110834a43b750742dd80021aa63
1fa1585e220a6202f5b30567404808dcf253006b2d55819666fbd4c6b6591ed1
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/stats/footer.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: application/javascript
Content-Length: 87478
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/visuel-mon-compte-ios-new-black.png
65.144.0.116200 OK 37 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/images/visuel-mon-compte-ios-new-black.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type PNG image data, 600 x 408, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f59949766d385f52690825678af0ff6
1e35bce3078ed5fda38ace56ed6217200dabbe51
d1e6a5f0b2dfb9c509b5d8cece61d024486ae5d3ee8ce70b92a111e8917c199c
GET /wp-admin/sfr/www.sfr.fr-login-return_url/images/visuel-mon-compte-ios-new-black.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: image/png
Content-Length: 37092
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/jquery-1.10.2.min.js
65.144.0.116200 OK 93 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/jquery-1.10.2.min.js
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type ASCII text, with very long lines (32072)
Hash 628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/js/jquery-1.10.2.min.js HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:06 GMT
Content-Type: application/javascript
Content-Length: 93107
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
static.s-sfr.fr/resources/ist/param.sfr.min.js
93.20.64.1200 OK 3.4 kB URL HTTP/1.1 static.s-sfr.fr/resources/ist/param.sfr.min.js
IP 93.20.64.1:0
File type Unicode text, UTF-8 text, with very long lines (1687)
Hash da98a7c0a2189709a2ad1ec25398b7fb
b11a06b670e14191d01550337ba23a6b5a15e30e
d26cb958890a1564936bee3df8221e5b406a4dfa6899b736db1a69e56a93da1b
GET /resources/ist/param.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
date: Wed, 28 Sep 2022 19:08:54 GMT
expires: Wed, 28 Sep 2022 21:08:54 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 466578303 470137113, 299098304 319264264
Age: 3131
Via: rtm, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/resources/ist/ist.sfr.min.js
93.20.64.1200 OK 7.1 kB URL HTTP/1.1 static.s-sfr.fr/resources/ist/ist.sfr.min.js
IP 93.20.64.1:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (728)
Hash c409887dcb8a040a47d21502875a4a65
60142588c915645f0d153d989c1b30de915610c6
c1a8a5152a7cbc95181c83a72b053a9bdece8f233dc60a5899cdca40ca028c15
GET /resources/ist/ist.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=UTF-8
date: Wed, 28 Sep 2022 19:21:52 GMT
expires: Wed, 28 Sep 2022 21:21:52 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 772223803 759193032, 869497407 867689082
Age: 2353
Via: rtm, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/resources/js/frameworks/jquery/sfr.jquery.js
93.20.64.1200 OK 41 kB URL HTTP/1.1 static.s-sfr.fr/resources/js/frameworks/jquery/sfr.jquery.js
IP 93.20.64.1:0
File type ASCII text, with very long lines (32023)
Hash 9d5ed5f832c98a6f409f5b38c5d23428
5d61ec5d863d13331b490149acf7211a097d441b
07749927b3d36fab835379eefb09930ac09885764ca3db11b07f40059688c5dd
GET /resources/js/frameworks/jquery/sfr.jquery.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/javascript;charset=UTF-8
date: Wed, 28 Sep 2022 19:47:08 GMT
expires: Wed, 28 Sep 2022 21:47:08 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Wed, 24 Aug 2022 03:57:40 GMT
Content-Encoding: gzip
X-Varnish: 871290227 887931150, 331219445 308280218
Age: 837
Via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Content-Length: 40836
Connection: keep-alive
static.s-sfr.fr/resources/js/global.sfr.min.js
93.20.64.1200 OK 62 kB URL HTTP/1.1 static.s-sfr.fr/resources/js/global.sfr.min.js
IP 93.20.64.1:0
File type Unicode text, UTF-8 text, with very long lines (532)
Hash 34ad289daf610bf88ca84781fe2ba9c8
6daaeaba5f3a47273af605560159aa2c8b09f383
3732048d391b836bb369f350865f3adf0cdbce43d9ac809370e889c58b151997
GET /resources/js/global.sfr.min.js HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/javascript;charset=utf-8
content-encoding: gzip
date: Wed, 28 Sep 2022 19:52:41 GMT
expires: Wed, 28 Sep 2022 21:52:41 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
Content-Length: 61786
X-Varnish: 477832536 476723859, 331219447 320944753
Age: 505
Via: rtm, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/resources/css/global.sfr.min.css
93.20.64.1200 OK 64 kB URL HTTP/1.1 static.s-sfr.fr/resources/css/global.sfr.min.css
IP 93.20.64.1:0
File type ASCII text, with CRLF, LF line terminators
Hash 5daa905e8e1e81d9f06f0901161f745b
482e2a7c789f00e268417937dc7ca92239189150
63f5ded0a32ef3edb60936e34fa3855927c6c891cda4cdbc961dd934bce3d9c3
GET /resources/css/global.sfr.min.css HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: text/css;charset=utf-8
date: Wed, 28 Sep 2022 18:29:50 GMT
expires: Wed, 28 Sep 2022 20:29:50 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 953084949 1049250839, 885897984 699789119
Age: 5475
Via: rtm, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh
93.20.64.1200 OK 7.2 kB URL HTTP/1.1 static.s-sfr.fr/export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh
IP 93.20.64.1:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26835), with no line terminators
Hash 8b38d61dfb97271ff9a0311468d64d4a
f8b47eeaba504ac7da22cb60b45f8b91653300c4
11ec235d81e145f04b88aa4448638ccfbdea16c0b296ef554266f36e7bf51392
GET /export/bloc/django/resolution/desktop/header.standard.json?callback=cbRNh HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
date: Wed, 28 Sep 2022 18:47:45 GMT
expires: Wed, 28 Sep 2022 20:47:45 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Wed, 21 Sep 2022 03:51:48 GMT
X-Varnish: 1051648408 1054518471, 871857910 879177087
Age: 4399
Via: front101-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/eye.svg
93.20.64.1200 OK 1.3 kB URL HTTP/1.1 static.s-sfr.fr/media/eye.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1347)
Hash f0cfe3a9a42af65f25940f16c9159abb
a8b99c60c485220314cb36899e969b08ea63a4a1
aa1b53966b4825bb1c2245ff2f3195dcf0ab167426b03ba061e2e025a6905d1c
GET /media/eye.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 311632626 308137390, 871857911 561633311
Age: 211794
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/export/bloc/django/ckcsfrg.json?callback=_eT.IstF
93.20.64.1200 OK 2.1 kB URL HTTP/1.1 static.s-sfr.fr/export/bloc/django/ckcsfrg.json?callback=_eT.IstF
IP 93.20.64.1:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (4482), with no line terminators
Hash efc9eb910be9160ba9b093aa9996fe2e
365a9efdfa37115cba533f9ca04e2c12e125bac6
f55427db7ecf55ee474da92de17dabfef6b09a1d9805128bca4febced66c188a
GET /export/bloc/django/ckcsfrg.json?callback=_eT.IstF HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
date: Wed, 28 Sep 2022 18:58:10 GMT
expires: Wed, 28 Sep 2022 20:58:10 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Mon, 26 Sep 2022 03:59:58 GMT
X-Varnish: 775227341 773271730, 871857912 884251894
Age: 3775
Via: front101-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/resources/font/sfr-1.0-bold-webfont.woff
93.20.64.1200 OK 35 kB URL HTTP/1.1 static.s-sfr.fr/resources/font/sfr-1.0-bold-webfont.woff
IP 93.20.64.1:0
File type Web Open Font Format, TrueType, length 34860, version 1.0\012- data
Hash 58c79734d98e0db2f2eb8fb60d05caca
fac4595ecec39061ed499596c58441385d8d5b6e
d1d5dad65e744e1812f2f9b88a700d9fe6ef30e43db3e8ca16c3a076d1bcda5e
GET /resources/font/sfr-1.0-bold-webfont.woff HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://static.s-sfr.fr/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=28800, public
content-type: font/woff
date: Wed, 28 Sep 2022 14:14:25 GMT
expires: Wed, 28 Sep 2022 22:14:25 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Wed, 21 Sep 2022 03:50:06 GMT
content-length: 34860
X-Varnish: 463733133 457361392, 320911947 159527380
Age: 20801
Via: front201-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/resources/font/sfr-1.0-regular-webfont.woff
93.20.64.1200 OK 35 kB URL HTTP/1.1 static.s-sfr.fr/resources/font/sfr-1.0-regular-webfont.woff
IP 93.20.64.1:0
File type Web Open Font Format, TrueType, length 34968, version 1.0\012- data
Hash 04dee8f5360b71969e9ab8243e986581
7de09d4e1417e84af79dade872e52c9bdb92cc55
5f618841c21775f839c5d4fdf8263c31100724110a105a9ab356b5e00f084ddd
GET /resources/font/sfr-1.0-regular-webfont.woff HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://static.s-sfr.fr/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=28800, public
content-type: font/woff
date: Wed, 28 Sep 2022 18:52:56 GMT
expires: Thu, 29 Sep 2022 02:52:56 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Wed, 24 Aug 2022 03:57:41 GMT
content-length: 34968
X-Varnish: 772256427 769783459, 893490573 873316692
Age: 4090
Via: front101-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/resources/font/SFR-Light.woff
93.20.64.1200 OK 35 kB URL HTTP/1.1 static.s-sfr.fr/resources/font/SFR-Light.woff
IP 93.20.64.1:0
File type Web Open Font Format, TrueType, length 34624, version 1.0\012- data
Hash c38af555e5c32e0024c9d01c2d0f1958
5cfb6431d37726c56f5a42587bb842911ba35142
cedecdcee48fedb2079b43e5210b5f888512766db3166b78d67bca289ab6e3af
GET /resources/font/SFR-Light.woff HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://static.s-sfr.fr/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=28800, public
content-type: font/woff
date: Wed, 28 Sep 2022 15:36:25 GMT
expires: Wed, 28 Sep 2022 23:36:25 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Mon, 26 Sep 2022 03:56:55 GMT
content-length: 34624
X-Varnish: 872873794 880843049, 328865038 12300128
Age: 15881
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/hs-logo.svg
93.20.64.1200 OK 725 B URL HTTP/1.1 static.s-sfr.fr/media/hs-logo.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (864)
Hash 343a577a9ad4d6ca886912ff84bc9c17
0bb11973d529baa4a87536f22518894f4eb32fc0
5e5fba68be95b1882e904aa4ece5647fc159445580edf163752482fd73c815a6
GET /media/hs-logo.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 972355642 973424351, 871857913 581862127
Age: 211795
Via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-search.svg
93.20.64.1200 OK 277 B URL HTTP/1.1 static.s-sfr.fr/media/hs-search.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 73624e9c883eb1182e75cf8ed5438fb7
48b3daabc18ade9fa750531b45d183df57834616
60e72b148cd2f3dee867ebe3ce482f58f947928410ad2010b8a7e10a18d6236d
GET /media/hs-search.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 970928229 973235231, 871857914 483385742
Age: 211795
Via: front101-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-plus.svg
93.20.64.1200 OK 237 B URL HTTP/1.1 static.s-sfr.fr/media/hs-plus.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash fa1bd3a8f9b38f9b71c64988b2b90dcf
145e932e9806b39c5acbaa8fdf4f2dbabb61acff
b55cbba48328719b2ae20e8903f12ce9b23b17c498657fd71b867d2231c84dde
GET /media/hs-plus.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 741916831 744790548, 321172411 11643990
Age: 211795
Via: front101-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-actus.svg
93.20.64.1200 OK 1.3 kB URL HTTP/1.1 static.s-sfr.fr/media/hs-actus.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 67a4aa34b1231295380ac51344cd8454
b3c554f26d3ec316dce3a5ce4fecb400b2f3da6c
5c6fd17dfe768ec4313c23717ccf9847b78791d902c817b0de7f07c2e2b668c5
GET /media/hs-actus.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 306700003 305451418, 299098315 1053246641
Age: 211795
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/sprite-mire-2016.png
65.144.0.116200 OK 30 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/sprite-mire-2016.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type PNG image data, 100 x 2180, 8-bit/color RGBA, non-interlaced\012- data
Hash d45496ab3134c90d2e04415304fb7efb
8e19a165c085024c1e8a495acd8a364c0701c0f3
4adf762670da7e1a8bc8e7a0de36f2b61742fe02fe23234e57f5a206263f40bf
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/sprite-mire-2016.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive.css
Cookie: eTagAB=59; eTab240=1; eTab243=2; eTab324=2; eTab320=2; eTab326=2; eTab331=3; eTab338=2; eTab346=7
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:07 GMT
Content-Type: image/png
Content-Length: 30033
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/bg-croix.png
65.144.0.116200 OK 1.7 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/bg-croix.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type PNG image data, 320 x 71, 8-bit/color RGBA, interlaced\012- data
Hash 575c7ef0886bd7f88649ad0b9ac4cc8d
877ba085951289e3c190f256a6d6e8c3a90289b7
1cc4c0a338c295fbf4578a1c4a6b8a9a49bbf7b8aa0a673da0d9d025c8f921af
GET /wp-admin/sfr/www.sfr.fr-login-return_url/static.s-sfr.fr/media/bg-croix.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/s1.s-sfr.fr/cas/css/style-responsive.css
Cookie: eTagAB=59; eTab240=1; eTab243=2; eTab324=2; eTab320=2; eTab326=2; eTab331=3; eTab338=2; eTab346=7
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:07 GMT
Content-Type: image/png
Content-Length: 1672
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
metrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210302 Found 0 B URL HTTP/1.1 metrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: metrics.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 302 Found
access-control-allow-origin: *
vary: Origin
date: Wed, 28 Sep 2022 20:01:07 GMT
content-type: text/plain;charset=utf-8
expires: Tue, 27 Sep 2022 20:01:07 GMT
last-modified: Thu, 29 Sep 2022 20:01:07 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi=[CS]v1|319A5401D75950C8-60000C81C9C3C40D[CE]; Path=/; Domain=sfr.fr; Max-Age=34000000; Expires=Fri, 27 Oct 2023 08:27:27 GMT;
location: http://metrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&pccr=true&vidn=319A5401D75950C8-60000C81C9C3C40D&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
static.s-sfr.fr/media/hs-tv.svg
93.20.64.1200 OK 891 B URL HTTP/1.1 static.s-sfr.fr/media/hs-tv.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0ec5b5ae07c8d40c8fa3a24e555e8745
9961dfec6daab0f4ecbab0877d868a556f25facc
38e1bb2dd470665f008d69a3f51e563d343ac90ee72123bba2bb2620b0b38be2
GET /media/hs-tv.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 743939562 694779499, 871857915 512676381
Age: 211794
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-cloud.svg
93.20.64.1200 OK 1.1 kB URL HTTP/1.1 static.s-sfr.fr/media/hs-cloud.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 37a507787c809a3f1a6570f5dd5bac0f
e596d632cae13df6993d19b3f2b28b618703aae9
32342bdd9b98d1f9a0ac802a643155067dad57e243aa6fc2a0669c634c48be03
GET /media/hs-cloud.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 210237054 305854355, 321172412 6804375
Age: 211795
Via: front101-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-boutique.svg
93.20.64.1200 OK 403 B URL HTTP/1.1 static.s-sfr.fr/media/hs-boutique.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Hash a89fb84ae5821109a62478163aa1426f
2bdda339ac5b9ceb2f138621e7963a5c030dd571
cb0f1f9aed6edd38642e4d0b73293444feea62b1dd08ca8f1cffe4bb72109d66
GET /media/hs-boutique.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:12 GMT
expires: Mon, 03 Oct 2022 09:11:12 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 972355661 969895133, 894895269 569896132
Age: 211794
Via: front101-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-home.svg
93.20.64.1200 OK 712 B URL HTTP/1.1 static.s-sfr.fr/media/hs-home.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d789bdbac4fae81ef1903fa77d7d115f
98bdbf4097c784d88f12bc80261caa7a9c5ebb89
0e036ed2c703644c50defeee972193a228f17dc087bdd1d5f6282db26ea2f7aa
GET /media/hs-home.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 739762376 740385692, 299098316 1055236186
Age: 211795
Via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-handicap.svg
93.20.64.1200 OK 350 B URL HTTP/1.1 static.s-sfr.fr/media/hs-handicap.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 310d470c5376ba0678e963886e55616f
42b8a5d84b89c7fbcdc62f5e13cb78197a19a7e5
3fff4ed41d7d6484afcc169668b90df6d4878e9a5344ed22d200f9cdd42e8eae
GET /media/hs-handicap.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 302412615 98353406, 324871603 9025001
Age: 211795
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-aide.svg
93.20.64.1200 OK 740 B URL HTTP/1.1 static.s-sfr.fr/media/hs-aide.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (593)
Hash 12b3998bd3d9cc090094f482f35f8bd5
44cd4a5474ef2f5f906bdfe0c87072191ba24c0d
b8a5b2d067d86a078dedd139320a38bbee84f2f75a4f67797453707e9cfd853e
GET /media/hs-aide.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 743643765 739927882, 307615989 1008126649
Age: 211795
Via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-panier.svg
93.20.64.1200 OK 388 B URL HTTP/1.1 static.s-sfr.fr/media/hs-panier.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 38f98bba56b6c781c7494cb8b96e249b
6eef145e3e45916ec86c4f69c489baf209ca67f4
62028badb785574d38b1843e9ec550a94b57e7780bbfeae33a9f8b24961f622b
GET /media/hs-panier.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 976916467 973131395, 871857916 568745538
Age: 211795
Via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-mail.svg
93.20.64.1200 OK 325 B URL HTTP/1.1 static.s-sfr.fr/media/hs-mail.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 74e800e83e4885dc389aabb9eea594b0
327abcd9f07bcd609b71ad6b23f83e77ddce2998
8045ae5b4e9d7a3464a8f26a814a5d0fa221eaeb33f0f7a338159b421d8ec9b1
GET /media/hs-mail.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 742830801 745442020, 321172413 1017927785
Age: 211795
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/sfr-regular.woff2
93.20.64.1200 OK 16 kB URL HTTP/1.1 static.s-sfr.fr/media/sfr-regular.woff2
IP 93.20.64.1:0
File type Web Open Font Format (Version 2), TrueType, length 16500, version 1.0\012- data
Hash ea67ea298e5118937acaa8cb7476aa7f
b366e4df2081c99d7cb5d6e50c8d0bde1b5b497b
59852259d509f9853b168085de97a9fbe6fa7fd4b390ef1eb8aa19d99699caaa
GET /media/sfr-regular.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 28 Sep 2022 14:56:50 GMT
expires: Wed, 28 Sep 2022 22:56:50 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 16500
X-Varnish: 459397662 453869442, 887991128 848093615
Age: 18256
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/hs-ec.svg
93.20.64.1200 OK 335 B URL HTTP/1.1 static.s-sfr.fr/media/hs-ec.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 9ff54c15a8204c39e0d30fb3f201e583
830b0b5e80d03e3357d77f770bf91d6f1eea0abd
c73e0cd73064ec5bbc367198d70198f9bc3c86a0b3ec7243cc9b4288a0a293f4
GET /media/hs-ec.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 974861838 969895126, 894895270 502112788
Age: 211795
Via: front200-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-x.svg
93.20.64.1200 OK 223 B URL HTTP/1.1 static.s-sfr.fr/media/hs-x.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 320e37f46d31dc1f89d38d852bc35200
716d8aca5ad5db6160e4a0db76abeb9e7f42e142
33dbd34fea43e6688d2ec86831fc8f875198bda8028d8d10270a29e87f81b37a
GET /media/hs-x.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 745215087 745638798, 299098317 1049309794
Age: 211795
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/sfr-bold.woff2
93.20.64.1200 OK 16 kB URL HTTP/1.1 static.s-sfr.fr/media/sfr-bold.woff2
IP 93.20.64.1:0
File type Web Open Font Format (Version 2), TrueType, length 16196, version 1.0\012- data
Hash 6f05f089a06456a6f08c631516f7fb9b
8911d205e45b351f53eeb575fbd68926ababf0ce
897ed6430478b1a5e3e6b7895781e741ab26625c034c5d7473c4d355b8ffef83
GET /media/sfr-bold.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 28 Sep 2022 14:35:43 GMT
expires: Wed, 28 Sep 2022 22:35:43 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 16196
X-Varnish: 871917149 876160723, 322745124 453432357
Age: 19523
Via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
www.sfr.fr/eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
80.125.163.172301 Moved Permanently 162 B URL HTTP/1.1 www.sfr.fr/eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
IP 80.125.163.172:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 301 Moved Permanently
Server: SFR Reverse Proxy
content-type: text/html
date: Wed, 28 Sep 2022 20:01:07 GMT
Location: https://www.sfr.fr/eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
via: http50-piw-pr, front201-piw-pr
Set-Cookie: X-Mapping-oejdnnie=853B0883C5B6803741BA66AA9F9FFF2E; path=/
content-length: 162
metrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&pccr=true&vidn=319A5401D75950C8-60000C81C9C3C40D&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210200 OK 43 B URL HTTP/1.1 metrics.sfr.fr/b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&pccr=true&vidn=319A5401D75950C8-60000C81C9C3C40D&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/sfrunvglobprod/1/JS-2.12.0/s07692508075591?AQB=1&pccr=true&vidn=319A5401D75950C8-60000C81C9C3C40D&ndh=1&pf=1&t=28%2F8%2F2022%2020%3A1%3A4%203%200&fid=0AE32499133E092A-2EAA810B7D6898D7&vmt=4CCBEF5D&vmf=sfr.122.2o7.net&ce=UTF-8&ns=sfr&cl=34000000&pageName=Web%2FTransverse%2FAuthentification%2FMon%20Compte&g=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&cc=EUR&ch=Transverse&server=thedallescollision.com&events=event53%2Cevent45%2Cevent47&c1=Transverse%3AAuthentification&h1=Web%2FTransverse%2FAuthentification&c2=Transverse%3AAuthentification%3AMon%20Compte&c10=1&v10=1&v11=D%3Dc1&v12=D%3Dc2&v16=X&c18=99&v18=99&c19=99&v19=99&c27=HTTP&v29=D%3DpageName&c33=Mozilla_5.0_%28X11_Linux_x86_64_rv_96.0%29_Gecko_20100101_Firefox_96.0&v39=Tape%2FMarque&c40=D%3DpageName&v40=Tape%2FMarque&v45=D%3DpageName&v50=Tape%2FMarque&c55=%7C240-1%7C243-2%7C324-2%7C320-2%7C326-2%7C331-3%7C338-2%7C346-7%7C&v55=D%3Dc55&c64=Tape%2FMarque&c73=http%3A%2F%2Fthedallescollision.com%2Fwp-admin%2Fsfr%2Fwww.sfr.fr-login-return_url%2Findex.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: metrics.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://thedallescollision.com/
Connection: keep-alive
HTTP/1.1 200 OK
access-control-allow-origin: *
date: Wed, 28 Sep 2022 20:01:07 GMT
expires: Tue, 27 Sep 2022 20:01:07 GMT
last-modified: Thu, 29 Sep 2022 20:01:07 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi=[CS]v1|319A5401B7250D78-6000025069C7BCED[CE]; Path=/; Domain=sfr.fr; Max-Age=34000000; Expires=Fri, 27 Oct 2023 08:27:27 GMT;
etag: 3574261620616265728-4619780968403156204
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:01:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:01:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:01:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 80204
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.sfr.fr/eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
80.125.163.172200 OK 1 B URL HTTP/2 www.sfr.fr/eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html
IP 80.125.163.172:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /eTagP/log.jsp?d=XDom&r=http%3A//thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/index.html HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thedallescollision.com/
Connection: keep-alive
Cookie: SameSite=None
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: SFR Reverse Proxy
content-type: text/javascript;charset=UTF-8
date: Wed, 28 Sep 2022 20:01:07 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
via: http50-piw-pr, front200-piw-pr
set-cookie: X-Mapping-oejdnnie=0E76CB0B38AF1EAD650C5293CF89016E; path=/
JSESSIDETP=C621C6A30825F96D8F7AC9D7FADCAC98.etagproxy13; Path=/; Secure; HttpOnly
content-length: 1
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 80197
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:01:07 GMT
Connection: keep-alive
static.s-sfr.fr/export/bloc/django/footer.standard.json?vue=L&callback=cbRNf
93.20.64.1200 OK 1.6 kB URL HTTP/1.1 static.s-sfr.fr/export/bloc/django/footer.standard.json?vue=L&callback=cbRNf
IP 93.20.64.1:0
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3597), with no line terminators
Hash bac8f4cf3649def63b12948151217a2f
917bbd576b31cadf93eb0586ab540d1cc4526ca9
2729ce49af3ecb2fdce334f4430050c678b2aefd260627f83e9f3773653e0647
GET /export/bloc/django/footer.standard.json?vue=L&callback=cbRNf HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=7200, public
content-type: application/json;charset=UTF-8
date: Wed, 28 Sep 2022 18:40:52 GMT
expires: Wed, 28 Sep 2022 20:40:52 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Mon, 26 Sep 2022 03:59:34 GMT
X-Varnish: 270644061 468956967, 881152680 846152877
Age: 4814
Via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 80414
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 44968
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9236
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:01:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 80300
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 80044
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.s-sfr.fr/media/logo_h_2x.png
93.20.64.1200 OK 2.8 kB URL HTTP/1.1 static.s-sfr.fr/media/logo_h_2x.png
IP 93.20.64.1:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash a29f5226d2ba74ec51e9cba79b7b1bd5
ce9cfe5bd14b19992ef01beeea3d8fedc60170ce
eafa77baa968994d26ef05f143f6492a0905a40744413b5efdfc992e5d0bacc1
GET /media/logo_h_2x.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 26 Sep 2022 09:11:11 GMT
expires: Mon, 03 Oct 2022 09:11:11 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 2815
X-Varnish: 736602652 744559703, 864845377 481024831
Age: 211796
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/favicon.png
93.20.64.1200 OK 1.4 kB URL HTTP/1.1 static.s-sfr.fr/media/favicon.png
IP 93.20.64.1:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 9b02a1ac1a7b9648c9a02a55869899aa
5d220f4aaf6efc70b1ce3ba280089ceb706dc310
5834bafea37edaaa5ce79b06fdcd4c409ddd05bed85fc37d40dfbf87d27b4e1c
GET /media/favicon.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 26 Sep 2022 09:11:12 GMT
expires: Mon, 03 Oct 2022 09:11:12 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 1445
X-Varnish: 691247713 691995693, 881152685 567630821
Age: 211795
Via: front201-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:01:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/mire-auth.png
65.144.0.116200 OK 183 kB URL HTTP/1.1 thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/mire-auth.png
IP 65.144.0.116:0
ASN #209 CENTURYLINK-US-LEGACY-QWEST
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Windows), datetime=2018:08:29 12:17:46], baseline, precision 8, 632x492, components 3\012- data
Size 183 kB (183013 bytes)
Hash 5866917d7e4895e255110479aa8fa838
5083d12c13e3125c2b1e86e9e76d791f604788b9
f843597975745ae4d8ee9bcca9a708f6dd78509cdad71f1b5563b83109ecd4b2
GET /wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/mire-auth.png HTTP/1.1
Host: thedallescollision.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thedallescollision.com/wp-admin/sfr/www.sfr.fr-login-return_url/css/push-download-app/push-download-app-mobile.css
Cookie: eTagAB=59; eTab240=1; eTab243=2; eTab324=2; eTab320=2; eTab326=2; eTab331=3; eTab338=2; eTab346=7
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 20:01:07 GMT
Content-Type: image/png
Content-Length: 183013
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 01:21:29 GMT
Accept-Ranges: bytes
www.gstatic.com/recaptcha/releases/bfvuz6tShG5aoZp4K4zPVf5t/recaptcha__fr.js
142.250.74.163404 Not Found 1.6 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/bfvuz6tShG5aoZp4K4zPVf5t/recaptcha__fr.js
IP 142.250.74.163:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 211dbeca94d70cf1925abcc64793a59e
6b297a9adbe25149fe5c7d12b6c4b4a95cfb89ea
a88d00941aa7fd9e05d8b42a85a4893c427044b658e215f6e59c972c2e8c2036
GET /recaptcha/releases/bfvuz6tShG5aoZp4K4zPVf5t/recaptcha__fr.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://thedallescollision.com
Connection: keep-alive
Referer: http://thedallescollision.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 20:01:08 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.sfr.fr/export/bloc/django/listes.html?D=thedallescollision.com
80.125.163.172200 OK 0 B URL HTTP/2 www.sfr.fr/export/bloc/django/listes.html?D=thedallescollision.com
IP 80.125.163.172:0
GET /export/bloc/django/listes.html?D=thedallescollision.com HTTP/1.1
Host: www.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thedallescollision.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=7200, public
content-type: text/html;charset=UTF-8
content-encoding: br
strict-transport-security: max-age=15768000
date: Wed, 28 Sep 2022 20:01:07 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
via: front11-piw-pr, http60-piw-pr, front201-piw-pr
set-cookie: X-Mapping-oejdnnie=853B0883C5B6803741BA66AA9F9FFF2E; path=/
ADRUM_BTa="R:30|g:6811b6af-b8c3-46e7-8c28-284e35790793"; Version=1; Max-Age=30; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; SameSite=None
ADRUM_BTa="R:30|g:6811b6af-b8c3-46e7-8c28-284e35790793|n:customer1_2cdf0480-e8bb-4482-b909-ed124df7ce6b"; Version=1; Max-Age=30; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; SameSite=None
SameSite=None; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; Secure; SameSite=None
ADRUM_BT1="R:30|i:309432"; Version=1; Max-Age=30; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; SameSite=None
ADRUM_BT1="R:30|i:309432|e:26"; Version=1; Max-Age=30; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; SameSite=None
ADRUM_BT1="R:30|i:309432|e:26|d:13"; Version=1; Max-Age=30; Expires=Wed, 28-Sep-2022 20:01:37 GMT; Path=/; SameSite=None
last-modified: Wed, 24 Aug 2022 04:00:12 GMT
X-Firefox-Spdy: h2