www.mistimbas.com/mttm
92.204.68.53301 Moved Permanently 238 B IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b55a6efebdc75a5fbab9335b16f7bd25
6b200beeaec58573e42fbe3dfe70ef57651d8180
c0b58ca1177f325ab5c1d63ddca5083b75f380d5b9cc957c0ef148f8a0e65b2e
Analyzer Verdict Alert fortinet Phishing
GET /mttm HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Sep 2022 19:08:20 GMT
Server: Apache
Location: http://www.mistimbas.com/mttm/
Content-Length: 238
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 18:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oRieLphCDuy9feXt0tI7bOd9AnKhA-oe7FZvWMRlTEBiL6ZikjeRrg==
Age: 3170
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3962
Expires: Tue, 27 Sep 2022 20:14:23 GMT
Date: Tue, 27 Sep 2022 19:08:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ncunkFlCG9PNMgW2r4XX7L_nAYlSPyKjupFS_jRewpHTVXr-ggpUdw==
age: 35048
X-Firefox-Spdy: h2
www.mistimbas.com/mttm/
92.204.68.53302 Moved Temporarily 0 B IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing website detected
fortinet Phishing
GET /mttm/ HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Tue, 27 Sep 2022 19:08:21 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=j5752s1c30sb0f17fj9og51db5; path=/
Location: b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.mistimbas.com/mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
92.204.68.53200 OK 6.3 kB URL HTTP/1.1 www.mistimbas.com/mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8231), with CRLF line terminators
Hash 452c3000bd589664cabbbac16eae939c
1aec7458f514dfa1b7c61ddaac89888a0c218118
5528938a6979b90dfe47217e44f6e639907ae75539ccd3810983c12e4f175c77
GET /mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1 HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=j5752s1c30sb0f17fj9og51db5
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 19:08:21 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6295
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.trail-du-kreiz-breizh.com/sysm/mmt/utag.js
213.186.33.40200 OK 8.0 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/utag.js
IP 213.186.33.40:0
File type HTML document, ASCII text, with very long lines (3474)
Hash dd3db0c760342d24b49092f608be92b3
cf3577a4981b9464c253bda2e998f7ef66d7b283
554a71aa926d76586b2d79c589e83415f887eef0fef082131003dfb428f95872
GET /sysm/mmt/utag.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 8020
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3010_D5BA2128:0050_63334A25_7784:0E7E
x-iplb-instance: 29691
www.trail-du-kreiz-breizh.com/sysm/mmt/conversion_async.js
213.186.33.40200 OK 15 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/conversion_async.js
IP 213.186.33.40:0
File type ASCII text, with very long lines (2165)
Hash b5ecb7cdb6c9ea412f927918b43fee99
91a5730f0fc914526bfb345fa6b9d4343353b215
006673273edec3b92d11dc74729019a30296566da3abbdc08bf0a5c77073e357
GET /sysm/mmt/conversion_async.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 14896
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:9458_D5BA2128:0050_63334A25_12F7:2BE6B
x-iplb-instance: 29575
www.trail-du-kreiz-breizh.com/sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b5_002
213.186.33.40200 OK 58 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b5_002
IP 213.186.33.40:0
File type ASCII text, with very long lines (660)
Hash 1ab6869b6a11d22ebd60239e7ff32192
8009ecec7f21d12a4d588d1f83f6b9ad82261d6a
59efab26ef3853e4d0fdd9588a8a9263a5315084bf7b2f9cbe43b3e0de523d9c
GET /sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b5_002 HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-length: 57551
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:3805_D5BA2128:0050_63334A25_0F1C:1969E
x-iplb-instance: 29690
www.trail-du-kreiz-breizh.com/sysm/mmt/css.css
213.186.33.40200 OK 30 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/css.css
IP 213.186.33.40:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 6eeeded9c4e4813eaf2ff237fbef4d9f
b9baa52420e70aaaef18df005208f539ca4307e1
ec4e0fe33e833f84d71928d97133a6bea5a3ccb8ba2294be18cf03bcb15271e3
GET /sysm/mmt/css.css HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: text/css
content-length: 30097
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3010_D5BA2128:0050_63334A25_7785:0E7E
x-iplb-instance: 29691
www.trail-du-kreiz-breizh.com/sysm/mmt/js
213.186.33.40200 OK 108 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/js
IP 213.186.33.40:0
File type ASCII text, with very long lines (1714)
Size 108 kB (107870 bytes)
Hash 1dc6f5a018cf97cfbd6ea6ae8f85d046
936b49bb1dbe1f4581927f99bf38721292de5eb0
186dc7012ba24731118c4afa2ca5cf71900595cb3b3dc5466c1be3ed72a0d07a
GET /sysm/mmt/js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-length: 107870
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:14F3_D5BA2128:0050_63334A25_077C:2F630
x-iplb-instance: 29688
www.trail-du-kreiz-breizh.com/sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b54500
213.186.33.40200 OK 133 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b54500
IP 213.186.33.40:0
File type ASCII text, with very long lines (2728)
Size 133 kB (132941 bytes)
Hash 48e3bea4ef4f743a57d1317056fddf09
707570043d67deabc13c7648805fa43ab1022cdd
736834599cbae851c8d95dde8a36669e8f1cfb1cdc1b3899774f438b8faf013c
GET /sysm/mmt/0856addebbab20006d9d238f141e5f183cdd3bc7c19131f5edb1d47c92b54500 HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-length: 132941
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:0709_D5BA2128:0050_63334A25_002B:12962
x-iplb-instance: 29552
www.trail-du-kreiz-breizh.com/sysm/mmt/utag_003.js
213.186.33.40200 OK 3.5 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/utag_003.js
IP 213.186.33.40:0
File type ASCII text, with very long lines (1579)
Hash acc45ab5a732707ef1b5e36d0e41f13a
d5c37f958ed03e08ed2451128d1f1c6fa72e8166
d26e263de37e10abb6dd888af95f4500587b4d3440ec7161ceaf3dd79b1369bf
GET /sysm/mmt/utag_003.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 3522
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3010_D5BA2128:0050_63334A25_778F:0E7E
x-iplb-instance: 29691
www.trail-du-kreiz-breizh.com/sysm/mmt/utag_002.js
213.186.33.40200 OK 22 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/utag_002.js
IP 213.186.33.40:0
File type ASCII text, with very long lines (11428)
Hash ca674ae2930c9d1182df12c29711c7f3
e01010e7c995b136b9666ad9e58c801234d93a39
398d28f4057fb13de2344acae7bb83cd26aec4fdc0193e97f68e8b30811c806c
GET /sysm/mmt/utag_002.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 22283
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3805_D5BA2128:0050_63334A25_0F1D:1969E
x-iplb-instance: 29690
www.trail-du-kreiz-breizh.com/sysm/mmt/a
213.186.33.40200 OK 2.4 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/a
IP 213.186.33.40:0
File type ASCII text, with very long lines (2402), with no line terminators
Hash 2e3b983afff839198ba3e2e92e57e75c
b45213569b55c6a8bed9d3e219434cb79f451886
5173f54970a6342a40628185b55016943480d2e91174255c8012ce7916a9401d
GET /sysm/mmt/a HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-length: 2402
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:14F3_D5BA2128:0050_63334A25_077D:2F630
x-iplb-instance: 29688
www.trail-du-kreiz-breizh.com/sysm/mmt/ruxitagentjs_ICA2Vfhjqrux_10237220328075400.js
213.186.33.40200 OK 89 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/ruxitagentjs_ICA2Vfhjqrux_10237220328075400.js
IP 213.186.33.40:0
File type ASCII text, with very long lines (2055)
Hash deb2618bafaefea4a2a3293afc92c58d
4e14f4f5b1931bac303e7d4a041b02b568d709ae
8f8bc9ce2b5ecfb0661ee3e6ef8e66f866096fb88bf0bcba69918778d879e9cd
GET /sysm/mmt/ruxitagentjs_ICA2Vfhjqrux_10237220328075400.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
transfer-encoding: chunked
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:9458_D5BA2128:0050_63334A25_12F9:2BE6B
x-iplb-instance: 29575
www.trail-du-kreiz-breizh.com/sysm/mmt/tealium_prod.js
213.186.33.40200 OK 240 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/tealium_prod.js
IP 213.186.33.40:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f10c5d5ef362cec66e0f7a13590f4064
464117c6a91b0a7ce98323b417ee0ebca2f5349c
804e1f17b7f98e381d921869a6c57252b1b406cb5b3595f4da1263aea612abb9
GET /sysm/mmt/tealium_prod.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 240
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:0709_D5BA2128:0050_63334A25_002D:12962
x-iplb-instance: 29552
www.trail-du-kreiz-breizh.com/sysm/mmt/kessel-help.js
213.186.33.40200 OK 173 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/kessel-help.js
IP 213.186.33.40:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash e5ac5849ac25d6a34f6c2efc9941be6c
6845899dca8fb01dbc52be1f295f0c0193138c0f
77e1c0ff85d710c9f2926788d0711b3c45972d22bbea5f3ce14e0fc6606b68a0
GET /sysm/mmt/kessel-help.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 173
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:6314_D5BA2128:0050_63334A25_12FD:2BE6B
x-iplb-instance: 29575
www.trail-du-kreiz-breizh.com/sysm/mmt/Index.js
213.186.33.40200 OK 1.3 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/Index.js
IP 213.186.33.40:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 248a305d6f9c356f86804d0a36d37730
133faa97c203480e282e24a0d1857cdb99bc3433
38ae1b643c2de3129fd886024f86bdc9a5c8e554bc87136f5ecccaa8ff10ebbb
GET /sysm/mmt/Index.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
content-length: 1250
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:14F3_D5BA2128:0050_63334A25_077F:2F630
x-iplb-instance: 29688
www.trail-du-kreiz-breizh.com/sysm/mmt/mtb-equalhousinglender.svg
213.186.33.40200 OK 230 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/mtb-equalhousinglender.svg
IP 213.186.33.40:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 916635d10512ae6a1840614a895dcd38
db175de4c42281bb4d239c57d1b95b8e75c529ec
d58eb2802f72d0c6b1d944a1335e8fb914af44b51fe16097aad994c15b8cfbad
GET /sysm/mmt/mtb-equalhousinglender.svg HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: image/svg+xml
content-length: 230
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
x-iplb-request-id: 5B5A2A9A:0709_D5BA2128:0050_63334A25_002F:12962
x-iplb-instance: 29552
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 18:10:46 GMT
Expires: Tue, 27 Sep 2022 19:04:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gZ1dBGQnVAC_X0xncdMcSTfnB-2wrb1-FhorWbNqImab8p7KhE5nww==
Age: 3455
www.trail-du-kreiz-breizh.com/sysm/mmt/mtb-entrust.svg
213.186.33.40200 OK 1.3 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/mtb-entrust.svg
IP 213.186.33.40:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1349), with no line terminators
Hash 9a569ad20708d7453d89fe6c72e7fcdc
60b6a41620583484642f7c826faf8e3c879a6374
b2ef3bd17aa6bc2daa7b1209f7848b30c64f3068e43162b09a216639ab430ce5
GET /sysm/mmt/mtb-entrust.svg HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: image/svg+xml
content-length: 1349
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
x-iplb-request-id: 5B5A2A9A:6314_D5BA2128:0050_63334A25_130D:2BE6B
x-iplb-instance: 29575
www.trail-du-kreiz-breizh.com/sysm/mmt/kessel-client-prod.js
213.186.33.40200 OK 118 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/kessel-client-prod.js
IP 213.186.33.40:0
File type ASCII text, with very long lines (63933), with CRLF line terminators
Size 118 kB (118313 bytes)
Hash 0e161865bb4ab8df7883d3a3c599ae45
eac085b162891676b22dbd8f5345155bca3a1061
fa9885a82fdd8ec2b8e30ff90fcab48806968039ab189cdc344017c1de26c5b3
GET /sysm/mmt/kessel-client-prod.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
transfer-encoding: chunked
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:3805_D5BA2128:0050_63334A25_0F20:1969E
x-iplb-instance: 29690
www.trail-du-kreiz-breizh.com/sysm/mmt/js.mtb
213.186.33.40200 OK 322 kB URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/js.mtb
IP 213.186.33.40:0
File type ASCII text, with CRLF line terminators
Size 322 kB (322405 bytes)
Hash 9c5a48bd789473f18b8bf7bd777371f9
f84d9237854640f2b0cc554b816c17d11376af5a
6ef98ef294d03000d904d5f868598dc98667a0d00338cee40b3080a9d725d1cd
GET /sysm/mmt/js.mtb HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-length: 322405
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:3010_D5BA2128:0050_63334A25_779D:0E7E
x-iplb-instance: 29691
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2845
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:08:21 GMT
Last-Modified: Tue, 27 Sep 2022 18:20:56 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.trail-du-kreiz-breizh.com/assets/fonts/mandtbaltoweb-book.woff
213.186.33.40404 Not Found 196 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/assets/fonts/mandtbaltoweb-book.woff
IP 213.186.33.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /assets/fonts/mandtbaltoweb-book.woff HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.trail-du-kreiz-breizh.com/
HTTP/1.1 404 Not Found
date: Tue, 27 Sep 2022 19:08:22 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:8679_D5BA2128:0050_63334A26_1324:2BE6B
x-iplb-instance: 29575
www.trail-du-kreiz-breizh.com/assets/fonts/mandtbaltoweb-medium.woff
213.186.33.40404 Not Found 196 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/assets/fonts/mandtbaltoweb-medium.woff
IP 213.186.33.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /assets/fonts/mandtbaltoweb-medium.woff HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.trail-du-kreiz-breizh.com/
HTTP/1.1 404 Not Found
date: Tue, 27 Sep 2022 19:08:22 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:D5E0_D5BA2128:0050_63334A26_1650:1969F
x-iplb-instance: 29690
www.trail-du-kreiz-breizh.com/assets/fonts/mandtpg-iconfont.woff
213.186.33.40404 Not Found 196 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/assets/fonts/mandtpg-iconfont.woff
IP 213.186.33.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /assets/fonts/mandtpg-iconfont.woff HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.trail-du-kreiz-breizh.com/
HTTP/1.1 404 Not Found
date: Tue, 27 Sep 2022 19:08:22 GMT
content-type: text/html; charset=iso-8859-1
content-length: 196
server: Apache
x-iplb-request-id: 5B5A2A9A:791E_D5BA2128:0050_63334A26_175B:2BE6A
x-iplb-instance: 29575
tags.tiqcdn.com/utag/mtbank/olb-legacy/prod/utag.js
23.38.200.249200 OK 33 kB URL HTTP/2 tags.tiqcdn.com/utag/mtbank/olb-legacy/prod/utag.js
IP 23.38.200.249:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (11428)
Hash 00ea03b7bd72d30aea8ef9f81725f038
6b7c029ae2e16cc7e92d5f1366a90b942d661cd4
77c885c08aebc8d8080b12f97ea5fa719ef4c57e8ff723fe6fa5582dfa2c5868
GET /utag/mtbank/olb-legacy/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4e9cf25064003bbb26b1409333c6cc7b:1663204422.838639"
last-modified: Thu, 15 Sep 2022 01:13:43 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Tue, 27 Sep 2022 19:13:22 GMT
date: Tue, 27 Sep 2022 19:08:22 GMT
content-length: 32838
X-Firefox-Spdy: h2
mtb.d1.sc.omtrdc.net/b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210302 Found 0 B URL HTTP/1.1 mtb.d1.sc.omtrdc.net/b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: mtb.d1.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 302 Found
access-control-allow-origin: *
vary: Origin
date: Tue, 27 Sep 2022 19:08:22 GMT
content-type: text/plain;charset=utf-8
expires: Mon, 26 Sep 2022 19:08:22 GMT
last-modified: Wed, 28 Sep 2022 19:08:22 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_krdbcp=[CS]v4|0-0|63334A26[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Thu, 26 Sep 2024 19:08:08 GMT; SameSite=None;
location: http://mtb.d1.sc.omtrdc.net/b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:08:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 835e2c4f85cb775a5f41fc5812a4c822
908bbf99979fe449a97e1aa70233cb1295beb7b4
3f947b5197c13ee52fa85a51e94062876f4ba4ab3dff73fd0eaebdff4947fe0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:08:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 19:08:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com.ng/pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.com.ng/pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/990489911/?random=1650816711691&cv=9&fst=1650816000000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=687&u_aw=1366&u_cd=24&u_his=3&u_tz=-420&u_java=false&u_nplug=5&u_nmime=2>m=2oa4k0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fonlinebanking.mtb.com%2F&ref=https%3A%2F%2Fwww.google.com%2F&tiba=Welcome%20to%20Online%20Banking%20%7C%20M%26T%20Bank&async=1&fmt=3&is_vtc=1&random=3853279500&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.com.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 19:08:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 6de48f59cc1ffe9a243a646bdbb79c50
533da86b5f02d5bb8cce70ddb701ca805b3f0e33
aadfc7d6b8d248fbfc2da41450a84b8ef8e9346ef2efb99b1cf437befcfc73df
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "AADFC7D6B8D248FBFC2DA41450A84B8EF8E9346EF2EFB99B1CF437BEFCFC73DF"
Last-Modified: Tue, 27 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3520
Expires: Tue, 27 Sep 2022 20:07:02 GMT
Date: Tue, 27 Sep 2022 19:08:22 GMT
Connection: keep-alive
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FQn7mZ23lANLFB5Cf3tA6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AEEko9Apf1GhdNYj1zl+nkL6MVI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 835e2c4f85cb775a5f41fc5812a4c822
908bbf99979fe449a97e1aa70233cb1295beb7b4
3f947b5197c13ee52fa85a51e94062876f4ba4ab3dff73fd0eaebdff4947fe0a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:08:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 19:08:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mtb.d1.sc.omtrdc.net/b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210302 Found 0 B URL HTTP/1.1 mtb.d1.sc.omtrdc.net/b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: mtb.d1.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 302 Found
access-control-allow-origin: *
vary: Origin
date: Tue, 27 Sep 2022 19:08:22 GMT
content-type: text/plain;charset=utf-8
expires: Mon, 26 Sep 2022 19:08:22 GMT
last-modified: Wed, 28 Sep 2022 19:08:22 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_nwa=[CS]v4|0-0|63334A26[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Thu, 26 Sep 2024 19:08:08 GMT; SameSite=None;
location: http://mtb.d1.sc.omtrdc.net/b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
asset.mtb.com/Documents/html/homepage/favicon.ico
54.230.111.27200 OK 15 kB URL HTTP/2 asset.mtb.com/Documents/html/homepage/favicon.ico
IP 54.230.111.27:0
File type PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash e82f458a5c1c5353a97401eccc925613
949d6c8d06ca14b52f496c20f63fae269b6708c2
cd320f6e4a5ccfb2d08a5aca1d42dc606530d63e3d779038c41865c85568cbf3
GET /Documents/html/homepage/favicon.ico HTTP/1.1
Host: asset.mtb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/x-icon
content-length: 14862
accept-ranges: bytes
content-disposition: inline
content-encoding: gzip
last-modified: Wed, 04 May 2022 18:18:59 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-content-type-options: nosniff
x-dispatcher: dispatcher2useast1
x-frame-options: SAMEORIGIN
x-vhost: publish
date: Tue, 27 Sep 2022 19:08:22 GMT
cache-control: max-age=3600, no-cache="set-cookie"
etag: "3dce-5de33a8b9cac0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: twsm0WsDr6NZmXhUZvbdJaXqId2SHJ1-yHUBt3dMd76EVgEuMv87MQ==
age: 5
X-Firefox-Spdy: h2
mtb.d1.sc.omtrdc.net/b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210200 OK 43 B URL HTTP/1.1 mtb.d1.sc.omtrdc.net/b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/mtbdev/1/JS-2.9.0/s26564200233667?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event170&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: mtb.d1.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mistimbas.com/
Connection: keep-alive
HTTP/1.1 200 OK
access-control-allow-origin: *
date: Tue, 27 Sep 2022 19:08:22 GMT
expires: Mon, 26 Sep 2022 19:08:22 GMT
last-modified: Wed, 28 Sep 2022 19:08:22 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_krdbcp=[CS]v4|1C9FAD0DA7049573-1E20DD9DB7E92108|0[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Thu, 26 Sep 2024 19:08:08 GMT; SameSite=None;
etag: 3574069281243332608-4619605046486339443
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
mtb.d1.sc.omtrdc.net/b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.176.210200 OK 43 B URL HTTP/1.1 mtb.d1.sc.omtrdc.net/b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.176.210:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/mtb/1/JS-2.9.0/s29226534815182?AQB=1&pccr=true&ndh=1&pf=1&t=27%2F8%2F2022%2019%3A8%3A19%202%200&fid=1C9FAD0DA7049573-1E20DD9DB7E92108&ce=UTF-8&g=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&r=https%3A%2F%2Fwww.google.com%2F&cc=USD&events=event21&c16=no%20value&c17=Tuesday%3A3%3A00PM&v19=D%3Dc17&c20=D%3Dg&c21=1&v21=D%3Dg&c22=New&v22=1&c23=First%20Visit&v23=New&v24=First%20Visit&v26=stop&c41=OLB&v41=OLB&v136=1664305699916&v151=Tealium&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: mtb.d1.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mistimbas.com/
Connection: keep-alive
HTTP/1.1 200 OK
access-control-allow-origin: *
date: Tue, 27 Sep 2022 19:08:22 GMT
expires: Mon, 26 Sep 2022 19:08:22 GMT
last-modified: Wed, 28 Sep 2022 19:08:22 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_nwa=[CS]v4|1C9FAD0DA7049573-1E20DD9DB7E92108|0[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Thu, 26 Sep 2024 19:08:08 GMT; SameSite=None;
etag: 3574069280741621760-4619910415480282732
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash fc3e2f0eff5cf10ad05fd5b65ac00fa0
78c9a7bbf69937fd6bae311138da07ab2d71ca11
66c0ac49c7e48140c3b6ce931c4ca4949c1e60206fc2555b9313f0e04951993b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 27 Sep 2022 19:08:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 04:18:08 GMT
Expires: Wed, 28 Sep 2022 04:18:08 GMT
ETag: "78c9a7bbf69937fd6bae311138da07ab2d71ca11"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
52.141.217.134200 OK 899 B URL HTTP/2 wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (899), with no line terminators
Hash febf5127412d10ab24a963a20f6e1749
6adfd044f5741671e9677697aa7f388a076f9c0f
29cc0398365fcd34b071e03a55c09bd04666dd76f08e6b5bfcb38b0e61122e3f
POST /client/v3.1/web/wup?cid=mufasa HTTP/1.1
Host: wup-5d65a0ab.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 899
date: Tue, 27 Sep 2022 19:08:22 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: ad133cac-bae2-4f94-8da1-764acc357ef5
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.mistimbas.com/TSPD/?type=22
92.204.68.53404 Not Found 1.7 kB URL HTTP/1.1 www.mistimbas.com/TSPD/?type=22
IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 12bc9fcd7f59bd4a0c74e0477ccbad55
9c866d208d2bc04fdc136dbc1fef2e889beb9cbf
cdc8b52c9402b72ef9c698027c0d2ea63058ed98b832a31d3ac57c9e7f8b35ed
GET /TSPD/?type=22 HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Security-Request: required
x-dtpc: -49$505699701_104h3vRPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0e0
Connection: keep-alive
Referer: http://www.mistimbas.com/mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
Cookie: PHPSESSID=j5752s1c30sb0f17fj9og51db5; utag_main=v_id:0183805999dc0010a58631237b7800044006000900918$_sn:1$_se:1$_ss:1$_st:1664307499293$ses_id:1664305699293%3Bexp-session$_pn:1%3Bexp-session$vapi_domain:mistimbas.com; dtCookie=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0; rxVisitor=166430569970356P1O31UPBDQ346JK271QAJJJ00232FN; dtPC=-49$505699701_104h3vRPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0e0; rxvt=1664307500519|1664305699704; dtLatC=4; dtSa=-; cdContextId=2; bmuid=1664305699823-9E078075-2D34-4E1A-B3AE-8356849E1DC0; s_fid=1C9FAD0DA7049573-1E20DD9DB7E92108; s_cc=true; sc_visit_start=1; s_visitStart=no%20value; s_pv=no%20value; s_vnum=2096305699913%26vn%3D1; s_invisit=true; s_nr=1664305699920-New; s_dslv=1664305699920; s_dslv_s=First%20Visit; s_ppvl=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; s_ppv=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; TS5075d88f077=0856addebbab2800932ef6aa818f077ac491985d5354fc96b6c99b535be90d1adce5ce1d533f56299841b78fd3b09a7608e369e59f17200072373d6c5d5818a7fd1dbae3efb84f4cdd73331f9074060e65606fec14147d15
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 19:08:22 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 1699
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
54.230.111.57200 OK 221 B URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
IP 54.230.111.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
date: Tue, 27 Sep 2022 17:15:50 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XWjfiA1WVvRZ-VXuUU6PT0uqwwaJhxs7jWDOg10D7z6wFIvX24JBBw==
age: 6753
X-Firefox-Spdy: h2
wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
52.141.217.134200 OK 666 B URL HTTP/2 wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (666), with no line terminators
Hash 3767d14e6c4d57877cc432b6301e3953
ba827129dd36c3ce7bc1d2087c32ede500bcbccf
a08c9bbdd7a591909d89949363f696dced4aaa978ffcace52dc8d66e2b9b995e
POST /client/v3.1/web/wup?cid=mufasa HTTP/1.1
Host: wup-5d65a0ab.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 889
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 666
date: Tue, 27 Sep 2022 19:08:22 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: c618a6a9-b089-4b36-b26e-8febfc8bcf3b
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8e11a45d26e67fcf04c6044bc624d11f
a2a58632696a88e7f59197cef69b904cf1048934
1653e08691f0509738d63a3538a0502b4477177dd56f3727d18dec8f8b91f1b1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 19:08:22 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 06:00:07 GMT
Expires: Tue, 04 Oct 2022 06:00:06 GMT
Etag: "a2a58632696a88e7f59197cef69b904cf1048934"
Cache-Control: max-age=556903,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75168712ef20b4ff-OSL
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
54.230.111.57200 OK 221 B URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
IP 54.230.111.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 21:32:00 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2XTDdGOEnwpuIFmGS1TydVh8_s1pIO68Euy8kbB9jsuxNEOouoZKlA==
age: 77783
X-Firefox-Spdy: h2
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.57200 OK 3.2 kB URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.57:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
date: Tue, 27 Sep 2022 07:23:30 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O8PgXIW84q_zUz1tgz7ks9zW5g2-M2fJ2hQsTkPyiNrg61AwbArttA==
age: 42294
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f78c4377fed813c5041f31b116714539
3eca094f337b484fa34d4bbb6e57bbbb2dfd7149
bf2208a8578ac007a94903dc31a9e576b1bb73c3c7a5fdc3e36200d64bec48d7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 19:08:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 11:15:46 GMT
Expires: Mon, 03 Oct 2022 11:15:45 GMT
Etag: "3eca094f337b484fa34d4bbb6e57bbbb2dfd7149"
Cache-Control: max-age=489441,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75168712efedb51b-OSL
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
54.230.111.127200 OK 221 B URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
IP 54.230.111.127:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mistimbas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
date: Tue, 27 Sep 2022 07:50:10 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9EwuHgJp75m9YAEl6S3EUmROnyCVbDo0HuE_JyZzYMfK6yPf53DBQg==
age: 40694
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10873
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:08:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10873
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:08:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10873
Expires: Tue, 27 Sep 2022 22:09:36 GMT
Date: Tue, 27 Sep 2022 19:08:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MMrek5LO9ukZjB6VV-5McuE_maDzwTOihucz0kwxuaTJMNOpTchoJA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:52:00 GMT
age: 76583
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
age: 64948
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 63751
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 76745
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:02:24 GMT
age: 79559
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 76745
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.57200 OK 3.2 kB URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.57:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
date: Tue, 27 Sep 2022 00:31:17 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l34qFIKKdATG9xXZHamWPiBxVDY5bDdLLZJprXJFGQZgYbpVJ8hk2Q==
age: 67027
X-Firefox-Spdy: h2
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.127200 OK 3.2 kB URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.127:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
date: Tue, 27 Sep 2022 00:31:20 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tgBk-UAtxROPrRZps7wSEcCB7M-DewgCfXuhHSIAxAYgddnlqJxcvg==
age: 67024
X-Firefox-Spdy: h2
www.mistimbas.com/rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=1498881775&en=zgefxirc&end=1
92.204.68.53404 Not Found 1.7 kB URL HTTP/1.1 www.mistimbas.com/rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=1498881775&en=zgefxirc&end=1
IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 12bc9fcd7f59bd4a0c74e0477ccbad55
9c866d208d2bc04fdc136dbc1fef2e889beb9cbf
cdc8b52c9402b72ef9c698027c0d2ea63058ed98b832a31d3ac57c9e7f8b35ed
POST /rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=1498881775&en=zgefxirc&end=1 HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Security-Request: required
Content-Type: text/plain;charset=UTF-8
Content-Length: 1891
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
Cookie: PHPSESSID=j5752s1c30sb0f17fj9og51db5; utag_main=v_id:0183805999dc0010a58631237b7800044006000900918$_sn:1$_se:1$_ss:1$_st:1664307499293$ses_id:1664305699293%3Bexp-session$_pn:1%3Bexp-session$vapi_domain:mistimbas.com; dtCookie=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0; rxVisitor=166430569970356P1O31UPBDQ346JK271QAJJJ00232FN; dtPC=-49$505699701_104h-vRPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0e0; rxvt=1664307500519|1664305699704; dtLatC=4; dtSa=-; cdContextId=2; bmuid=1664305699823-9E078075-2D34-4E1A-B3AE-8356849E1DC0; s_fid=1C9FAD0DA7049573-1E20DD9DB7E92108; s_cc=true; sc_visit_start=1; s_visitStart=no%20value; s_pv=no%20value; s_vnum=2096305699913%26vn%3D1; s_invisit=true; s_nr=1664305699920-New; s_dslv=1664305699920; s_dslv_s=First%20Visit; s_ppvl=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; s_ppv=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; TS5075d88f077=0856addebbab2800932ef6aa818f077ac491985d5354fc96b6c99b535be90d1adce5ce1d533f56299841b78fd3b09a7608e369e59f17200072373d6c5d5818a7fd1dbae3efb84f4cdd73331f9074060e65606fec14147d15; cdSNum=1664305702599-sjn0000179-36e5b4e9-8f6c-4ed8-9bd5-6f7f43133e52
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 19:08:24 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 1699
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html
log-5d65a0ab.us.v2.we-stats.com/api/v1/sendLogs?cid=mufasa&cdsnum=1664305702599-sjn0000179-36e5b4e9-8f6c-4ed8-9bd5-6f7f43133e52&csid=240c1c56-ba1e-45e2-9f76-957ff016b543&ds=js&sdkVer=2.19.2.465.37bfd51
52.238.253.184204 No Content 0 B URL HTTP/2 log-5d65a0ab.us.v2.we-stats.com/api/v1/sendLogs?cid=mufasa&cdsnum=1664305702599-sjn0000179-36e5b4e9-8f6c-4ed8-9bd5-6f7f43133e52&csid=240c1c56-ba1e-45e2-9f76-957ff016b543&ds=js&sdkVer=2.19.2.465.37bfd51
IP 52.238.253.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v1/sendLogs?cid=mufasa&cdsnum=1664305702599-sjn0000179-36e5b4e9-8f6c-4ed8-9bd5-6f7f43133e52&csid=240c1c56-ba1e-45e2-9f76-957ff016b543&ds=js&sdkVer=2.19.2.465.37bfd51 HTTP/1.1
Host: log-5d65a0ab.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1392
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 27 Sep 2022 19:08:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.mistimbas.com/rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=2235814042&en=zgefxirc&end=1
92.204.68.53404 Not Found 1.7 kB URL HTTP/1.1 www.mistimbas.com/rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=2235814042&en=zgefxirc&end=1
IP 92.204.68.53:0
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 12bc9fcd7f59bd4a0c74e0477ccbad55
9c866d208d2bc04fdc136dbc1fef2e889beb9cbf
cdc8b52c9402b72ef9c698027c0d2ea63058ed98b832a31d3ac57c9e7f8b35ed
POST /rb_edeadee0-0165-4b9e-a91f-0085183ac4e1?type=js3&sn=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0&svrid=-49&flavor=post&vi=RPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0&modifiedSince=1650815871292&rf=http%3A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%3Frand%3D13M%26TBank%3D1252899642%26fid%3D1%26fav%3D1&bp=3&app=893c324bd7e5ac65&crc=2235814042&en=zgefxirc&end=1 HTTP/1.1
Host: www.mistimbas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Security-Request: required
Content-Type: text/plain;charset=UTF-8
Content-Length: 3836
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/mttm/b6ryf2hw5pef333cgsx88bk5.php?rand=13M&TBank=1252899642&fid=1&fav=1
Cookie: PHPSESSID=j5752s1c30sb0f17fj9og51db5; utag_main=v_id:0183805999dc0010a58631237b7800044006000900918$_sn:1$_se:1$_ss:1$_st:1664307499293$ses_id:1664305699293%3Bexp-session$_pn:1%3Bexp-session$vapi_domain:mistimbas.com; dtCookie=v_4_srv_-2D49_sn_72F665HB6FVAT19IEO345AFUIJ0JHFT0; rxVisitor=166430569970356P1O31UPBDQ346JK271QAJJJ00232FN; dtPC=-49$505699701_104h-vRPBLMRPFRCULVFUKWCGPQMCKVLRAPFGF-0e0; rxvt=1664307500519|1664305699704; dtLatC=4; dtSa=-; cdContextId=2; bmuid=1664305699823-9E078075-2D34-4E1A-B3AE-8356849E1DC0; s_fid=1C9FAD0DA7049573-1E20DD9DB7E92108; s_cc=true; sc_visit_start=1; s_visitStart=no%20value; s_pv=no%20value; s_vnum=2096305699913%26vn%3D1; s_invisit=true; s_nr=1664305699920-New; s_dslv=1664305699920; s_dslv_s=First%20Visit; s_ppvl=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; s_ppv=http%253A%2F%2Fwww.mistimbas.com%2Fmttm%2Fb6ryf2hw5pef333cgsx88bk5.php%253Frand%253D13M%2526TBank%253D1252899642%2526fid%253D1%2526fav%253D1%2C93%2C93%2C939%2C1280%2C939%2C1280%2C1024%2C1%2CP; TS5075d88f077=0856addebbab2800932ef6aa818f077ac491985d5354fc96b6c99b535be90d1adce5ce1d533f56299841b78fd3b09a7608e369e59f17200072373d6c5d5818a7fd1dbae3efb84f4cdd73331f9074060e65606fec14147d15; cdSNum=1664305702599-sjn0000179-36e5b4e9-8f6c-4ed8-9bd5-6f7f43133e52
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 19:08:26 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 1699
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html
wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
52.141.217.134200 OK 690 B URL HTTP/2 wup-5d65a0ab.us.v2.we-stats.com/client/v3.1/web/wup?cid=mufasa
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (690), with no line terminators
Hash 08afdbde456d92cbe411a5cdf11afd01
996cb108661c322f7449215a2478b134f35ec833
f17541e400f0028d6ab6cefa68e26320487cda2dcca3e3ce74e389afd99cba39
POST /client/v3.1/web/wup?cid=mufasa HTTP/1.1
Host: wup-5d65a0ab.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2724
Origin: http://www.mistimbas.com
Connection: keep-alive
Referer: http://www.mistimbas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 690
date: Tue, 27 Sep 2022 19:08:27 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 450663c4-e208-4349-a48b-fba6d280e864
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.trail-du-kreiz-breizh.com/sysm/mmt/mtb_app_wbk.js
213.186.33.40200 OK 0 B URL HTTP/1.1 www.trail-du-kreiz-breizh.com/sysm/mmt/mtb_app_wbk.js
IP 213.186.33.40:0
GET /sysm/mmt/mtb_app_wbk.js HTTP/1.1
Host: www.trail-du-kreiz-breizh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mistimbas.com/
HTTP/1.1 200 OK
date: Tue, 27 Sep 2022 19:08:21 GMT
content-type: application/javascript
transfer-encoding: chunked
server: Apache
last-modified: Mon, 26 Sep 2022 18:08:42 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Tue, 27 Sep 2022 19:23:21 GMT
vary: Accept-Encoding
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:6314_D5BA2128:0050_63334A25_12F8:2BE6B
x-iplb-instance: 29575