iasalonmontreal.com/
13.248.243.5301 Moved Permanently 0 B IP 13.248.243.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
location: https://iasalonmontreal.com/
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/
etag: 461cfb7d9790f53929180d862418d88d
date: Sat, 10 Dec 2022 04:37:01 GMT
keep-alive: timeout=5
transfer-encoding: chunked
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11913
Expires: Sat, 10 Dec 2022 07:55:34 GMT
Date: Sat, 10 Dec 2022 04:37:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 10 Dec 2022 05:32:49 GMT
Date: Sat, 10 Dec 2022 04:37:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 10 Dec 2022 04:08:23 GMT
content-type: application/json
age: 1719
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5196
Expires: Sat, 10 Dec 2022 06:03:38 GMT
Date: Sat, 10 Dec 2022 04:37:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e1Hs86Wa6fcljaxPVzotvJjgplPzH+xxnQdWXOocL52fra0DIu2+esJ2Fvt9NgH1B+8x39oND8kbxQSOtU4hYA==
x-amz-request-id: TAZW5QNCZ7RY1HJP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 10 Dec 2022 03:48:38 GMT
age: 2904
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 04:37:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 2fafd08a7ee487a925b1424bf23f56c8
38796289cf0e587ea2576e468f34e5209319b498
505911c4de78e71dc5d6e8a9b31dac393906b7fe15e5e755515618dc345ceb0f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 10 Dec 2022 04:37:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 09 Dec 2022 21:18:25 GMT
Expires: Sat, 10 Dec 2022 21:18:25 GMT
ETag: "38796289cf0e587ea2576e468f34e5209319b498"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
95.101.10.131200 OK 7.9 kB URL HTTP/2 img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 7908, version 1.0\012- data
Hash 15d9bbcfbc1d668a43c85d156d23262b
c436963710c58453c4ae27e66c051e85c084cd49
6db83475c4b6e3bcd2df60ca7afcedabc5140c3b55c9a6bb0ca636c5b6438e5f
GET /gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 7908
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 21 Apr 2022 16:47:58 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
95.101.10.131200 OK 7.9 kB URL HTTP/2 img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 7920, version 1.0\012- data
Hash 797ad5f8d84a297ab16f9a9c983adfc2
af074543e3bbd78e086cefa983867e0936515c41
e0037277509761be84d1c44b520649c2363df89e00568561ebf015cb3cedc91a
GET /gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 7920
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 21 Apr 2022 16:51:59 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js
95.101.10.131302 Found 0 B URL HTTP/2 img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcc/tcc_l.combined.1.0.6.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://img1.wsimg.com/traffic-assets/js/tccl.min.js
cache-control: max-age=1800
expires: Sat, 10 Dec 2022 05:07:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js
95.101.10.131200 OK 95 kB URL HTTP/2 img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (63425)
Hash 7b0784f9587948fb060306ce7301e22a
99be4d4de2deb9e7f8ae65fcbe81c5551f88b3b7
c71edf34027fcb30a132716e8d5fe7c5a8ae11dcafb47fd48d3411a828bcb613
GET /ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 95285
x-version: 0.7.1+sha-f8fdc16
etag: "31e273e89fb56a44d86d206f1bcdcdb4"
last-modified: Thu, 17 Nov 2022 19:04:57 GMT
x-amzn-trace-id: Root=1-637685d8-55edb6666cd8b84d43e914a7
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2
95.101.10.131200 OK 23 kB URL HTTP/2 img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 22840, version 1.0\012- data
Hash a02a7db3964dbc06013e1343042c2c75
9d69b2906f9c6bcda3197e3c0ba5542b1a57aab9
b6ad8f4894150c85aa2a6158e918a26f119cba2e97ff2135a03eb1b3a4044230
GET /gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 22840
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 09 May 2022 19:31:27 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2
95.101.10.131200 OK 25 kB URL HTTP/2 img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24640, version 1.0\012- data
Hash 8ac76036c09e8683710a9c667bcab8de
f8612cc6b0f7725c46edd65eebfd6aec446af226
a898fbcc821f5d54f3491713c04dcb3434ebdc77ef9e6011df1eeb86b9255b56
GET /gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 24640
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 09 May 2022 19:30:54 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2
95.101.10.131200 OK 8.5 kB URL HTTP/2 img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 8520, version 1.0\012- data
Hash ce1c0390731a3e14e25947beba4d7bc7
314391b4d88bf5d37826b2d8e15684ee24839151
a23cdc6f17ebaf9a49d2bd7f3723cf8a185f0cdfa4065e83490c9769b643a587
GET /gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 8520
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 21 Apr 2022 16:47:55 GMT
content-type: font/woff2
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-BF2FDR6KMM
142.250.74.40200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-BF2FDR6KMM
IP 142.250.74.40:0
File type ASCII text, with very long lines (20080)
Hash 4168ee8eee2d08328166076a2f9fc046
b63bc74358d6bfe35c45d5667e9fabf24f78ce59
68b5382ab40a26f13a995fe96ad5d2fe7a02650eabc3e73ce76469c2edcccb24
GET /gtag/js?id=G-BF2FDR6KMM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Origin, Accept-Encoding
access-control-allow-origin: https://iasalonmontreal.com
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
date: Sat, 10 Dec 2022 04:37:02 GMT
expires: Sat, 10 Dec 2022 04:37:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl.min.js
95.101.10.131302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl.min.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Referer: https://iasalonmontreal.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
cache-control: max-age=1800
expires: Sat, 10 Dec 2022 05:07:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 3aa1ae64d269dea39f9c67d88b859fe2
6efb7645d93bbddb61bcb6e91b89950744e3832e
bffa1a45ca3915317e3d1848b2488f48dd7a6b9f2b22db554321214decca255a
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 10 Dec 2022 04:37:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 09 Dec 2022 21:55:32 GMT
Expires: Sat, 10 Dec 2022 21:55:32 GMT
ETag: "6efb7645d93bbddb61bcb6e91b89950744e3832e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:70,h:93,cg:true,m/cr=w:70,h:93/qt=q:95
95.101.10.131200 OK 12 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:70,h:93,cg:true,m/cr=w:70,h:93/qt=q:95
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash d62217a0ab1da97ddf6da2508f170164
118f8dd072017fa2a7aef65a43dd7c402587ba28
0c34d300a1b1ff810a327314a08fb39ec804479ed1dc4990424371a77001b566
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:70,h:93,cg:true,m/cr=w:70,h:93/qt=q:95 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 11550
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 2609776905
x-width: 70
x-height: 93
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:70,h:93,cg:true,m/cr=w:70,h:93/qt=q:95
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
player.vimeo.com/video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0
162.159.128.61200 OK 5.7 kB URL HTTP/1.1 player.vimeo.com/video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (17661), with no line terminators
Hash 69f4a5391af0f9f6e074cf78ec5abcb2
6d58cdcc9ad1a48cc00f9f8815b2a9e3cbcaf792
967d6fa25fd41c5e803f3e145203c54e4bf7ac889bcfb264577fab49da95ce06
GET /video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 04:37:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 10 Dec 2022 04:47:02 GMT
x-host: player-959c5df45-wdntn
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-test-varnish-1
x-backend-proxy: playproxy32
x-bapp-server: player-959c5df45-wdntn
Age: 0
X-Served-By: cache-bma1620-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1670647022.451759,VS0,VE219
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=WOkgsukQbDsvekIw5ZuYLTzEWhbmUnXhjhIMHQCFONs-1670647022-0-AVIYHFKZrSh2iAlcXwszPGQI3R92r+aw7m6tNwoGnvnp5HjURvZNptME6ktE1k9Yr/TWFRtpJJ8be5vvsCjJ7WY=; path=/; expires=Sat, 10-Dec-22 05:07:02 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 777348723d3eb4f7-OSL
Content-Encoding: gzip
img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
95.101.10.131200 OK 11 kB URL HTTP/2 img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (45837)
Hash 645b88efa25fd10bf181698e5f994175
c702cebb7ad47f0839332bedae7c7913d7113b25
9555a4ec4987438fc2d5ffd29e91bec3e1829e3f765e700f8d8941412e5eb520
GET /wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://iasalonmontreal.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "5c3e20ad749ddb088afc84b1b7ff009e"
last-modified: Tue, 29 Nov 2022 21:30:05 GMT
vary: Accept-Encoding
x-amz-id-2: SOgzPYjoNVqHmzSUdDQxjVjpOcgl04n3arSWjBq/s2doz6LRg79tFfSvSDtud9Y0icsa8uPNWH0=
x-amz-request-id: SW42RCTKTQJH3SB5
x-amz-server-side-encryption: AES256
x-amz-version-id: sTnOEJpl_Bn63xNm3Yru0HbQaHbS55CR
content-length: 11347
cache-control: max-age=31536000
date: Sat, 10 Dec 2022 04:37:02 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
isteam.wsimg.com/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/cr=t:9.89%25,l:0%25,w:100%25,h:80.22%25/rs=w:515,h:234,cg:true
35.156.197.136200 OK 26 kB URL HTTP/2 isteam.wsimg.com/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/cr=t:9.89%25,l:0%25,w:100%25,h:80.22%25/rs=w:515,h:234,cg:true
IP 35.156.197.136:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0928d6a6237599d20f955dd60075e090
f7e8ab2e8784fb706384e901a50d9c7c53a84cb9
b033151b21596415bdc6cb5aaf13bfdd0bcd401eb62962e8e852376cf33deb65
GET /ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/cr=t:9.89%25,l:0%25,w:100%25,h:80.22%25/rs=w:515,h:234,cg:true HTTP/1.1
Host: isteam.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 04:37:02 GMT
content-type: image/webp
content-length: 25794
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-allow-origin: *
access-control-request-method: GET
access-control-max-age: 864000
cache-control: public,max-age=31536000
vary: Accept
etag: 3886330789
x-width: 515
x-height: 234
x-isteam-meta: {"orientation":1}
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 04:33:14 GMT
age: 228
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1535,m
95.101.10.131200 OK 40 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1535,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 80195e73fbecfd381dd2a8c8950d93d1
4d055d96feb262361845263086adbac08400aedc
56b83c63f0d2aab7ebb7bf04435a1c1b9db074f59be2cf32908cb9e79f006483
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1535,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 39846
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 2296938990
x-width: 1535
x-height: 858
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1535,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.15.3/css/player.css
151.101.86.109200 OK 21 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65495)
Hash 968f2cdf88d9a0473ba7a9f06df273da
2816f582988f9de542ca6f12ac98ef5a22bf0572
8126ad5a87c033902741b40e92e955d4cbb5552040a597a261befcce705793af
GET /p/4.15.3/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 10 Dec 2022 04:37:02 GMT
age: 126405
x-served-by: cache-iad-kiad7000126-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 26315
x-timer: S1670647023.764327,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20725
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1535,m
95.101.10.131200 OK 54 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1535,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4abd6171259a7ee3ad51d115b98b6e19
2cd99db4c01f813eb9833e3d3c4bea1a0f3a0e95
8204f3072437f8456cc36fbe8f46d30c0ace75cc93cc7ef7f24ef65dbba03b92
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1535,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 54344
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 546528891
x-width: 1535
x-height: 870
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1535,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/60a70225001f201d/script.js
95.101.10.131200 OK 9.2 kB URL HTTP/2 img1.wsimg.com/blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/60a70225001f201d/script.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (9563)
Hash 513566dd99daa82b8ac61c3fc9ab0a18
8f96010c51ccfee3a93ce36a20eede9209e65725
c971ba0e5bbf94fc5f1722209eb3be2c11e720a26ee43df420ec0152e0d90f01
GET /blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/60a70225001f201d/script.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9224
x-version: 0.7.1+sha-f8fdc16
etag: "c8cf1a0223a9c846e8b584daa9fd1f44"
last-modified: Fri, 25 Nov 2022 20:15:06 GMT
x-amzn-trace-id: Root=1-63812249-08bd978c7caaaf9f523b5d3d
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.15.3/js/player.module.js
151.101.86.109200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/js/player.module.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 116 kB (116326 bytes)
Hash 8c9202bf6ee286b9ed355dedd5cf03ff
98af722e03b42e83e7f3a718a17fcd9fd583083d
d4cfc1c907835aeb287585e70a9f4ee773d91fc1ddfabf1e8881162bd5ea10f2
GET /p/4.15.3/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 10 Dec 2022 04:37:02 GMT
age: 126405
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 20785
x-timer: S1670647023.855610,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116326
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1535,m
95.101.10.131200 OK 291 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1535,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 291 kB (291360 bytes)
Hash 94f08ad0afb1989298401cf7c3296740
e7fadc7663ef53587f79ff52dbfde188c7f3ab7e
4ebeb6cabec61bfb61779a6e173a748338b5dcae25287f9916635d73d58b8412
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1535,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 291360
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 3292442288
x-width: 1535
x-height: 768
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1535,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/8b10477fff1bbeab/script.js
95.101.10.131200 OK 15 kB URL HTTP/2 img1.wsimg.com/blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/8b10477fff1bbeab/script.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (51547)
Hash fe0b1f6c52058c9e8ca3c3ae4c98cd42
3bab783d2251a597c931ec9a61232b250ee51eae
a460892c927d939a2981cadccbbc50d8da5ee935baa63866534a4b2de245457f
GET /blobby/go/5852f1ed-9859-41b0-a8a2-9104b17e700f/gpub/8b10477fff1bbeab/script.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 14857
x-version: 0.7.1+sha-f8fdc16
etag: "f20605e0a0a82dae7649a691d4dcb6a9"
last-modified: Fri, 25 Nov 2022 20:15:06 GMT
x-amzn-trace-id: Root=1-63812249-0eeea8cc4b2b5db510a658b8
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:02 GMT
date: Sat, 10 Dec 2022 04:37:02 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 272
Cache-Control: max-age=102864
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:03 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:11:27 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js
95.101.10.131200 OK 379 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (516)
Hash da1ba55bba78d7565f76b67f7268e7ea
89fd587d56184ab4e8b0568c1aedb6dfbddb3e40
3f23ed8407c24850c2175ff84e5c68ce52060ce61e7452b774e9b9f441c38b0a
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 379
x-version: 0.7.1+sha-f8fdc16
etag: "0d42ffb998a9cf7c25824cf365c7d0c9"
last-modified: Tue, 18 Oct 2022 15:47:48 GMT
x-amzn-trace-id: Root=1-634ecaa3-5959a1ba44b2faaf1233fe85
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js
95.101.10.131200 OK 7.0 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (23126)
Hash f606da7f7745512d59e59aac109d0353
6c4b25003269aae49c618d0e0d5b1c97bff14283
1757d9df282a89a2b883125c02faaf8cb8c28fc5f786522b7cdff388b853152c
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 7001
x-version: 0.7.1+sha-f8fdc16
etag: "3d092ef4aba019b14f01c40747e40554"
last-modified: Thu, 14 Oct 2021 23:04:40 GMT
x-amzn-trace-id: Root=1-6168b787-4da6cb7921e50d3f24b2beb8
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-4e26cd6b.js
95.101.10.131200 OK 578 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-4e26cd6b.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (829)
Hash 6a25354061824b15b41a9523319330cf
243e6ba535e4d116c7843abf7c1714e16a5a5ca4
057df002b57498050de8d8b8ace31862e38cdcc1e7b2f6cb473a1f7f252a592a
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-4e26cd6b.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 578
x-version: 0.7.1+sha-f8fdc16
etag: "9219cf782ed219bd3929a51e99503bc2"
last-modified: Tue, 18 Oct 2022 15:47:49 GMT
x-amzn-trace-id: Root=1-634ecaa4-01886e4b7a7aeb6259ec4241
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-87bd33e6.js
95.101.10.131200 OK 714 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-87bd33e6.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1352)
Hash c9bf76a27fe91eca6917c337928781ad
e7f9959787fb6cc1db5d8abf6deeb6e31697955e
4b8d4566442e35f4f8d631bad06db22eb7a6464e300f29f0176f9f74be51f790
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-87bd33e6.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 714
x-version: 0.7.1+sha-f8fdc16
etag: "5cc6b93d41889c0a55c6c4fcd2d89713"
last-modified: Tue, 18 Oct 2022 15:47:53 GMT
x-amzn-trace-id: Root=1-634ecaa8-5441fae57a8929061baf3c6b
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout28-Theme-publish-Theme-24cd15e9.js
95.101.10.131200 OK 58 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-layout28-Theme-publish-Theme-24cd15e9.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash f94c381cbe1c66e875912e4d40fbccf9
0fb1dfe0a3a56f4177a73da123b7f89b64002d96
73c665c51ba4c14fe138bcb8241e228be6ea52503ac63855c54d6e112332ef87
GET /blobby/go/static/radpack/@widget/LAYOUT/bs-layout28-Theme-publish-Theme-24cd15e9.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4844
x-version: 0.7.1+sha-f8fdc16
etag: "4f4ef394e123ee966048b4b338874363"
last-modified: Wed, 26 Oct 2022 17:30:52 GMT
x-amzn-trace-id: Root=1-63596ecb-37f3ad7205dc40e123604317
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-linkIndicator-c1af92dd.js
95.101.10.131200 OK 370 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-linkIndicator-c1af92dd.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (483)
Hash 1915b6d1a9d5b94feb92ce6394b1b9bd
f78df2180513b2b3860fbf6657df83aaf98c440b
e09db77ce1876a3cfaf0cd10c23966bd4daf2d141bec0adb3a395acf8934afff
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-linkIndicator-c1af92dd.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 370
x-version: 0.7.1+sha-f8fdc16
etag: "ac687af8368a5dbe36b23037664288bf"
last-modified: Thu, 14 Oct 2021 23:04:39 GMT
x-amzn-trace-id: Root=1-6168b786-601284ce47d2b31a42acfd10
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js
95.101.10.131200 OK 740 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3043)
Hash ef933bdbde5407473165c8076c400033
a4ed7ffc21e649f1a7463021892a1f7d7ef8275b
c7a5729828eef458dec3177ba83479f77c11ef943d44d407fa8d82067d3afb83
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 740
x-version: 0.7.1+sha-f8fdc16
etag: "852cbc5322260e00b44f2c682f88b2c7"
last-modified: Thu, 14 Oct 2021 23:04:41 GMT
x-amzn-trace-id: Root=1-6168b788-04e31f272fd746490d747855
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-modernThinRound-ced97fbd.js
95.101.10.131200 OK 5.3 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-modernThinRound-ced97fbd.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13834)
Hash 70459dd57a635e709299db135eb0640e
a30904218e5f371aa0ae88540e1ef2fcb2085286
c9cc01a212d2420f6e3bcb674d7a60951fb8e0e0589cfb3a0f29c6463e364ed2
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-modernThinRound-ced97fbd.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5262
x-version: 0.7.1+sha-f8fdc16
etag: "c7b1dbb0eef8600d5f57536998855e4d"
last-modified: Tue, 18 Oct 2022 15:47:51 GMT
x-amzn-trace-id: Root=1-634ecaa6-6a5df4eb0331969c6f29d4e8
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js
95.101.10.131200 OK 335 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (383)
Hash 21f75a3937961a662b8d8879193c440c
4b1ed44a75627896d16fa62b335c445470b014a7
84559c119581a7d097957055082a3d95fb9af3043cd3237f27756d3332eeba76
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 335
x-version: 0.7.1+sha-f8fdc16
etag: "21ad22788e6caa18a4e9e57f7372b108"
last-modified: Mon, 13 Dec 2021 22:59:02 GMT
x-amzn-trace-id: Root=1-61b7d035-018188ae176241301ebce646
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js
95.101.10.131200 OK 7.4 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (20947)
Hash a26261197e090f79831923f5782261b0
5d70da81ca7f5cc9896345d5f693f95d5cace68d
b4699c5bda40f69eaf66ff7ac61096b67f7c818d4f60e09a53caaae43da6162f
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 7371
x-version: 0.7.1+sha-f8fdc16
etag: "753cb19ee1a756e46faa0f118b1b4e01"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-63510b321c43bb775186e613
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
95.101.10.131302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl-tti.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
cache-control: max-age=1800
expires: Sat, 10 Dec 2022 05:07:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js
95.101.10.131200 OK 645 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1211)
Hash 308e5d07deeecf43d8424fb8bb23b585
6080c959f72e6a6b86128b205a452642787438ac
b40c4d01f2d3325f366059c5d2fd632823d6c3d4c70e0b7ef91d284df2e69a83
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 645
x-version: 0.7.1+sha-f8fdc16
etag: "cb9bfa0fbdd957fbe7f4841b70341db2"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-6c5c5f0d6dd6c2ec69a41ad3
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js
95.101.10.131200 OK 626 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1824)
Hash 11370164b73124ea595098d2ecbe6d0b
bcc349130116ef2aee6ed77984b7726b43af8576
d2a8fc6601e5e3b7c457e6c56f225547618fb5b454ba5dd37082cfa67ab4453e
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 626
x-version: 0.7.1+sha-f8fdc16
etag: "edc15ad5daac3cfa744bffdb1e0174be"
last-modified: Mon, 13 Dec 2021 22:59:00 GMT
x-amzn-trace-id: Root=1-61b7d033-2da3a4b6382be71e0d8c5ecb
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js
95.101.10.131200 OK 191 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash cec9b0814a648933ea94f34556da96ab
b1633975363116ff254ad319b033a1022d483922
cb8d0e2233b2d495612d7644089dec2bcb7b3d02d7ccb775df3b8ca4a995a9f8
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 191
x-version: 0.7.1+sha-f8fdc16
etag: "8f12765eb30fbdcfcdc116d13f7fc272"
last-modified: Thu, 28 Jul 2022 17:59:29 GMT
x-amzn-trace-id: Root=1-62e2ce80-4ef8fc4a33c151912970138f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js
95.101.10.131200 OK 244 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash 835256b0b1680833155abf0f7420cca2
1d7eca7af4c7fdc66cfe34c1796ce7c3376d21b3
b876ca1181efb3e0c9eac5384578fe015bc322c2a5407f4a86826374c86e4187
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 244
x-version: 0.7.1+sha-f8fdc16
etag: "daa79ad7558674f6a12d962abf47f2f6"
last-modified: Thu, 14 Oct 2021 23:04:37 GMT
x-amzn-trace-id: Root=1-6168b784-1438c006715eea557e6c9f7f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js
95.101.10.131200 OK 520 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (905)
Hash 0d96832a511b8084e26c9ab3c4113ee4
1c974cbf9c4ab33938651224ed4efffb54c805a1
d102bff521ce660e38c0d0c9ac12c90beec4662b216df3e6957fc6ab8fc92b2a
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 520
x-version: 0.7.1+sha-f8fdc16
etag: "62a914b2c847d4d02b76164d7a2a54c6"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-3de8a43b0cf7990c68d55390
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js
95.101.10.131200 OK 212 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash b7a722d87376fba46c53778c978eaa2f
28e5ddf87609f53a3bfb97de182692f56af3225e
b45e399438c804bfdfdc651173ca1665840919de192aa186fe0519b74e855520
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 212
x-version: 0.7.1+sha-f8fdc16
etag: "8578a331ad09bb2ef6359fec3916befc"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-311ca1193326a1db522ca4d2
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js
95.101.10.131200 OK 380 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (522)
Hash 8cd52ce279347ad60ff4fc7af72deb2c
ff739775085ffdbb84cd820ec6364d870cfa0939
03f4ce2fa2cf258c23b63028975cbc39dd3f69cb9c1dc21f942ffd3a4badb817
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 380
x-version: 0.7.1+sha-f8fdc16
etag: "fadb3719ffa2a9e96cdc64ffea0220fa"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-239be6cd0632f6776811c293
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js
95.101.10.131200 OK 270 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (330)
Hash 540d87b49f631e492f25e1c423a1cf96
96bee6e25b9a99e9ff3d538da7cc00489bb0f948
dbd812387f08b7955e990dab286f417b0fb19099873923be25bf5bc45a373c6c
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 270
x-version: 0.7.1+sha-f8fdc16
etag: "c86b7f8224fa45fb1682ac94d8f75ac6"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-044169b84eb7e18f3216950e
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1279,m
95.101.10.131200 OK 46 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1279,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9723947d4a92107cff42b010a80cfd47
00ed64f48eea6985b359ad22f48b90f4a8db5dff
55b0e226eba55f0d812952b6806a426ce1be75e579be4911df4f05628e1a6621
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1279,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 46422
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 4173217224
x-width: 1279
x-height: 725
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/62901A28-09EF-498D-AD0A-76D64A43AA26.jpeg/:/rs=w:1279,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-EmbedVideo-Component-647309ac.js
95.101.10.131200 OK 1.4 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-EmbedVideo-Component-647309ac.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3508)
Hash 383a6fec3e16bdf23c3ae36829d85d1e
34cc8ee4b5bec6f85bfce6b76073bffbe975c3f4
0682cca622c4a77341c12d61d8a07d0a22c17954a25a3f837d40782f802358c3
GET /blobby/go/static/radpack/@widget/LAYOUT/bs-EmbedVideo-Component-647309ac.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1431
x-version: 0.7.1+sha-f8fdc16
etag: "4165a3c2be2e92750e976c04507fd0df"
last-modified: Tue, 18 Oct 2022 15:47:50 GMT
x-amzn-trace-id: Root=1-634ecaa5-72d9a02809e6ffce700a7b86
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-Search-Component-6b2b8cc5.js
95.101.10.131200 OK 3.4 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-Search-Component-6b2b8cc5.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (15212)
Hash 797f7d51f7604965177bd8adf14a122a
acdffb8abda80fd07859ba61d04bcbf1b4e913b9
cc19e7fdc72d7dfb4245e582772cab4b1d5b04c9645ca436c31f55930c14fa36
GET /blobby/go/static/radpack/@widget/LAYOUT/bs-Search-Component-6b2b8cc5.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3447
x-version: 0.7.1+sha-f8fdc16
etag: "2b046a91ed19239e5cc9460b6b4e9991"
last-modified: Tue, 18 Oct 2022 15:47:49 GMT
x-amzn-trace-id: Root=1-634ecaa4-22c995fd24979ab828c83504
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-CartIcon-Component-42de3794.js
95.101.10.131200 OK 2.5 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-CartIcon-Component-42de3794.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8954)
Hash 810ef77086c590782a4318bedf6425a1
91625fb619e6b248fc112ce781f4bb39d6058100
6fefaed489181e9534dced539d27d7ab5caef97ba9acefb86c4c53b4868b49d5
GET /blobby/go/static/radpack/@widget/LAYOUT/bs-CartIcon-Component-42de3794.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2540
x-version: 0.7.1+sha-f8fdc16
etag: "f657016c77f04f94e9dd9e6c40d69d30"
last-modified: Tue, 18 Oct 2022 15:47:48 GMT
x-amzn-trace-id: Root=1-634ecaa3-6802c6913da603e9655f8e82
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/SHOP_FEATURED_CATEGORY/bs-Component-76fea162.js
95.101.10.131200 OK 283 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/SHOP_FEATURED_CATEGORY/bs-Component-76fea162.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash e5d5c6c7aa8b17f3d2af1d5433030da1
e7433f923ed8f30b216a30728f2ee857cecc0b59
39fd57cdaf31d84bb6c18b3a0f458feb77915fea99566228f7778f6af0153ab7
GET /blobby/go/static/radpack/@widget/SHOP_FEATURED_CATEGORY/bs-Component-76fea162.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 283
x-version: 0.7.1+sha-f8fdc16
etag: "88d90de0079f8e095cb58ee883e444d0"
last-modified: Mon, 10 Oct 2022 22:56:49 GMT
x-amzn-trace-id: Root=1-6344a330-50935dfd5dfcb942539b9f83
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-229d1624.js
95.101.10.131200 OK 1.3 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-229d1624.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3283)
Hash 79528e8ed0d5e61c9f1c7afa0ab84919
f969f965c6f228ad0b3940b084f036a7e140285d
74d8189bbe76b6bf19fab1103c9b33cef500c49a326d21381439e36308889c0c
GET /blobby/go/static/radpack/@widget/LAYOUT/bs-FlyoutMenu-Component-229d1624.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1272
x-version: 0.7.1+sha-f8fdc16
etag: "1e4c3172663ad2acc0cec9723e93d39f"
last-modified: Tue, 18 Oct 2022 15:47:48 GMT
x-amzn-trace-id: Root=1-634ecaa3-136b09c8384cc9f7782c2932
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigation-41f06436.js
95.101.10.131200 OK 215 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigation-41f06436.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
Hash dd763347bd7f2d9169b57a21db7e1263
452a5f872ba18cda0dcc734f8e9881255c854dae
418d9c8b723cf33fbbf9b3a8a639c8c6c02d70f80434261e9fe38d072d1cf90b
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigation-41f06436.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 215
x-version: 0.7.1+sha-f8fdc16
etag: "baf235e76fe61c77a785575fdc407e93"
last-modified: Thu, 14 Oct 2021 23:04:34 GMT
x-amzn-trace-id: Root=1-6168b781-72b779b74527d9a90234987d
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-PortalContainer-d61db76e.js
95.101.10.131200 OK 530 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-PortalContainer-d61db76e.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1084)
Hash 44453873db3d5d5d30ef971c7419ea2f
3f08a25e86d5d49d22906c9ca9828278e22a8557
a3df54b8cebbee9993d2b7081c912890e429d7b4ca9efebf8a9dfa18f9a783c4
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-PortalContainer-d61db76e.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 530
x-version: 0.7.1+sha-f8fdc16
etag: "05bd31abe2acd85189d65826bc5b4b28"
last-modified: Tue, 18 Oct 2022 15:47:51 GMT
x-amzn-trace-id: Root=1-634ecaa6-3267f7fa483970872c1fcca5
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-ComponentPropTypes-39236c19.js
95.101.10.131200 OK 1.5 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-ComponentPropTypes-39236c19.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4534)
Hash ec5ecd590818f261dee6ca57fb0baf42
4c499210db68a00848cd9adf9d69eafa5917c75d
d794294b304901d336205c7b22083bfada3bc225607efe6aa66f09a49c83f723
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-ComponentPropTypes-39236c19.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1507
x-version: 0.7.1+sha-f8fdc16
etag: "51b3db71fe49008adbcd4716f4272e44"
last-modified: Tue, 18 Oct 2022 15:47:51 GMT
x-amzn-trace-id: Root=1-634ecaa6-3b6a91231e39fb4f3a8336f4
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-37f740c7.js
95.101.10.131200 OK 1.0 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-37f740c7.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2368)
Hash 35a569a8f234dd0e9dc95d30b59bc4b7
2adbea56ede3b78b58b42755e0a5581af8e21da3
5e1f27bc346180b3c83e4ad6136f98f371b6b80d7b7fdec9d53fc8cdc51eaba4
GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-Toggle-37f740c7.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1022
x-version: 0.7.1+sha-f8fdc16
etag: "abfd2ada44521989f7c040fc3eaef6c9"
last-modified: Tue, 18 Oct 2022 15:47:52 GMT
x-amzn-trace-id: Root=1-634ecaa7-75a8716f2a05bb6823206f27
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1279,m
95.101.10.131200 OK 36 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1279,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash cf868c038dd7998f382778693c8a1d59
50fea6dcbdb3c2a9f36238d2fe6910b85eb3cfb9
86a4e983b087cf231e7389ab07525bdc9fd38e31b31f4cd9c1965b984b0e86a0
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1279,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35864
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 632613269
x-width: 1279
x-height: 715
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/ols/Finishing%20Serum%20LANDSCAPE%20_02-V2-20210504_H.jpg/:/rs=w:1279,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pf9YDoFZcW4llwbanDdy1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MkMspx5e0vDU+UFzfLwNdJ5d+5I=
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
95.101.10.131200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iasalonmontreal.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Sat, 10 Dec 2022 04:37:03 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
player.vimeo.com/video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0
162.159.128.61200 OK 5.8 kB URL HTTP/1.1 player.vimeo.com/video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (17661), with no line terminators
Hash fbcdd3965d97510a1d3737a4b3b64be1
cdcdc6f9b29d2316e2e7d5fcaa63945927a919e4
5f88cfd842c680c405e52f447fdc340499adc4b97f060a5c9697f171677f3e8b
GET /video/649253484?h=66f901c40b&autoplay=1&loop=1&autopause=0&muted=1&title=0&byline=0&portrait=0&controls=0 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 04:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 10 Dec 2022 04:47:02 GMT
x-host: player-959c5df45-wdntn
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-test-varnish-1
x-backend-proxy: playproxy32
x-bapp-server: player-959c5df45-wdntn
Age: 0
X-Served-By: cache-bma1627-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1670647023.317908,VS0,VE116
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=GVCwjWAx19iB2dhgCZBKQc4Ujh3BO4Wq_Q47o4AP9T8-1670647023-0-AWtCTBmFETVo8zc4R2H66T7ibrw9eI3l9WCLzkvXhfhAECac12Tv8GsXK1H3ZaKBuRrMganKobrKQh0XJk6dFqQ=; path=/; expires=Sat, 10-Dec-22 05:07:03 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 77734877af78b4f7-OSL
Content-Encoding: gzip
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/core-bundle-1a1a60ef.js
95.101.10.131200 OK 4.5 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/core-bundle-1a1a60ef.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12802)
Hash 9d2da7a1dd55f2a1ae822fcb141f4bee
ca8cca58fc1535b6e1af38b5d607a30cbeaa8950
f88e735f8a38d347799e00998af1cb7528a0b28f35be789532dbeb3ef1a6ac83
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/core-bundle-1a1a60ef.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4453
x-version: 0.7.1+sha-f8fdc16
etag: "81fdb86f05ed32c722bd4aa05250809d"
last-modified: Tue, 13 Sep 2022 20:51:09 GMT
x-amzn-trace-id: Root=1-6320ed3b-446683b13d3492b07ff70f8d
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/OlsConfigStore-fc6a9acd.js
95.101.10.131200 OK 3.4 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/OlsConfigStore-fc6a9acd.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11865)
Hash c51f8fb129fb4e256421fe6d76b62a98
4cd6707861cdd3409f6086b05796573a1c6d9ea9
c74c1b728172e7eb5c75b5a60df1c8a8c045d3fb4af73cc64b291ed5ef00a668
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/OlsConfigStore-fc6a9acd.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3443
x-version: 0.7.1+sha-f8fdc16
etag: "6ae651f6e551b01f66307f50704518ac"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-573af41b1071caca1464c8d6
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/ScrollWidgetConstants-6c8e59e7.js
95.101.10.131200 OK 5.6 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/ScrollWidgetConstants-6c8e59e7.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (17458)
Hash 45dab3675c18f4360b6d7a3f87dbee30
f85ecea19a8f2acd45e364069b04f2c06416c2a1
fded940f92d2d078f36741e62185722149efbfead9814320225df8fb492f296a
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/ScrollWidgetConstants-6c8e59e7.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5593
x-version: 0.7.1+sha-f8fdc16
etag: "02732fedd91a996ad0be8298ef301255"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-3a72dcdf0438b993520413da
x-forwarded-port: 443
x-forwarded-for: 64.202.160.109
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/utils/ApiUtils-43b0f989.js
95.101.10.131200 OK 1.4 kB URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/utils/ApiUtils-43b0f989.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3125)
Hash 1412b9228d826deeb0038a89255a4d80
8597a39727efcc9259e77805695f81a414f4e8bc
faa3f1e1f0deba217971df25c5bf5dfcaf14cd14a5d8979c3e44e2dbca22c4ad
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/ols-core/utils/ApiUtils-43b0f989.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1380
x-version: 0.7.1+sha-f8fdc16
etag: "321d15d1a0e8da5949eb9f7767541398"
last-modified: Tue, 13 Sep 2022 20:51:09 GMT
x-amzn-trace-id: Root=1-6320ed3c-50f215c7574ad1714f075437
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/index-f85dddbe.js
95.101.10.131200 OK 655 B URL HTTP/2 img1.wsimg.com/blobby/go/static/radpack/@wsb/guac-widget-shared/c/index-f85dddbe.js
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (969)
Hash 3764f5e0074d2e8ac42e33fdcea87369
0a53af928f3ea3563690dcd2f200c3ff324afb24
ed5b6961ecf1492ef33cfa40b5ccff14afd349d3ef4d0cd9734b4d5658d6b6ad
GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/index-f85dddbe.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 655
x-version: 0.7.1+sha-f8fdc16
etag: "285cd15eeb19ee1c3a052ec4ffdecf19"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-3c6910143463c3ba74293ede
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1279,m
95.101.10.131200 OK 198 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1279,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Size 198 kB (198306 bytes)
Hash 02856e2e697e5e16d567c55422e1c330
350a2d052c74e28215b45b6b4649491a4d5ec929
4d2e4cb799313eb01469ba43fccac67c32dc1bc578583dd2c5ee521911b6fdea
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1279,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 198306
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 3291375443
x-width: 1279
x-height: 640
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:03 GMT
date: Sat, 10 Dec 2022 04:37:03 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/1557931826733.jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1279,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
iasalonmontreal.com/favicon.ico
13.248.243.5404 Not Found 14 B URL HTTP/2 iasalonmontreal.com/favicon.ico
IP 13.248.243.5:0
File type ASCII text, with no line terminators
Hash d0fbda9855d118740f1105334305c126
bc3023b36063a7681db24681472b54fa11f0d4ec
a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe
GET /favicon.ico HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Cookie: dps_site_id=eu-central-1; _tccl_visitor=d6c6402c-2678-543d-8506-9cf3b6bd6002; _tccl_visit=d6c6402c-2678-543d-8506-9cf3b6bd6002
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 14
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
date: Sat, 10 Dec 2022 04:37:03 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash b81408535edef4b73951fa7683a0ecb4
2be1041a686c8d5130ce96600bc7ec68538b4cd9
7b68a0f94a2376708329d7fabc0000c92eb45755267bde5dc8983184b77f3ec7
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 10 Dec 2022 04:37:03 GMT
age: 1855184
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1658-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 121485
x-timer: S1670647024.778007,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash 04c3b0651277a3b03da32c25788c5ce8
a979fd22ad768b0e82b8143df253d8b70d784e32
e7081f8d8f3bd2b1eb0c411768bc43b267f94081d07d40e2c4956c0c4302cb34
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 10 Dec 2022 04:37:03 GMT
expires: Sat, 10 Dec 2022 04:37:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6566265200669645601
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.vimeocdn.com/video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184?mw=1300&mh=731
151.101.86.109200 OK 14 kB URL HTTP/2 i.vimeocdn.com/video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184?mw=1300&mh=731
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash fe9b92d32e7701b41960d318dbf3a8f8
cec7ba58de492d6f582d37a7e0f37f428202dfe5
b9aae9a72a14261d05be6bbb3457a87a9d7438abc6c0d9dd76addb37997babdd
GET /video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184?mw=1300&mh=731 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: fe9b92d32e7701b41960d318dbf3a8f8
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-w8k2
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 10 Dec 2022 04:37:03 GMT
age: 26287
x-served-by: cache-dfw-kdfw8210120-DFW, cache-bma1658-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 1, 0
x-timer: S1670647024.803619,VS0,VE122
vary: Accept
content-length: 13554
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184
151.101.86.109200 OK 19 kB URL HTTP/2 i.vimeocdn.com/video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 98325a35d64ad93e626bf7b5ed8a5a48
de7d75bcf07178f618c4da33572494dccc278a88
d170a51ca3f4505d274fa5c942d6f789d77d3b814659fde4c82415f8afd13504
GET /video/1308475778-8ffa7c16c7d5de2de5bc1bb22fbaefd2a64ad9d93183c1184 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 98325a35d64ad93e626bf7b5ed8a5a48
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-j425
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 10 Dec 2022 04:37:03 GMT
age: 1689595
x-served-by: cache-dfw-kdfw8210094-DFW, cache-bma1658-BMA
x-cache: miss, HIT, MISS
x-cache-hits: 9, 0
x-timer: S1670647024.693155,VS0,VE243
vary: Accept
content-length: 18894
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221206/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221206/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221206/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 09 Dec 2022 19:54:14 GMT
expires: Fri, 23 Dec 2022 19:54:14 GMT
cache-control: public, max-age=1209600
age: 31370
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/b9a9b1b9,b9adadfd,289af6dc,36e6d747,8d6458e3/audio/acaeb9c7,27ed671a/master.json?query_string_ranges=1&base64_init=1
23.73.2.150200 OK 3.4 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/b9a9b1b9,b9adadfd,289af6dc,36e6d747,8d6458e3/audio/acaeb9c7,27ed671a/master.json?query_string_ranges=1&base64_init=1
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (15546)
Hash 715b0dabf9b6e85bac39ac586ce0738b
ec44515cb143d3491eee4d17b3ef4f082e755bf0
4fd647ac7461d5b7a93de40eda32f8d33c5ebfeb92147272a5f21d7d7a944def
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/b9a9b1b9,b9adadfd,289af6dc,36e6d747,8d6458e3/audio/acaeb9c7,27ed671a/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1658001600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 3370
Aka-c-hit: cache-hit
Cache-Control: max-age=31515339
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.96014917.1670647024.159c5096
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=iasalonmontreal.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=iasalonmontreal.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=iasalonmontreal.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 10 Dec 2022 04:37:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=iasalonmontreal.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=iasalonmontreal.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=iasalonmontreal.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 10 Dec 2022 04:37:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5395
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5395
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5395
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5395
Expires: Sat, 10 Dec 2022 06:06:59 GMT
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 23607
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2b4c44cc196e1f4263a895ef54e6650
c5cea524045b3394c1dfe5e5fcac4637416f8587
e31f4b95811c01b2f2f181e11b7a8e1b4c57c3c7fc067c304e8dacc6fb176442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32378252-8233-4d6b-b3d2-720e3ac2d0bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3963
x-amzn-requestid: f067a6cf-758c-4c35-be64-3970b690ea7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e7VHdnoAMF0Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab7b-485a18b738763b2029f6c653;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sNDbt-t6jZeVPGJ9M80vQ3HFMvmKPI_sPwdwHCf1L_ECXYtKUNrhGg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:54:59 GMT
age: 24125
etag: "c5cea524045b3394c1dfe5e5fcac4637416f8587"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54daaab012d7327bc46324026fff6cf5
20f3487c7d7ecbc3309751e768f4e720ea8572a2
c65a762ef8520b85e73dcff7d93d4ca6b5093360c45f408245630607f559e42f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 17370
x-amzn-requestid: 9d40f44c-a43d-4776-9bcf-2234cc941088
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eNkEWiIAMFbyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa56-1752d4c9022602137b933701;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1qS7IgODcaKMsgVBSg_oWjw8aBwsPmiwJJigZh0fXi8UmDYZgoctBg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:52:33 GMT
age: 24271
etag: "20f3487c7d7ecbc3309751e768f4e720ea8572a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 03:28:41 GMT
age: 4103
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f812f19fa34380de62bc57a879fa24f
102e8572c0ec9be444a976a6ac79e7d389651c46
07a0114317594dff40692d964fdeca4cf22e4324546866042c8712577346d107
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3924
x-amzn-requestid: b211e655-f36c-44c1-b316-5bdeea6b0921
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMHG4ZoAMFSHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-75cd56ea0479970e3be4275e;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DB4kdpnob3tyFg5JwkA3zxfZzZUpHhOir1ltQklWOR2YjAZRfg43MQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:45:27 GMT
age: 24697
etag: "102e8572c0ec9be444a976a6ac79e7d389651c46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a81548132f6f176f60e4fc278114ff84
3f330d6c27242cc3d65b975ab4a1c39b08fb69de
82095572be60a13b933293fa38a956e366a854becc5532dfccbf5893366ab702
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7535
x-amzn-requestid: 9c904976-42b9-40c9-aefa-201f0f84358f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMUHw7IAMFSng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3a601e621f9f31c7509f4e52;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lqpcbADJan6TfJwh4c4A0pn6R11QwnLRxtyxQgFLLcCVvyVDMERfRg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:54:09 GMT
age: 24175
etag: "3f330d6c27242cc3d65b975ab4a1c39b08fb69de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5c47323f3c87a762f10eefa6428fd9a0
cb77a70e53cc19c8c8b1a2862bad8f4e59fca6a4
4445ce383fa1c8372d5251b5ff0233375270a379c3292c2f73589232e86f25b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 329d0b907614dc14b52c5b831b4fe363
e9db08cc3e3a36b84e6cdc151e15c10c2d5e8210
c28e30fb3c9d44a0b467dca7b1fcc0a16b2b482dc5e53ee755720adf9e8d6b24
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=iasalonmontreal.com&callback=_gfp_s_&client=ca-pub-4304469728362827&gpid_exp=1
142.250.74.34200 OK 256 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=iasalonmontreal.com&callback=_gfp_s_&client=ca-pub-4304469728362827&gpid_exp=1
IP 142.250.74.34:0
File type ASCII text, with very long lines (405), with no line terminators
Hash a2d4cee4a0ebb412d83138d2e2c1bdac
1260c519c346f7a383e516755614d1f7c60e81ee
739d3d5263f3e99b2df359e5bf77985740dd3079be56b9e6966e8fd9f642619b
GET /gampad/cookie.js?domain=iasalonmontreal.com&callback=_gfp_s_&client=ca-pub-4304469728362827&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 10 Dec 2022 04:37:04 GMT
server: cafe
cache-control: private
content-length: 256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/289af6dc/chop/segment-1.m4s?r=dXM%3D
23.73.2.150200 OK 97 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/289af6dc/chop/segment-1.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Hash 49ce37d8fc8c3506453278f1c51be844
4c5a2ad560611d03b3cb9a79cb8b09d97d9cc9c5
a9aac3835c343b04ab1a69963049fbd04535af6a07939a09b86fab3ee0c7970b
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/289af6dc/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-range: bytes
Content-Length: 97191
ETag: "b4d4ca267e6d9612b382ee541054a7ec"
using-starlord: true
origin-retrieved-hour: 1664503200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31536000
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647024.159c50a3
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5c47323f3c87a762f10eefa6428fd9a0
cb77a70e53cc19c8c8b1a2862bad8f4e59fca6a4
4445ce383fa1c8372d5251b5ff0233375270a379c3292c2f73589232e86f25b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
5852f1ed-9859-41b0-a8a2-9104b17e700f.mysimplestore.com/api/v3/config?timestamp=1670647022408
95.101.10.97200 OK 1.5 kB URL HTTP/2 5852f1ed-9859-41b0-a8a2-9104b17e700f.mysimplestore.com/api/v3/config?timestamp=1670647022408
IP 95.101.10.97:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3525), with no line terminators
Hash 3fc79b38613a4eaa791716518d602ce7
eb9b843d3567ab94cf4a3c8d4f961b43fd3ee9ba
4f1479eb4050ef73a25e51d902591488bcb021b6d47596d519219d02ecf7fad3
GET /api/v3/config?timestamp=1670647022408 HTTP/1.1
Host: 5852f1ed-9859-41b0-a8a2-9104b17e700f.mysimplestore.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: https://iasalonmontreal.com
access-control-allow-methods: DELETE, GET, HEAD, PATCH, POST, PUT
access-control-allow-headers: X-Requested-With, X-Prototype-Version, X-csrf-token, Content-Type, Accept, X-Session-Cart, X-Spree-Order-Token
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
etag: W/"e1d04f6e2ccfdb1de2093816602bcc2b-gzip"
x-request-id: b839eb60-4c61-4a4b-95cf-3644b76d4358
x-runtime: 0.315304
content-encoding: gzip
cache-control: private, must-revalidate, max-age=0
date: Sat, 10 Dec 2022 04:37:04 GMT
content-length: 1485
vary: Accept-Encoding
set-cookie: ALLOW_TEST_ORDER=BAhG--7f2f54f503d2c926ca3cd5345db22f30ad406ab3; path=/; secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 329d0b907614dc14b52c5b831b4fe363
e9db08cc3e3a36b84e6cdc151e15c10c2d5e8210
c28e30fb3c9d44a0b467dca7b1fcc0a16b2b482dc5e53ee755720adf9e8d6b24
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 10 Dec 2022 04:37:04 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/parcel/video/b9adadfd.mp4?r=dXM%3D&range=914-117822
23.73.2.150200 OK 117 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/parcel/video/b9adadfd.mp4?r=dXM%3D&range=914-117822
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 117 kB (116909 bytes)
Hash 6eb221f8b70ac73b2f0e9cbb0038eb04
fec818e033770e007f8e7fef38a9ace9cca03853
887219f1e991e6a125ba838319241f021befe7284973a5db191e9698bb617baa
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/parcel/video/b9adadfd.mp4?r=dXM%3D&range=914-117822 HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 116909
Last-Modified: Tue, 23 Nov 2021 22:44:37 GMT
Server: parcel
origin-retrieved-hour: 1637704800
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31533258
Expires: Sun, 10 Dec 2023 03:51:22 GMT
Date: Sat, 10 Dec 2022 04:37:04 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647024.159c50e0
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.73.2.150~requestid:159c50e0~time:1670647024~ghostforwardip:2.16.106.59~edgecache:cache-miss~rtt:8~region:NO-; path=/; domain=.akamaized.net;
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1723
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 10 Dec 2022 04:37:04 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
34.120.202.204200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 659
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Sat, 10 Dec 2022 04:37:04 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 329d0b907614dc14b52c5b831b4fe363
e9db08cc3e3a36b84e6cdc151e15c10c2d5e8210
c28e30fb3c9d44a0b467dca7b1fcc0a16b2b482dc5e53ee755720adf9e8d6b24
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=e328a52422b04e9da17151c39742b839c398e5bd1670647023 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1428
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 10 Dec 2022 04:37:04 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1670647023463&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=38907721&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=d2fe9c79-5a99-5fd8-9bfe-501da0905462&ht=perf&tce=1670647021088&tcs=1670647020894&tdc=1670647023455&tdclee=1670647021969&tdcles=1670647021965&tdi=1670647021933&tdl=1670647021147&tdle=1670647020894&tdls=1670647020893&tfs=1670647020876&tns=1670647020632&trqs=1670647021088&tre=1670647021139&trps=1670647021117&tles=1670647023456&tlee=0&nt=navigate&nav_type=hard
95.101.10.130200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1670647023463&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=38907721&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=d2fe9c79-5a99-5fd8-9bfe-501da0905462&ht=perf&tce=1670647021088&tcs=1670647020894&tdc=1670647023455&tdclee=1670647021969&tdcles=1670647021965&tdi=1670647021933&tdl=1670647021147&tdle=1670647020894&tdls=1670647020893&tfs=1670647020876&tns=1670647020632&trqs=1670647021088&tre=1670647021139&trps=1670647021117&tles=1670647023456&tlee=0&nt=navigate&nav_type=hard
IP 95.101.10.130:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1670647023463&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=38907721&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=d2fe9c79-5a99-5fd8-9bfe-501da0905462&ht=perf&tce=1670647021088&tcs=1670647020894&tdc=1670647023455&tdclee=1670647021969&tdcles=1670647021965&tdi=1670647021933&tdl=1670647021147&tdle=1670647020894&tdls=1670647020893&tfs=1670647020876&tns=1670647020632&trqs=1670647021088&tre=1670647021139&trps=1670647021117&tles=1670647023456&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://iasalonmontreal.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1670647021948&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=1922068145&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=5fb5ec48-cd77-5122-8543-b92aa4ef8e92&ht=pageview
95.101.10.130200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1670647021948&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=1922068145&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=5fb5ec48-cd77-5122-8543-b92aa4ef8e92&ht=pageview
IP 95.101.10.130:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1670647021948&dh=iasalonmontreal.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1690669604&cv=2.0.1&z=1922068145&vg=d6c6402c-2678-543d-8506-9cf3b6bd6002&vtg=d6c6402c-2678-543d-8506-9cf3b6bd6002&dp=%2F&ap=IPv2&trfd=%7B%22ap%22%3A%22IPv2%22%2C%22websiteId%22%3A%225852f1ed-9859-41b0-a8a2-9104b17e700f%22%2C%22pd%22%3A%222022-11-25T20%3A15%3A04.874Z%22%2C%22meta.numWidgets%22%3A9%2C%22meta.theme%22%3A%22layout28%22%2C%22meta.headerMediaType%22%3A%22Video%22%2C%22meta.isOLS%22%3Atrue%2C%22meta.isOLA%22%3Afalse%2C%22meta.isMembership%22%3Afalse%7D&hit_id=5fb5ec48-cd77-5122-8543-b92aa4ef8e92&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://iasalonmontreal.com
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://iasalonmontreal.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2
iasalonmontreal.com/
13.248.243.5200 OK 23 kB IP 13.248.243.5:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30388)
Hash e5715af452ecaeeb9f36a517240a0d4c
89f83862636c42b6bddac1237522e40f647bddb7
c167118fdc2811f0edda7870d48583a41592b1268117d2166441d1b956edf8cd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iasalonmontreal.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=eu-central-1; _tccl_visitor=d6c6402c-2678-543d-8506-9cf3b6bd6002; _tccl_visit=d6c6402c-2678-543d-8506-9cf3b6bd6002; __gads=ID=52cb92d24610ab64-2258e097ded900a9:T=1670647024:RT=1670647024:S=ALNI_MabZyySUv2oAUCfhRg9Vv3dhQem9g; __gpi=UID=00000b90694605df:T=1670647024:RT=1670647024:S=ALNI_MZfR0yGiUgOZUZJUT10LOo9kXYLTw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin,<https://5852f1ed-9859-41b0-a8a2-9104b17e700f.onlinestore.godaddy.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
content-type: text/html;charset=utf-8
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 461cfb7d9790f53929180d862418d88d
content-encoding: br
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
216.58.211.1200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 10 Dec 2022 04:37:04 GMT
expires: Sat, 10 Dec 2022 04:37:04 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
iasalonmontreal.com/boutique
13.248.243.5200 OK 18 kB URL HTTP/2 iasalonmontreal.com/boutique
IP 13.248.243.5:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31146)
Hash 8c22b1fd6f5abbdb1f8d9680ddb55646
7a729551207285ec695daff4d24a23160660e248
6b3aa5d7438b3732e530d5ca202f6f149583d5f23a98a58b970548f28154567a
Analyzer Verdict Alert fortinet Phishing
GET /boutique HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iasalonmontreal.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=eu-central-1; _tccl_visitor=d6c6402c-2678-543d-8506-9cf3b6bd6002; _tccl_visit=d6c6402c-2678-543d-8506-9cf3b6bd6002; __gads=ID=52cb92d24610ab64-2258e097ded900a9:T=1670647024:RT=1670647024:S=ALNI_MabZyySUv2oAUCfhRg9Vv3dhQem9g; __gpi=UID=00000b90694605df:T=1670647024:RT=1670647024:S=ALNI_MZfR0yGiUgOZUZJUT10LOo9kXYLTw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin,<https://5852f1ed-9859-41b0-a8a2-9104b17e700f.onlinestore.godaddy.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
content-type: text/html;charset=utf-8
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 682071dd369476293c35e8f3257aa5eb
content-encoding: br
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 04:37:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash c673540df00487eb24ced05da8aeedaa
9e9b876bfa5c63953a7de767f75b6848d9be20b8
d19e13bb97aaf1d1341cb96bd29c083f5eb35199f2dc19b74ca94b9b8fa8fb1e
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 10 Dec 2022 04:37:05 GMT
date: Sat, 10 Dec 2022 04:37:05 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-KrgeNkmggWcxRSixlRQWzw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:180,h:180,m
95.101.10.131200 OK 18 kB URL HTTP/2 img1.wsimg.com/isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:180,h:180,m
IP 95.101.10.131:0
ASN #20940 Akamai International B.V.
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3f94a7fd8963baeb5116e9ce1b9fa08c
066f1232ee87d4d4e0d4b95fc6fdc43172383619
0c6ec2f07648423422fea3381f5e61a4a1f0fe49cf7ac7ee658dcbd62c2f6cbc
GET /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:180,h:180,m HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iasalonmontreal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 17474
x-version: 0.4.4+sha-1355e94
x-track-origin-referer: https://iasalonmontreal.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 2276192632
x-width: 180
x-height: 240
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Sun, 10 Dec 2023 04:37:05 GMT
date: Sat, 10 Dec 2022 04:37:05 GMT
edge-cache-tag: /isteam/ip/5852f1ed-9859-41b0-a8a2-9104b17e700f/EE390478-8FB5-4312-8342-6371B244895D.png/:/rs=w:180,h:180,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-1.m4s?r=dXM%3D
23.73.2.150200 OK 194 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-1.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 194 kB (194066 bytes)
Hash 94cc743d76a67c602a39831c5ea8126d
82575f70656ef37df7323487bece6b3f4f766a2b
e1641cc57f00b51c49db431204e86a8f6420503b2dd5d94a0321f069ea99bade
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 194066
using-starlord: true
origin-retrieved-hour: 1657382400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31158511
Date: Sat, 10 Dec 2022 04:37:05 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647025.159c50f1
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-1.m4s?r=dXM%3D
23.73.2.150200 OK 1.5 MB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-1.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 1.5 MB (1520808 bytes)
Hash 7bec9ba9a5aea25ced2c1ce1eb4ec4e0
4bc1c5b2ac9cbd5e1953f8a0529d4b1e5b9ab513
bfa288234a40fc987c4b00d3bf5e6f1a6ca28d2a6512b6abf2092755d0b49db6
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1520808
using-starlord: true
origin-retrieved-hour: 1657814400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31536000
Date: Sat, 10 Dec 2022 04:37:05 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647025.159c5149
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-2.m4s?r=dXM%3D
23.73.2.150200 OK 194 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-2.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 194 kB (193851 bytes)
Hash aacca71db6266e9fc8c25f4b37638d5c
a0dcd7f199b81ac9325e0a69efe0596b3d5f3435
7e3a0f4f3a7a44a5f9a49fbd752b53800bafb5b859ca185480ac76e4942ddedf
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-2.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 193851
using-starlord: true
origin-retrieved-hour: 1657382400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=30955903
Date: Sat, 10 Dec 2022 04:37:05 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647025.159c5164
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-2.m4s?r=dXM%3D
23.73.2.150200 OK 1.5 MB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-2.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 1.5 MB (1485347 bytes)
Hash 0812f49a7bf7360ac9417cbd8329f1e6
fd3b1b70a73a96a022250f5601d9fe4bd7b77748
f30790f1bc8518ef04481a5c449020069b8e9e499bf2c84f36ae7b58cb4146a7
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-2.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1485347
using-starlord: true
origin-retrieved-hour: 1656871200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=30577046
Date: Sat, 10 Dec 2022 04:37:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647026.159c5181
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-3.m4s?r=dXM%3D
23.73.2.150200 OK 191 kB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-3.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 191 kB (191047 bytes)
Hash f657cc3ca564a538dec870eeb1167386
96a96a4dc2e781859b181541bcc7925e9ded1d78
880c9ea0962ddac7879dc9258b354a1076d64a0e3f9b4e9adf3aa2648e9e57b5
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/audio/b9a9b1b9/chop/segment-3.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-range: bytes
Content-Length: 191047
ETag: "b4d4ca267e6d9612b382ee541054a7ec"
using-starlord: true
origin-retrieved-hour: 1663930800
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31535954
Date: Sat, 10 Dec 2022 04:37:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647026.159c51a0
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-3.m4s?r=dXM%3D
23.73.2.150200 OK 1.2 MB URL HTTP/1.1 68vod-adaptive.akamaized.net/exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-3.m4s?r=dXM%3D
IP 23.73.2.150:0
ASN #20940 Akamai International B.V.
Size 1.2 MB (1155461 bytes)
Hash 2d1833ac0075522ceecc6319a24377ca
1b57c2a2f41c9f460588fdc07d98703af2ad47f4
e9b468e818594c7eb3d2f7d9d56564391d9d8a28fe5d797606997ef07325eb57
GET /exp=1670650923~acl=%2F1dc56cb9-8adc-451c-bb95-938c97635a23%2F%2A~hmac=7c19617d22fe5777935fdac2ba365e508bc790299c177db3d23ef31e02ccd920/1dc56cb9-8adc-451c-bb95-938c97635a23/sep/video/36e6d747/chop/segment-3.m4s?r=dXM%3D HTTP/1.1
Host: 68vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 1155461
using-starlord: true
origin-retrieved-hour: 1656871200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31535979
Date: Sat, 10 Dec 2022 04:37:07 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.96014917.1670647027.159c5233
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,CW:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.73.2.150
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
iasalonmontreal.com/produits-vedettes
13.248.243.5200 OK 0 B URL HTTP/2 iasalonmontreal.com/produits-vedettes
IP 13.248.243.5:0
Analyzer Verdict Alert fortinet Phishing
GET /produits-vedettes HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iasalonmontreal.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=eu-central-1; _tccl_visitor=d6c6402c-2678-543d-8506-9cf3b6bd6002; _tccl_visit=d6c6402c-2678-543d-8506-9cf3b6bd6002; __gads=ID=52cb92d24610ab64-2258e097ded900a9:T=1670647024:RT=1670647024:S=ALNI_MabZyySUv2oAUCfhRg9Vv3dhQem9g; __gpi=UID=00000b90694605df:T=1670647024:RT=1670647024:S=ALNI_MZfR0yGiUgOZUZJUT10LOo9kXYLTw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin,<https://5852f1ed-9859-41b0-a8a2-9104b17e700f.onlinestore.godaddy.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
content-type: text/html;charset=utf-8
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 70a9ef627cac7e5d4d05a9f6a8fc7f66
content-encoding: br
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2
iasalonmontreal.com/
13.248.243.5200 OK 0 B IP 13.248.243.5:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.7.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neILzCqgsI0mp9CNzoKmMw.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin,<https://5852f1ed-9859-41b0-a8a2-9104b17e700f.onlinestore.godaddy.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
content-type: text/html;charset=utf-8
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 461cfb7d9790f53929180d862418d88d
content-encoding: br
date: Sat, 10 Dec 2022 04:37:02 GMT
X-Firefox-Spdy: h2
iasalonmontreal.com/sw.js
13.248.243.5200 OK 0 B URL HTTP/2 iasalonmontreal.com/sw.js
IP 13.248.243.5:0
Analyzer Verdict Alert fortinet Phishing
GET /sw.js HTTP/1.1
Host: iasalonmontreal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dps_site_id=eu-central-1; _tccl_visitor=d6c6402c-2678-543d-8506-9cf3b6bd6002; _tccl_visit=d6c6402c-2678-543d-8506-9cf3b6bd6002; __gads=ID=52cb92d24610ab64-2258e097ded900a9:T=1670647024:RT=1670647024:S=ALNI_MabZyySUv2oAUCfhRg9Vv3dhQem9g; __gpi=UID=00000b90694605df:T=1670647024:RT=1670647024:S=ALNI_MZfR0yGiUgOZUZJUT10LOo9kXYLTw
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
content-type: application/javascript
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-e33985a
x-version: e33985a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 4d7c2a72c6e3361fceff0ab985b0b6fb
content-encoding: br
date: Sat, 10 Dec 2022 04:37:04 GMT
X-Firefox-Spdy: h2