consatisu.fr/login.php?success_redirect_url
81.88.57.96200 OK 454 B URL HTTP/1.1 consatisu.fr/login.php?success_redirect_url
IP 81.88.57.96:0
ASN #39729 Register S.p.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e8ad4f8fc64499f4d4b5e61c0b9a6a31
69adf4891652dff678dc9f1aca9945706e640179
83bc2ea6bb6ab7057495099b5dfb7d40e3adfa6c7e3c9c5adf58d3d3b9ef8041
Analyzer Verdict Alert fortinet Phishing
GET /login.php?success_redirect_url HTTP/1.1
Host: consatisu.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:00 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 454
Connection: close
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2646
Expires: Sat, 01 Apr 2023 05:02:06 GMT
Date: Sat, 01 Apr 2023 04:18:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20126
Expires: Sat, 01 Apr 2023 09:53:26 GMT
Date: Sat, 01 Apr 2023 04:18:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9715
Expires: Sat, 01 Apr 2023 06:59:55 GMT
Date: Sat, 01 Apr 2023 04:18:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 03:28:26 GMT
content-type: application/json
age: 2974
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cHaBKhAxPl886T+0lPMtUlywaQJE5Myl+klovYCwFS+1WMrrNyC2LGn4BEYQwj1wvdEzRmG0IkQ=
x-amz-request-id: 5V7F8G65P6RR2W0Z
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 04:12:27 GMT
age: 333
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 04:18:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
consatisu.fr/favicon.ico
81.88.57.96200 OK 454 B IP 81.88.57.96:0
ASN #39729 Register S.p.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e8ad4f8fc64499f4d4b5e61c0b9a6a31
69adf4891652dff678dc9f1aca9945706e640179
83bc2ea6bb6ab7057495099b5dfb7d40e3adfa6c7e3c9c5adf58d3d3b9ef8041
GET /favicon.ico HTTP/1.1
Host: consatisu.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://consatisu.fr/login.php?success_redirect_url
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:00 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 454
Connection: close
Content-Type: text/html
courtesy.amen.fr/index.html?pType=expired
81.88.57.96302 Found 24 B URL HTTP/1.1 courtesy.amen.fr/index.html?pType=expired
IP 81.88.57.96:0
ASN #39729 Register S.p.A.
Hash 383279986f3168f37e8a9f4610cd248b
dbd64fa31f303f0162584b3068ea98ad64740cd8
652bc94d77c436a047679916304dc74547418b0d1f5853cf8a0615d78f6742bd
GET /index.html?pType=expired HTTP/1.1
Host: courtesy.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://consatisu.fr/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 04:18:00 GMT
Server: Apache
Cache-Control: no-cache, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Location: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24
Connection: close
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f89764b5529b0921337bd77a61e1e56a
9306a0bd5335fc1d8fa08780164b26560f1cb8d3
e0f499802da95da189595b16aceb1984eece3fbf88f7494d3290fbec4df5b4eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0F499802DA95DA189595B16ACEB1984EECE3FBF88F7494D3290FBEC4DF5B4EB"
Last-Modified: Fri, 31 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17567
Expires: Sat, 01 Apr 2023 09:10:48 GMT
Date: Sat, 01 Apr 2023 04:18:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 04:17:27 GMT
age: 34
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: edv4ZoRjQxacrpzrlXDBMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e/SBUoLK57ol60m+/ZWnMOgEp+w=
Date: Sat, 01 Apr 2023 04:18:01 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4cead397b9f28cc850acc1174227b70f
3dc34097d483e320fe105122433756eea4bfa0cf
011494e794d854760e44df4c21d0a9285b14b238c9c3a004802c5aea0e5b9d39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 30 Mar 2023 03:16:44 GMT
Expires: Thu, 06 Apr 2023 03:16:43 GMT
Etag: "3dc34097d483e320fe105122433756eea4bfa0cf"
Cache-Control: max-age=427721,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e0695ba0cb521-OSL
www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
81.88.58.198200 OK 8.5 kB URL HTTP/1.1 www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash d275f4cff38c771a52748906988910aa
25482ee6eb2db80e03c56b607ff173d128f5ff45
a26fcf6b340b429a8f22e082be1c4da654731206defa5b08700a23e1e39cd172
GET /pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://consatisu.fr/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Thu, 12 Dec 2019 10:49:23 GMT
Link: <https://www.amen.fr/wp-json/>; rel="https://api.w.org/", <https://www.amen.fr/wp-json/wp/v2/pages/926>; rel="alternate"; type="application/json", <https://www.amen.fr/?p=926>; rel=shortlink
Pragma: public
Strict-Transport-Security: max-age=15768000;
Content-Encoding: gzip
Content-Length: 8479
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:01 GMT
Set-Cookie: TS01e7ec21=01d0708b124f91b80c51ec8eea817b8477d9f31a7f5d56a0008658a0974c4daaf8fe32bc0d24a00413e479bf0ab7a7faad1916a9f4; Path=/; Domain=.www.amen.fr
code.jquery.com/jquery-migrate-1.4.0.min.js?ver=1.4.0
69.16.175.42200 OK 3.9 kB URL HTTP/2 code.jquery.com/jquery-migrate-1.4.0.min.js?ver=1.4.0
IP 69.16.175.42:0
File type ASCII text, with very long lines (9535)
Hash ecc013140f61a0669d8011c3dc34eb5d
f4caefb2a7b21b44ec3198fe22c5ffa39f2a124c
20f6a81ad924e778e9a060ef4af60e024f9481e087849ca88216fdc8fe708fa0
GET /jquery-migrate-1.4.0.min.js?ver=1.4.0 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-encoding: gzip
content-length: 3885
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-25a0"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680322682.dop002.sk1.t,1680322682.cds225.sk1.hn,1680322682.cds212.sk1.c
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.12.3.min.js?ver=1.12.3
69.16.175.42200 OK 34 kB URL HTTP/2 code.jquery.com/jquery-1.12.3.min.js?ver=1.12.3
IP 69.16.175.42:0
File type ASCII text, with very long lines (32029)
Hash beaa31f7f88eb05cb5e5bf01ce96dc18
4556f88a741898c3b87c39f22c7dae1a19c8c23b
b9b4822df88f4e406f7533efac270146997e0fb0e5b0bd58789e63a04eeda671
GET /jquery-1.12.3.min.js?ver=1.12.3 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-encoding: gzip
content-length: 33773
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-17b9c"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680322682.dop002.sk1.t,1680322682.cds225.sk1.hn,1680322682.cds202.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-includes/css/dist/block-library/style.min.css,wp-content/themes/dada/style.css,wp-content/themes/dada-amenfr-child/style.css,wp-content/themes/dada/asset/css/dadaiconfont.css,wp-content/plugins/ht-knowledge-base/css/hkb-style.css
81.88.58.198200 OK 39 kB URL HTTP/1.1 www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-includes/css/dist/block-library/style.min.css,wp-content/themes/dada/style.css,wp-content/themes/dada-amenfr-child/style.css,wp-content/themes/dada/asset/css/dadaiconfont.css,wp-content/plugins/ht-knowledge-base/css/hkb-style.css
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type Unicode text, UTF-8 text, with very long lines (29698)
Hash d832ec4b772fdd0c1aef57d38b14bee7
1419e538486f23306214920ae05629c0bd7b0875
8dc92048d6142ba75afbf1323e8ead5aafc3168283a5f9ae9ee98792f7ecdf0c
GET /wp-content/plugins/bwp-minify/min/?f=wp-includes/css/dist/block-library/style.min.css,wp-content/themes/dada/style.css,wp-content/themes/dada-amenfr-child/style.css,wp-content/themes/dada/asset/css/dadaiconfont.css,wp-content/plugins/ht-knowledge-base/css/hkb-style.css HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Expires: Fri, 31 Mar 2023 14:11:56 GMT
Vary: Accept-Encoding
Last-Modified: Wed, 29 Mar 2023 13:42:48 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
Cache-Control: max-age=3600, public
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Content-Length: 39296
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12837da4d7c7df22153df74ede05c25007f8cc9783e5263bb64796de5ffc3093a084d373a135f3641079780e90d0cb4b8a; Path=/; Domain=.www.amen.fr
www.amen.fr/_css/base_buttons.css
81.88.58.198200 OK 3.7 kB URL HTTP/1.1 www.amen.fr/_css/base_buttons.css
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type ASCII text, with CRLF line terminators
Hash dcaf52796622f4468439b733ee966de2
9e6c27e1bb782454eec54a3c0ab9ee45d49ccde5
45fb84ac772e0079ca28233d13331f69508b87a457f24cb46abdac63dff43775
GET /_css/base_buttons.css HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-includes/css/dist/block-library/style.min.css,wp-content/themes/dada/style.css,wp-content/themes/dada-amenfr-child/style.css,wp-content/themes/dada/asset/css/dadaiconfont.css,wp-content/plugins/ht-knowledge-base/css/hkb-style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=15768000;
Content-Security-Policy: frame-ancestors 'self' https://*.amen.fr/
Vary: X-Forwarded-Proto,Accept-Encoding
Last-Modified: Tue, 14 Feb 2023 12:33:51 GMT
ETag: "6f5ccf17-55d9-5f4a82d0c09c0"
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Content-Type: text/css
Content-Length: 3730
Accept-Ranges: bytes, bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12fac6f53dd8c5fc3ed02ba2968585981dcb4e8fb3d38a9dc06bcb5b70cff55b2c87fa128f3c24ea9a8c9413ed6cf83407; Path=/; Domain=.www.amen.fr
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js,wp-content/themes/dada/asset/js/dada-marketing-automation.js,wp-content/themes/dada/asset/js/dada-tracking-standalone.js
81.88.58.198200 OK 1.3 kB URL HTTP/1.1 www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js,wp-content/themes/dada/asset/js/dada-marketing-automation.js,wp-content/themes/dada/asset/js/dada-tracking-standalone.js
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type ASCII text, with very long lines (409)
Hash 74b0aede813815cf33e0d1f4f07b6ed8
bbe6660be74d4acda2c0c478545e6ae283a086b3
7d39ed9ccccda035a76c539cd67d1590c9b5e4921dbe1bfc77db0f980209a43b
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js,wp-content/themes/dada/asset/js/dada-marketing-automation.js,wp-content/themes/dada/asset/js/dada-tracking-standalone.js HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Expires: Fri, 31 Mar 2023 14:11:58 GMT
Vary: Accept-Encoding
Last-Modified: Wed, 29 Mar 2023 13:42:44 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
Cache-Control: max-age=3600, public
X-Frame-Options: SAMEORIGIN
Content-Length: 1300
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b123d0a33b829ef6e647e1ecb3a767d7580d885938b957f5a34c9194f2ee51dce90f9f4ff31522f23cdbd462a41ef23a80d; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/themes/dada/asset/js/lib/jquery.cookie.js
81.88.58.198200 OK 1.5 kB URL HTTP/1.1 www.amen.fr/wp-content/themes/dada/asset/js/lib/jquery.cookie.js
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
Hash 6cf4dd81cfb6e636470374d748f3ec63
9b8521b3f1287dbfb939c466b917094bde16fbf3
44031f5cbe2c85d10d7cb1d2fc91eb602e12658988c7a78971902521ea984a15
GET /wp-content/themes/dada/asset/js/lib/jquery.cookie.js HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 29 Mar 2023 13:42:44 GMT
ETag: W/"64244054-c38"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:11:57 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Content-Length: 1456
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b121171b7cecebf558a576fe7162adae5932072f3f7b3ac1cb3362c6d9acfafdaa11ff0ac72cc2a8e3ef0b0d17b74f0326b; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css,wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css
81.88.58.198200 OK 1.1 kB URL HTTP/1.1 www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css,wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type ASCII text, with very long lines (362)
Hash 6fb4b8de4b09bc2a14caeebc05bfa3e5
1ae4edcd60a985b7d0bb423fe6563695ef112bba
be455cc56f746001cd449af5ffcfe40d2e9d6df8696382fb66728f2de7713a8c
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css,wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Expires: Fri, 31 Mar 2023 14:11:56 GMT
Vary: Accept-Encoding
Last-Modified: Wed, 29 Mar 2023 13:42:47 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
Cache-Control: max-age=3600, public
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Content-Length: 1092
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12c6a2bbb5ad80487945ac4a405e60f409ba452ddc93c6af620edf644e60cdc1520f190827298b9b4ce5a808cb6672c373; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/themes/dada/asset/js/lib/jquery.mobile.touch.js,wp-includes/js/wp-embed.min.js,wp-content/themes/dada/asset/js/dada-www.js,wp-content/themes/dada/asset/js/dada-request-collector.js,wp-content/themes/dada/asset/js/dada-language.js
81.88.58.198200 OK 21 kB URL HTTP/1.1 www.amen.fr/wp-content/plugins/bwp-minify/min/?f=wp-content/themes/dada/asset/js/lib/jquery.mobile.touch.js,wp-includes/js/wp-embed.min.js,wp-content/themes/dada/asset/js/dada-www.js,wp-content/themes/dada/asset/js/dada-request-collector.js,wp-content/themes/dada/asset/js/dada-language.js
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type ASCII text, with very long lines (6320)
Hash 502d2f319053702c1f8aa1fa75ef56c0
6b333ba824d2c4cb9b0eb4356eef5c99cc827472
21232688464cf7449144cf8af2d010eacfad1e2c44f823433f16daad4c3c8cf0
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/themes/dada/asset/js/lib/jquery.mobile.touch.js,wp-includes/js/wp-embed.min.js,wp-content/themes/dada/asset/js/dada-www.js,wp-content/themes/dada/asset/js/dada-request-collector.js,wp-content/themes/dada/asset/js/dada-language.js HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Expires: Fri, 31 Mar 2023 14:12:40 GMT
Vary: Accept-Encoding
Last-Modified: Wed, 29 Mar 2023 13:42:48 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
Cache-Control: max-age=3600, public
X-Frame-Options: SAMEORIGIN
Content-Length: 20999
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b1244f716b2b74436d4ccb3aaab7836e56b0375cc1a0e68a3639497488e1145066ff2e72c8368769a7027428a1d072bcd52; Path=/; Domain=.www.amen.fr
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1d201f04b0b57cfaca5cdb91a6152a7f
ecbd404360576213dd166254b1516b3fcef3550f
6d92df10bd00235adf35d0ff3fb228397be74c8d7aba67108ef1235ccd05ed1a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 31 Mar 2023 05:22:23 GMT
Expires: Fri, 07 Apr 2023 05:22:22 GMT
Etag: "ecbd404360576213dd166254b1516b3fcef3550f"
Cache-Control: max-age=521659,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e069bcd89b521-OSL
cmp.teamblue.services/js/cmp_standalone.min.js
81.88.57.79200 OK 9.2 kB URL HTTP/1.1 cmp.teamblue.services/js/cmp_standalone.min.js
IP 81.88.57.79:0
ASN #39729 Register S.p.A.
File type Unicode text, UTF-8 text, with very long lines (22380), with no line terminators
Hash a693ed6db09c2ede20b793d3bc559fd7
80fffe7e4a667aa7e5fe8c0bd7ddb8a75744c742
16ecf36015009b3c0b68d42d77d2aa60f3040b802ae7b0838d3fd0db70374dee
GET /js/cmp_standalone.min.js HTTP/1.1
Host: cmp.teamblue.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Mar 2023 13:10:39 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
ETag: W/"642195cf-576d"
Expires: Fri, 31 Mar 2023 04:18:02 GMT
Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate
Pragma: no-cache
Content-Encoding: gzip
www.amen.fr/wp-content/uploads/2016/10/contact_callBack.png
81.88.58.198200 OK 2.5 kB URL HTTP/1.1 www.amen.fr/wp-content/uploads/2016/10/contact_callBack.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash ae3e8ac9a15666f923b8c98ea281bc7d
0c9ee218c3ef91900247fdb3d4b7609ccb720387
3ae9dec1056d0220b974aa3a54b875e48bccd14513742202fabd550a21e03bbd
GET /wp-content/uploads/2016/10/contact_callBack.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 11 Oct 2016 10:40:22 GMT
ETag: "57fcc196-99e"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:03 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Length: 2462
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b1213219c455f22f5948565b73522eb42b990f40c2d83bd7756b779166586d178acfb930635b851f7f92dda3c0ed0b63841; Path=/; Domain=.www.amen.fr
www.amen.fr/_img/header/logo.png
81.88.58.198200 OK 2.8 kB URL HTTP/1.1 www.amen.fr/_img/header/logo.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 158 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e404750dfc273a2ee23198e4a2160d0
f9d86efecabaae2e5d716ab619646be108c2f7c3
d7df980df05c068e60d8b6f556d45766e1dd0ab533b465887e59e44ee30cbc34
GET /_img/header/logo.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=15768000;
Content-Security-Policy: frame-ancestors 'self' https://*.amen.fr/
Vary: X-Forwarded-Proto
Last-Modified: Tue, 09 Mar 2021 09:58:33 GMT
ETag: "637e25c0-acb-5bd1797e4cf04"
X-Frame-Options: SAMEORIGIN
Content-Type: image/png
Content-Length: 2763
Accept-Ranges: bytes, bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b125f96a62f2edc52a9819a53553d4c807e7d6d2cd27dccf5167e08c8d1b1a768a15dfc3c4dd3908f3904b77fc854c30859; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/uploads/2016/10/parking_Icon_02.png
81.88.58.198200 OK 959 B URL HTTP/1.1 www.amen.fr/wp-content/uploads/2016/10/parking_Icon_02.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash fcbab46186074a5da5b7020334dc2e4a
40613854806f2e746d7266c3b0b2bd5fee81ac66
2ee67eba3d4ba8702727f8b286a883b2763635f3d16cbd5341416075953f37b7
GET /wp-content/uploads/2016/10/parking_Icon_02.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 11 Oct 2016 07:22:01 GMT
ETag: "57fc9319-3bf"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:41 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Length: 959
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12ae8427626c4d691ab47518be84832acb22ecd441833c3a09caff2a0b7c26e68495f09f9b6907cafec611a2919393819e; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/uploads/2016/10/contact_call.png
81.88.58.198200 OK 968 B URL HTTP/1.1 www.amen.fr/wp-content/uploads/2016/10/contact_call.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 140 x 140, 8-bit colormap, non-interlaced\012- data
Hash 064c4ea194d4803397a5fb78036b6751
f7ed583644979f73ecfd458aeeacd4184750209d
7f37197ede90bad5a4896f854d3f97f31ea110606e421fd4bbd679fd2a339af2
GET /wp-content/uploads/2016/10/contact_call.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 06 Oct 2016 08:25:53 GMT
ETag: "57f60a91-3c8"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:41 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Length: 968
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b1247aa2dcaf4e5e1c30c54fef20688da12638b2b0dee2c802d95e5b3ab0179d4db8da9fe1103d123cf7d057b57a02d3761; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-content/uploads/2016/10/parking_Icon_01.png
81.88.58.198200 OK 1.3 kB URL HTTP/1.1 www.amen.fr/wp-content/uploads/2016/10/parking_Icon_01.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 366d2ed8132f6b4ea05eb2e06bd623ce
4b1e4112d672c946a57da6d1669b155ed7274721
bab98a0bc951ea3e14b11907d25b7c8b52afac5d3b7fc818e22733c52837d601
GET /wp-content/uploads/2016/10/parking_Icon_01.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 11 Oct 2016 07:21:58 GMT
ETag: "57fc9316-52d"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:41 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Length: 1325
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12393dbc99c14c629263a9447457dc1be19a5fc6a7863fc77cec873ed4a7767bb46593585046a965ff7833562022d7bfcd; Path=/; Domain=.www.amen.fr
www.amen.fr/wp-includes/js/wp-emoji-release.min.js?ver=5.7.1
81.88.58.198200 OK 5.3 kB URL HTTP/1.1 www.amen.fr/wp-includes/js/wp-emoji-release.min.js?ver=5.7.1
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type ASCII text, with very long lines (11272)
Hash bd229439861ef80c0ca1544bec369523
2ca88131b2886b19eef9aa51a759d7a4033d3b79
9820419aa4c896ce97d9c318d7671aa5958de4445c063a1b84fa3eb9ed8fbff5
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.1 HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 29 Mar 2023 13:42:48 GMT
ETag: W/"64244058-3795"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:41 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Content-Length: 5269
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b12a9d88dfe9f04f667cc7425f66eff6174878a632e2f26603ad05a21d0d8978a5997edc2b12a255253e321bc765cf94cff; Path=/; Domain=.www.amen.fr
cmp.teamblue.services/js/cmp_all.min.js?v=1.0.52
81.88.57.79200 OK 44 kB URL HTTP/1.1 cmp.teamblue.services/js/cmp_all.min.js?v=1.0.52
IP 81.88.57.79:0
ASN #39729 Register S.p.A.
File type Unicode text, UTF-8 text, with very long lines (65413)
Hash e33447d8ccfaab77d33ffa861dc1c5bb
5cd1c63b99b048b3d645b225b25fcb35ae1e2155
c4d4d532c1461175c0d98f94cba7025e003559942c7218589210f67f26f10e98
GET /js/cmp_all.min.js?v=1.0.52 HTTP/1.1
Host: cmp.teamblue.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Mar 2023 13:10:15 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
ETag: W/"642195b7-227f0"
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Hash 1c772d9d0531b187db80bcfc199c1786
c0c04fb334190e10dffed0dcc5c817c2a6041a15
122854df4f39cf922db317714c2ff0eccab27a1028c14a5aa2211f48b7e0eade
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amen.fr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:39:22 GMT
expires: Wed, 27 Mar 2024 10:39:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:54:52 GMT
content-type: font/woff2
age: 322720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WH9LDRH
142.250.74.168200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WH9LDRH
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash fe906a307a74064cf942e47dd19709af
d7a897441439fb15ac1e1c20d37ca31bab6546c2
c229a6c3bf336f98f3d6525f50ae68368592c2f3b6b010574e7b217aebaf53cf
GET /gtm.js?id=GTM-WH9LDRH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 01 Apr 2023 04:18:02 GMT
expires: Sat, 01 Apr 2023 04:18:02 GMT
cache-control: private, max-age=900
last-modified: Sat, 01 Apr 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47512
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.amen.fr/wp-content/uploads/2016/10/contact_cpHelp.png
81.88.58.198200 OK 1.1 kB URL HTTP/1.1 www.amen.fr/wp-content/uploads/2016/10/contact_cpHelp.png
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type PNG image data, 140 x 140, 8-bit colormap, non-interlaced\012- data
Hash 4766e87052b392b9dc43d5193f09ef5f
23849cece74e42b7e93616c71622a3c6a7bd68f0
488538cffb10cbc9889cb396fefa21ccd0a9a37c2748ffab20a27411dda5c18c
GET /wp-content/uploads/2016/10/contact_cpHelp.png HTTP/1.1
Host: www.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/pp-ed/?expired=true&a=b&host=Y29uc2F0aXN1LmZy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 06 Oct 2016 08:25:52 GMT
ETag: "57f60a90-474"
Cache-Control: max-age=31536000, max-age=31536000, public
Expires: Sat, 30 Mar 2024 13:12:03 GMT
Pragma: public
Strict-Transport-Security: max-age=15768000;
X-Frame-Options: SAMEORIGIN
Content-Length: 1140
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 04:18:02 GMT
Set-Cookie: TS01e7ec21=01d0708b1288df60c530bc1182a2f55ed1bf6e500346208f66c2687b0115a1e8c604ca0210a178447b3195eb26395095e1258c1829; Path=/; Domain=.www.amen.fr
cmp.teamblue.services/js/cmp_iub_style.min.css?v=1.0.52
81.88.57.79200 OK 12 kB URL HTTP/1.1 cmp.teamblue.services/js/cmp_iub_style.min.css?v=1.0.52
IP 81.88.57.79:0
ASN #39729 Register S.p.A.
File type ASCII text, with very long lines (11888), with no line terminators
Hash 0f80441ca92f90b1262881c097a74529
4dab137f6e89ab125cc97c3df1bdf350924da54e
229abad436a4c1af8c1c1dea133fbeca97fd2a84ed3db22391ff50206c879fc9
GET /js/cmp_iub_style.min.css?v=1.0.52 HTTP/1.1
Host: cmp.teamblue.services
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: text/css
Content-Length: 11888
Last-Modified: Thu, 23 Mar 2023 14:57:49 GMT
ETag: "641c68ed-2e70"
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5b6731341a66be32757ea461f5bd605a
f9a017cd1195d1eafb3839a899baf75f2e71958f
4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 04:18:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,300italic,400italic
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,600,300italic,400italic
IP 142.250.74.106:0
Hash 265fb06cf290e318e76e45ebc8e32e37
9e1b041dc69a0766864a9337df485bbef3dfa83f
2f7cf50d62f83a7aecbd8ca9dea96aee0febad0453a6688515ac35728d030989
GET /css?family=Source+Sans+Pro:300,400,600,300italic,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 04:18:02 GMT
date: Sat, 01 Apr 2023 04:18:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 04:18:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 04:18:02 GMT
Connection: keep-alive
trk.amen.fr/js/skeletor.js
81.88.58.198200 OK 14 kB URL HTTP/1.1 trk.amen.fr/js/skeletor.js
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type Unicode text, UTF-8 text, with very long lines (38206), with no line terminators
Hash 95b4ea5a8caf00c0ef966d102c356365
32679273fc923c009f2a4e41fbf76042bbcba17a
3406c7290dd4e363c1696c0e22663ce23baf0d91d781368efcac468022024612
GET /js/skeletor.js HTTP/1.1
Host: trk.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/javascript
Last-Modified: Tue, 14 Feb 2023 13:13:53 GMT
Vary: Accept-Encoding
ETag: W/"63eb8911-953f"
Expires: Fri, 31 Mar 2023 04:18:02 GMT
Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate
Pragma: no-cache
Content-Encoding: gzip
Set-Cookie: TS01e59d07=01d0708b1233ac270e25dd87a47e9be924080b1b8779cac51128e3abd6d2916ab3826c4ef0aff8ed1112c5faf95e88d24a18705bed; Path=/; Domain=.trk.amen.fr
Transfer-Encoding: chunked
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba8077c110172a232340b8c843c21704
110ce19838f6050e0df60240211e66bb95659018
ed614253863b689b947ee48c384b0d96360730d25c6a573a8f1776c0f31b4c4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10139
x-amzn-requestid: a65e17df-5f88-4840-a573-8820b3734e82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHJE9AoAMFdwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-13577a7f180985f20a340c8e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pCHOy35HMhXe7y4p5HZcpSVBS8BEEh0stYUpY7BpLJTD0sHa7xmEgw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:59:12 GMT
age: 22730
etag: "110ce19838f6050e0df60240211e66bb95659018"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: KkjS04mCLqFET4v9-sePYK-zcztrds608GECT1Fxz3BEpslgxnpLOg==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:37:17 GMT
age: 24045
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UfN2iRmDUhddBZW6qGy3q2-HCqb6Kx3iDENnirUkIoCJ6BW6zdWVtw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 22:44:32 GMT
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
age: 20010
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ycsh7rNJt9blXZVpFbbdBDu5pZbGDfGIPLt5k0Ff9-fvWTX86Ndz6A==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:45:01 GMT
age: 23581
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
104.18.10.207200 OK 29 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65371)
Hash dc1b3962d1c281209978271ac20c6c93
a64ab14df0ced4ed12bf2237dec1c9dbbb8de74c
6f989215c2791b934105b881c776a9de7acb6dab29e71d2c9af8f8c6b8199b9a
GET /bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2f624089c65f12185e79925bc5a7fc42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 02/17/2022 20:27:53
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 860
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 441a5c346e6138207e493340368ec0b9
cdn-cache: HIT
cf-cache-status: HIT
age: 25769043
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b0e069aecacfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jidQVHgb6EK_fyGj4wYgdWEBeth8CIB5szPrwrgmirz4Q9tSYpRrsw==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:06 GMT
age: 23456
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2082eee9d9d407fd3ea03834fe9ab210
2698feab2c6de7cef5faecfccd7406b04f547520
7d488c0ba9cc030d4ee4deebed9cc2d1d9260350cca306552ce5afdabb66adb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 13:47:41 GMT
Expires: Wed, 05 Apr 2023 13:47:40 GMT
Etag: "2698feab2c6de7cef5faecfccd7406b04f547520"
Cache-Control: max-age=379177,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0e069f0ec7b521-OSL
trk.amen.fr/js/he-man_all.min.js?v=2.1.20&ma=ma_enabled
81.88.58.198200 OK 78 kB URL HTTP/1.1 trk.amen.fr/js/he-man_all.min.js?v=2.1.20&ma=ma_enabled
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65504), with no line terminators
Hash d3f9caf19fe57e227ba4217f483e69e3
5892bcee362a6c97dace26297a7d99aee22723db
77e016337b077689f92730e703c42cbd751bcbd31a76aad79061b94117cd7755
GET /js/he-man_all.min.js?v=2.1.20&ma=ma_enabled HTTP/1.1
Host: trk.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:02 GMT
Content-Type: application/javascript
Last-Modified: Tue, 14 Feb 2023 13:13:53 GMT
Vary: Accept-Encoding
ETag: W/"63eb8911-34ff8"
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN, X-XSRF-TOKEN
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Set-Cookie: TS01e59d07=01d0708b1232f095ba0207c22da2caf900725ece57910dde1a008dd5668f5b62f0e974a2b391ba0d21108924f07276539faa8988b5; Path=/; Domain=.trk.amen.fr
Transfer-Encoding: chunked
cdn.iubenda.com/cs/iubenda_cs.js?v=1.0.52
194.242.11.186200 OK 100 kB URL HTTP/2 cdn.iubenda.com/cs/iubenda_cs.js?v=1.0.52
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (620)
Size 100 kB (100207 bytes)
Hash 559a557680cbdc9a879db71621e727d5
fd3b1101b027adcafc69fe8de92b68cd430d4cfb
582b9081984ca311603de2502230d60b32a457de58d4a0fff27f23c012e0353f
GET /cs/iubenda_cs.js?v=1.0.52 HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "64268535-141"
last-modified: Fri, 31 Mar 2023 07:01:09 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/31/2023 11:21:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f4bc3d1c28284720f1c5a4478549896a
cdn-cache: REVALIDATED
X-Firefox-Spdy: h2
www.iubenda.com/cookie-solution/confs/js/50217743.js
194.242.11.186200 OK 95 B URL HTTP/2 www.iubenda.com/cookie-solution/confs/js/50217743.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash c9daaa2fc9bb00473af5e615e9185b89
3c5d9d13bc273c1117dbcb749c111501777c486c
f2cf6af07dfc97176a8e6936e71ac654cbbc4b11364c0aacd5216ef215324e9a
GET /cookie-solution/confs/js/50217743.js HTTP/1.1
Host: www.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:03 GMT
content-type: application/javascript
content-length: 95
server: BunnyCDN-NO1-830
cdn-pullzone: 966339
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: "63fcc2c5-5f"
last-modified: Mon, 27 Feb 2023 14:48:37 GMT
access-control-request-method: *
strict-transport-security: max-age=63072000
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/27/2023 15:24:46
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 683347a02601e3aa8b759c1bc5f1ec2f
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
trk.amen.fr/server/he-man_server?tkq=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
81.88.58.198200 OK 0 B URL HTTP/1.1 trk.amen.fr/server/he-man_server?tkq=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
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server/he-man_server?tkq=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 HTTP/1.1
Host: trk.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:03 GMT
Content-Type: text/html; charset=UTF-8
Set-Cookie: _wicasa=JSON_eyJjaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzY3AiOiIxIiwicGsiOiJSMDEiLCJja2Jvcm4iOiIxNjgwMzIyNjgzIiwibGFzdHJlZiI6Ind3dy5hbWVuLmZyXC9wcC1lZFwvIiwibGFzdGRvbXNyYyI6IiIsImlzY2xpIjoiMCJ9; expires=Fri, 30-Jun-2023 04:18:03 GMT; Max-Age=7776000; path=/; Secure; SameSite=None; domain=amen.fr
_ashkii=JSON_eyJzaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzc3AiOiIxIiwicHAiOiJSMDEifQ%3D%3D; path=/; Secure; SameSite=None; domain=amen.fr
cookid=806b4b04e22053f9910101ba5d13f0f0; expires=Fri, 30-Jun-2023 04:18:03 GMT; Max-Age=7776000; path=/; Secure; SameSite=None; domain=amen.fr
dbmFP=806b4b04e22053f9910101ba5d13f0f0.R01; expires=Fri, 30-Jun-2023 04:18:03 GMT; Max-Age=7776000; path=/; Secure; SameSite=None; domain=amen.fr
dbmPK=806b4b04e22053f9910101ba5d13f0f0.R01; expires=Fri, 30-Jun-2023 04:18:03 GMT; Max-Age=7776000; path=/; Secure; SameSite=None; domain=amen.fr
TS01e59d07=01d0708b122e4c121fa137845623cc8ca61e3b4f85175a92080b1a8e71985afa2ea6d9ab371a09a809b4a6958123ee21040058ea5e; Path=/; Domain=.trk.amen.fr
TS013dbe10=01d0708b12a981c62c204d38f0e8d1bb925943f5fe175a92080b1a8e71985afa2ea6d9ab378c49b01ec7705684704ddd059994d21416e0140cd64e76b871cbaf80699bfb651593f5d35d3de75e4404b72e67bb3ad89c90c93b2a477f8680e5e83c53dc33a2548dfdf4e7189128fc2bc33877a74d52300c13478ddd4f6d426406910a011497; path=/; domain=amen.fr
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN, X-XSRF-TOKEN
Access-Control-Allow-Credentials: true
Transfer-Encoding: chunked
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amen.fr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:35:27 GMT
expires: Wed, 27 Mar 2024 10:35:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
age: 322956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amen.fr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:32:44 GMT
expires: Wed, 27 Mar 2024 10:32:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
age: 323119
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
trk.amen.fr/messages/he-man_messages?tke=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
81.88.58.198200 OK 0 B URL HTTP/1.1 trk.amen.fr/messages/he-man_messages?tke=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
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /messages/he-man_messages?tke=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 HTTP/1.1
Host: trk.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Cookie: _wicasa=JSON_eyJjaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzY3AiOiIxIiwicGsiOiJSMDEiLCJja2Jvcm4iOiIxNjgwMzIyNjgzIiwibGFzdHJlZiI6Ind3dy5hbWVuLmZyXC9wcC1lZFwvIiwibGFzdGRvbXNyYyI6IiIsImlzY2xpIjoiMCJ9; _ashkii=JSON_eyJzaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzc3AiOiIxIiwicHAiOiJSMDEifQ%3D%3D; cookid=806b4b04e22053f9910101ba5d13f0f0; dbmFP=806b4b04e22053f9910101ba5d13f0f0.R01; dbmPK=806b4b04e22053f9910101ba5d13f0f0.R01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:03 GMT
Content-Type: text/html; charset=UTF-8
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN, X-XSRF-TOKEN
Access-Control-Allow-Credentials: true
Set-Cookie: TS01e59d07=01d0708b1281b1d64f1fddefe4670b970caec361627525a48a87670652a08842ec8f9c7b1eae8f35866f1e607994f32fe6f5cb7d9e; Path=/; Domain=.trk.amen.fr
Transfer-Encoding: chunked
trk.amen.fr/messages/he-man_messages?tke=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
81.88.58.198200 OK 0 B URL HTTP/1.1 trk.amen.fr/messages/he-man_messages?tke=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
IP 81.88.58.198:0
ASN #39729 Register S.p.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /messages/he-man_messages?tke=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 HTTP/1.1
Host: trk.amen.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Cookie: _wicasa=JSON_eyJjaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzY3AiOiIxIiwicGsiOiJSMDEiLCJja2Jvcm4iOiIxNjgwMzIyNjgzIiwibGFzdHJlZiI6Ind3dy5hbWVuLmZyXC9wcC1lZFwvIiwibGFzdGRvbXNyYyI6IiIsImlzY2xpIjoiMCJ9; _ashkii=JSON_eyJzaWQiOiI4MDZiNGIwNGUyMjA1M2Y5OTEwMTAxYmE1ZDEzZjBmMCIsImNrdGltZSI6IjE2ODAzMjI2ODMiLCJzc3AiOiIxIiwicHAiOiJSMDEifQ%3D%3D; cookid=806b4b04e22053f9910101ba5d13f0f0; dbmFP=806b4b04e22053f9910101ba5d13f0f0.R01; dbmPK=806b4b04e22053f9910101ba5d13f0f0.R01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 04:18:03 GMT
Content-Type: text/html; charset=UTF-8
Access-Control-Allow-Methods: DELETE, GET, HEAD, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-CSRF-TOKEN, X-XSRF-TOKEN
Access-Control-Allow-Credentials: true
Set-Cookie: TS01e59d07=01d0708b128368fc73063f241490897fb4abdc3b07e756b14076e3901b26abd0fc09bbb9527fbb7119cdfa128da38e908233f731dc; Path=/; Domain=.trk.amen.fr
Transfer-Encoding: chunked
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js?ver=3.3.6
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js?ver=3.3.6
IP 104.18.10.207:0
GET /bootstrap/3.3.6/js/bootstrap.min.js?ver=3.3.6 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 722, 617, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-07-24 16:51:28
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 960423fd8fb433a8357a93ca8d4065f9
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 6217703
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b0e069adca9fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
IP 104.18.10.207:0
GET /font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amen.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 04:18:02 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 12/13/2021 21:25:06
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 632
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 8ac87b10825a6871d9cd076fc3a23e4f
cdn-cache: HIT
cf-cache-status: HIT
age: 25769434
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b0e069aecadfab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2