r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6412
Expires: Wed, 05 Oct 2022 23:57:08 GMT
Date: Wed, 05 Oct 2022 22:10:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
54.230.111.14200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 54.230.111.14:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Osk0SJ5wKILzC9PKINvrmkOWxmJX5R7dljRuPqJRXaAPiu7xl2JQhw==
age: 65264
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0080dd9d4b7bb6306f3b183a268280fc
3fc544744f23120abdf913614113194efae3719b
b7ca4e48a9daf0c904c7d7b946fae3b283cca683444eaff18c5e7b346222a108
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7CA4E48A9DAF0C904C7D7B946FAE3B283CCA683444EAFF18C5E7B346222A108"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13236
Expires: Thu, 06 Oct 2022 01:50:52 GMT
Date: Wed, 05 Oct 2022 22:10:16 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 37 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 04deb3caceaa389999e5086cf2dfed0f
67228a4132777633fd7880cb1ea226add6c445ea
181985e55f69b2008c672547e8f8306cf775d0a502fa79120cbb38440c2f552c
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: GqS3jHqprPFz8CT2G7uz8DhKmftS6XF59t1MAT_wDlUNgwvD6LHyRQ==
content-encoding: gzip
via: 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:09:04 GMT
content-type: application/json
content-length: 36953
age: 72
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VtpnKX-IxarEZNp3GuR7fj7JS07CwHY_kmnEVZRzTamPqLSOOF__yg==
Age: 22978
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 22:10:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pdpsouthafrica.org/
41.185.8.150302 Moved Temporarily 0 B IP 41.185.8.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
fortinet Phishing
GET / HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 05 Oct 2022 22:10:17 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Powered-By: PHP/7.4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd; path=/
location: app
pdpsouthafrica.org/app
41.185.8.150301 Moved Permanently 238 B IP 41.185.8.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f3fd011ec1d013d32baec024af9329a8
280004665c9256fca86d9da82c72ce7d82297461
84decd99628b3b44854da5999f3216d523d31c0aa5271c46cf1b290f356f6531
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
fortinet Phishing
GET /app HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 05 Oct 2022 22:10:17 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 238
Location: http://pdpsouthafrica.org/app/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 21:55:50 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WuAD4Cex-CwEv2csdWNhLKx_RTNwnJy9tpA89sy293ytbqelB6MLHg==
Age: 2444
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 22:10:17 GMT
Last-Modified: Wed, 05 Oct 2022 20:49:34 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DHU3CxwXFndYtc4o1qEmSg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yglETKzccbUYHzidCtUSECqkQSU=
pdpsouthafrica.org/app/
41.185.8.150200 OK 42 kB IP 41.185.8.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (42400), with no line terminators
Hash 7d91d7d2ec49bcea7a14006036053191
aa9a92c5eb23586d371a37c77e82d6bc0b5ea300
666963b67314b510c25139b7b80a8bd9460fb7bb52c097bf422a55534704c952
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
fortinet Phishing
GET /app/ HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-Powered-By: PHP/7.4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
pdpsouthafrica.org/libraries/layer-responsive.css
41.185.8.150200 OK 4.6 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/layer-responsive.css
IP 41.185.8.150:0
File type ASCII text, with very long lines (655)
Hash 4862abb2aa11bafabbfa3885faeeb686
003e4e3699c8aa60a7aa423668a3b2d871adecfe
4a5aefbad9090437a9fa23a88a96029d34dc153bc9ca372aa838dc13e5290f87
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/layer-responsive.css HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/css
Content-Length: 4639
Last-Modified: Mon, 16 May 2022 20:58:20 GMT
Accept-Ranges: bytes
pdpsouthafrica.org/libraries/style-responsive-update.css
41.185.8.150200 OK 1.9 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/style-responsive-update.css
IP 41.185.8.150:0
File type ASCII text, with very long lines (336)
Hash 327f3dee2ee52e3285f2beb467dc5368
c62c4374c08b70220b612544ad244ff3386bc697
43761e225af15b9ecc43ec9381ab35e2f92f877b6427c9a18f0e98c06658c99c
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/style-responsive-update.css HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/css
Content-Length: 1928
Last-Modified: Mon, 16 May 2022 20:58:22 GMT
Accept-Ranges: bytes
pdpsouthafrica.org/libraries/style-responsive.css
41.185.8.150200 OK 32 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/style-responsive.css
IP 41.185.8.150:0
File type ASCII text, with very long lines (583)
Hash 96bb3ce65f0338c279b0c4bf2b84ea3b
5f4c25664b0736a78e0b9880397671fa508e398a
2c1930fe9617596873f369afb7fe2648ff26ce30a2e0b5fbe844e31c99b36236
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/style-responsive.css HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/css
Content-Length: 31907
Last-Modified: Mon, 16 May 2022 20:58:22 GMT
Accept-Ranges: bytes
pdpsouthafrica.org/libraries/buttons.css
41.185.8.150200 OK 48 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/buttons.css
IP 41.185.8.150:0
File type ASCII text, with very long lines (650)
Hash 41583a1c83584f2369b634ebc3996987
f3cb0e3761b1d34790711fcc7493be47ad7caa12
7ffdd76bf7d4a89f7e27408c9779ded93fe44672dbb166fa020edd284c3e5750
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/buttons.css HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/css
Content-Length: 48181
Last-Modified: Mon, 16 May 2022 20:58:20 GMT
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7384
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:10:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7384
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:10:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7384
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:10:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7384
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:10:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7384
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:10:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c37f49b9fb5eeb70a244a759a4ce0d
f2f4664206335b080db6a5608b463945e89de346
cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8192
x-amzn-requestid: b61498b4-22cd-4860-98e0-c7aad18a4d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sGTXoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-23d0f24731d3bfab253f2677;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: dQIy6UCVx9quf2joR_GopPrlSMyy0s8TN-xQqmY38u7ho2jIvTV7gw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 2018
etag: "f2f4664206335b080db6a5608b463945e89de346"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2e00e7f6054a915275111712ae68feb
016d84f56f97f1ab12c4046177e3e809aa861729
d042df692c87770504eaa80dae07601163a3b330061b5b9ec7b66a2bec759150
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11478
x-amzn-requestid: d058c900-2b03-4373-aa5b-0d91128de0e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQiMGXDIAMFbVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfada-743a7dda1804ecb76ae96592;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:58 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Geyupd7DZO0XRtj6uKJM-il3wOu82I2N26-vLgJCxYlid1Csm-fYxQ==
via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:01:17 GMT
age: 542
etag: "016d84f56f97f1ab12c4046177e3e809aa861729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2d101e6535dfc8ea8c193d3e97c07e1d
d839f3aa41455d818da9a794b0688b1144b3a03a
d73e79f203ef50354e078de30fcb52d298e14ad53924e0387ab586a9cb4376a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8651
x-amzn-requestid: 8bbdbc11-92fe-4cdf-8469-1c1ffac9e65b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPLIGG0IAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df8ad-132ee26478d791850dd14462;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: KBuHj1vlNgk4oflp8uIxuxuPoWh7B7O0SWrMrNP-lAhnp2m53ttPMw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:01:22 GMT
age: 537
etag: "d839f3aa41455d818da9a794b0688b1144b3a03a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23e10c01392e4958e4a4f19573290da9
59ab1c451c388f7b57da52bf518eff15e0c584ff
ece0b872f33166fcc2816595fdf1348664d985131bc943cd4a543524dede0274
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12752
x-amzn-requestid: 3c32a029-08d0-4f98-a0e0-48a7e05242b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sHXXIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-176be5177b67ddc068060b19;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 38BLK_SPdXrtERpTqLrMb0ScXokoyROXIJ74Zw0HrAV9hTGRd3o7dg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 2018
etag: "59ab1c451c388f7b57da52bf518eff15e0c584ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 52847
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00e43396123462b87cf3d3592dd71f02
8c895a5716462c161f98637053cac4469eaaea33
2fc70d34c11b2fc338714930bdf6efa14a1c3d4d7560a43061aea41c83ec4d2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10390
x-amzn-requestid: 3a01001b-3f8a-4118-9cce-af68e92b78bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjP2EEV4oAMFcqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df9c0-254f65637b3d98f8268fe321;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:40:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 7PsyVPG6o3G08CoNRuiY3iS-JL658WfKzUZQQTy4coWbKlYIQn5-Eg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:45:34 GMT
age: 1485
etag: "8c895a5716462c161f98637053cac4469eaaea33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pdpsouthafrica.org/libraries/global.sfr.min.css
41.185.8.150200 OK 404 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/global.sfr.min.css
IP 41.185.8.150:0
File type ASCII text, with CRLF, LF line terminators
Size 404 kB (404014 bytes)
Hash 154eebbc76f52662b3d1bb395dadb612
40f8244bda2c6f802c5f9c89212b99c7a2fa7309
ab9e40498cdcbba9cc88494dee9e30cd26bbb8ffd41eed1770975b453b05e437
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/global.sfr.min.css HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:18 GMT
Content-Type: text/css
Content-Length: 404014
Last-Modified: Mon, 16 May 2022 20:58:26 GMT
Accept-Ranges: bytes
static.s-sfr.fr/media/hs-search.svg
93.20.64.1200 OK 277 B URL HTTP/1.1 static.s-sfr.fr/media/hs-search.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 73624e9c883eb1182e75cf8ed5438fb7
48b3daabc18ade9fa750531b45d183df57834616
60e72b148cd2f3dee867ebe3ce482f58f947928410ad2010b8a7e10a18d6236d
GET /media/hs-search.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 08:16:31 GMT
expires: Mon, 10 Oct 2022 08:16:31 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 128011665, 691589860 395878509
Age: 222827
Via: front101-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-plus.svg
93.20.64.1200 OK 237 B URL HTTP/1.1 static.s-sfr.fr/media/hs-plus.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash fa1bd3a8f9b38f9b71c64988b2b90dcf
145e932e9806b39c5acbaa8fdf4f2dbabb61acff
b55cbba48328719b2ae20e8903f12ce9b23b17c498657fd71b867d2231c84dde
GET /media/hs-plus.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 08:43:12 GMT
expires: Mon, 10 Oct 2022 08:43:12 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 85729520 85821341, 136487801 906011174
Age: 221226
Via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-actus.svg
93.20.64.1200 OK 1.3 kB URL HTTP/1.1 static.s-sfr.fr/media/hs-actus.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 67a4aa34b1231295380ac51344cd8454
b3c554f26d3ec316dce3a5ce4fecb400b2f3da6c
5c6fd17dfe768ec4313c23717ccf9847b78791d902c817b0de7f07c2e2b668c5
GET /media/hs-actus.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 17:38:19 GMT
expires: Sun, 09 Oct 2022 17:38:19 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 901883191 901565914, 704689915 300210062
Age: 275520
Via: front100-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-tv.svg
93.20.64.1200 OK 891 B URL HTTP/1.1 static.s-sfr.fr/media/hs-tv.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0ec5b5ae07c8d40c8fa3a24e555e8745
9961dfec6daab0f4ecbab0877d868a556f25facc
38e1bb2dd470665f008d69a3f51e563d343ac90ee72123bba2bb2620b0b38be2
GET /media/hs-tv.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 17:06:11 GMT
expires: Sun, 09 Oct 2022 17:06:11 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 79192397 50562855, 137533525 871195751
Age: 277447
Via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-cloud.svg
93.20.64.1200 OK 1.1 kB URL HTTP/1.1 static.s-sfr.fr/media/hs-cloud.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 37a507787c809a3f1a6570f5dd5bac0f
e596d632cae13df6993d19b3f2b28b618703aae9
32342bdd9b98d1f9a0ac802a643155067dad57e243aa6fc2a0669c634c48be03
GET /media/hs-cloud.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 08:17:51 GMT
expires: Mon, 10 Oct 2022 08:17:51 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 926893049 926984951, 701121718 403572715
Age: 222747
Via: front200-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-home.svg
93.20.64.1200 OK 712 B URL HTTP/1.1 static.s-sfr.fr/media/hs-home.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d789bdbac4fae81ef1903fa77d7d115f
98bdbf4097c784d88f12bc80261caa7a9c5ebb89
0e036ed2c703644c50defeee972193a228f17dc087bdd1d5f6282db26ea2f7aa
GET /media/hs-home.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 19:46:49 GMT
expires: Sun, 09 Oct 2022 19:46:49 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 56916266 41285907, 88163647 823371322
Age: 267809
Via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-aide.svg
93.20.64.1200 OK 740 B URL HTTP/1.1 static.s-sfr.fr/media/hs-aide.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (593)
Hash 12b3998bd3d9cc090094f482f35f8bd5
44cd4a5474ef2f5f906bdfe0c87072191ba24c0d
b8a5b2d067d86a078dedd139320a38bbee84f2f75a4f67797453707e9cfd853e
GET /media/hs-aide.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 02:17:21 GMT
expires: Mon, 10 Oct 2022 02:17:21 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 124036089, 691589861 298335523
Age: 244377
Via: front200-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-boutique.svg
93.20.64.1200 OK 403 B URL HTTP/1.1 static.s-sfr.fr/media/hs-boutique.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Hash a89fb84ae5821109a62478163aa1426f
2bdda339ac5b9ceb2f138621e7963a5c030dd571
cb0f1f9aed6edd38642e4d0b73293444feea62b1dd08ca8f1cffe4bb72109d66
GET /media/hs-boutique.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 23:16:44 GMT
expires: Sun, 09 Oct 2022 23:16:44 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 54227188 61920319, 136487802 854407904
Age: 255215
Via: front101-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-handicap.svg
93.20.64.1200 OK 350 B URL HTTP/1.1 static.s-sfr.fr/media/hs-handicap.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 310d470c5376ba0678e963886e55616f
42b8a5d84b89c7fbcdc62f5e13cb78197a19a7e5
3fff4ed41d7d6484afcc169668b90df6d4878e9a5344ed22d200f9cdd42e8eae
GET /media/hs-handicap.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 09:05:07 GMT
expires: Mon, 10 Oct 2022 09:05:07 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 874634065 930683246, 704689916 404425354
Age: 219911
Via: front100-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-logo.svg
93.20.64.1200 OK 725 B URL HTTP/1.1 static.s-sfr.fr/media/hs-logo.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (864)
Hash 343a577a9ad4d6ca886912ff84bc9c17
0bb11973d529baa4a87536f22518894f4eb32fc0
5e5fba68be95b1882e904aa4ece5647fc159445580edf163752482fd73c815a6
GET /media/hs-logo.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 20:47:17 GMT
expires: Sun, 09 Oct 2022 20:47:17 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 73230110 60140590, 137533526 837763395
Age: 264182
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-panier.svg
93.20.64.1200 OK 388 B URL HTTP/1.1 static.s-sfr.fr/media/hs-panier.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 38f98bba56b6c781c7494cb8b96e249b
6eef145e3e45916ec86c4f69c489baf209ca67f4
62028badb785574d38b1843e9ec550a94b57e7780bbfeae33a9f8b24961f622b
GET /media/hs-panier.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 03:31:06 GMT
expires: Mon, 10 Oct 2022 03:31:06 GMT
SFRVia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 131215395 121721281, 701121719 185874207
Age: 239952
Via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/hs-mail.svg
93.20.64.1200 OK 325 B URL HTTP/1.1 static.s-sfr.fr/media/hs-mail.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 74e800e83e4885dc389aabb9eea594b0
327abcd9f07bcd609b71ad6b23f83e77ddce2998
8045ae5b4e9d7a3464a8f26a814a5d0fa221eaeb33f0f7a338159b421d8ec9b1
GET /media/hs-mail.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 07:02:18 GMT
expires: Mon, 10 Oct 2022 07:02:18 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 81151057 77850799, 88163648 910983580
Age: 227280
Via: front201-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/sfr-regular.woff2
93.20.64.1200 OK 16 kB URL HTTP/1.1 static.s-sfr.fr/media/sfr-regular.woff2
IP 93.20.64.1:0
File type Web Open Font Format (Version 2), TrueType, length 16500, version 1.0\012- data
Hash ea67ea298e5118937acaa8cb7476aa7f
b366e4df2081c99d7cb5d6e50c8d0bde1b5b497b
59852259d509f9853b168085de97a9fbe6fa7fd4b390ef1eb8aa19d99699caaa
GET /media/sfr-regular.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pdpsouthafrica.org
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 05 Oct 2022 16:45:19 GMT
expires: Thu, 06 Oct 2022 00:45:19 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 16500
X-Varnish: 925213516 925056179, 697752713 653848694
Age: 19499
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/hs-ec.svg
93.20.64.1200 OK 335 B URL HTTP/1.1 static.s-sfr.fr/media/hs-ec.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 9ff54c15a8204c39e0d30fb3f201e583
830b0b5e80d03e3357d77f770bf91d6f1eea0abd
c73e0cd73064ec5bbc367198d70198f9bc3c86a0b3ec7243cc9b4288a0a293f4
GET /media/hs-ec.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 08:22:53 GMT
expires: Mon, 10 Oct 2022 08:22:53 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 130092605 127915408, 691589862 393501591
Age: 222445
Via: front201-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/logo-nemericable.jpg
93.20.64.1200 OK 8.3 kB URL HTTP/1.1 static.s-sfr.fr/media/logo-nemericable.jpg
IP 93.20.64.1:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 197x61, components 3\012- data
Hash 856caf0a47fb3a4844a2be4a6565b181
762f278a7708f201fb453fd1a8dbaa19d9f5b85f
b648e64e295f8fb642df1992aa31ca2f1f331207982cb2fb1fa990a008d21054
GET /media/logo-nemericable.jpg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/jpeg
date: Mon, 03 Oct 2022 07:42:10 GMT
expires: Mon, 10 Oct 2022 07:42:10 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 8334
X-Varnish: 69291127 81931231, 701121720 387970047
Age: 224889
Via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/eye.svg
93.20.64.1200 OK 1.3 kB URL HTTP/1.1 static.s-sfr.fr/media/eye.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1347)
Hash f0cfe3a9a42af65f25940f16c9159abb
a8b99c60c485220314cb36899e969b08ea63a4a1
aa1b53966b4825bb1c2245ff2f3195dcf0ab167426b03ba061e2e025a6905d1c
GET /media/eye.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Sun, 02 Oct 2022 17:16:16 GMT
expires: Sun, 09 Oct 2022 17:16:16 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 749307967 727146774, 129159368 818018075
Age: 276842
Via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/bg-croix.png
93.20.64.1200 OK 1.7 kB URL HTTP/1.1 static.s-sfr.fr/media/bg-croix.png
IP 93.20.64.1:0
File type PNG image data, 320 x 71, 8-bit/color RGBA, interlaced\012- data
Hash 575c7ef0886bd7f88649ad0b9ac4cc8d
877ba085951289e3c190f256a6d6e8c3a90289b7
1cc4c0a338c295fbf4578a1c4a6b8a9a49bbf7b8aa0a673da0d9d025c8f921af
GET /media/bg-croix.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 03 Oct 2022 03:48:31 GMT
expires: Mon, 10 Oct 2022 03:48:31 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 1672
X-Varnish: 772577532 765365629, 691589863 391040378
Age: 238907
Via: front101-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/sprite-mire-2016.png
93.20.64.1200 OK 30 kB URL HTTP/1.1 static.s-sfr.fr/media/sprite-mire-2016.png
IP 93.20.64.1:0
File type PNG image data, 100 x 2180, 8-bit/color RGBA, non-interlaced\012- data
Hash d45496ab3134c90d2e04415304fb7efb
8e19a165c085024c1e8a495acd8a364c0701c0f3
4adf762670da7e1a8bc8e7a0de36f2b61742fe02fe23234e57f5a206263f40bf
GET /media/sprite-mire-2016.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 03 Oct 2022 09:03:43 GMT
expires: Mon, 10 Oct 2022 09:03:43 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 30033
X-Varnish: 132356795 132457107, 704689917 68613261
Age: 219995
Via: front200-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/logo_h_2x.png
93.20.64.1200 OK 2.8 kB URL HTTP/1.1 static.s-sfr.fr/media/logo_h_2x.png
IP 93.20.64.1:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash a29f5226d2ba74ec51e9cba79b7b1bd5
ce9cfe5bd14b19992ef01beeea3d8fedc60170ce
eafa77baa968994d26ef05f143f6492a0905a40744413b5efdfc992e5d0bacc1
GET /media/logo_h_2x.png HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/png
date: Mon, 03 Oct 2022 02:40:13 GMT
expires: Mon, 10 Oct 2022 02:40:13 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 2815
X-Varnish: 79987315 70963313, 1061617317 817640983
Age: 243005
Via: front100-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/hs-x.svg
93.20.64.1200 OK 223 B URL HTTP/1.1 static.s-sfr.fr/media/hs-x.svg
IP 93.20.64.1:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 320e37f46d31dc1f89d38d852bc35200
716d8aca5ad5db6160e4a0db76abeb9e7f42e142
33dbd34fea43e6688d2ec86831fc8f875198bda8028d8d10270a29e87f81b37a
GET /media/hs-x.svg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=604800, public
content-type: image/svg+xml
date: Mon, 03 Oct 2022 09:07:31 GMT
expires: Mon, 10 Oct 2022 09:07:31 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
X-Varnish: 79884635 81711279, 701121721 401839531
Age: 219767
Via: front200-piw-pr, 1.1 mit1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Content-Encoding: gzip
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive
static.s-sfr.fr/media/sfr-bold.woff2
93.20.64.1200 OK 16 kB URL HTTP/1.1 static.s-sfr.fr/media/sfr-bold.woff2
IP 93.20.64.1:0
File type Web Open Font Format (Version 2), TrueType, length 16196, version 1.0\012- data
Hash 6f05f089a06456a6f08c631516f7fb9b
8911d205e45b351f53eeb575fbd68926ababf0ce
897ed6430478b1a5e3e6b7895781e741ab26625c034c5d7473c4d355b8ffef83
GET /media/sfr-bold.woff2 HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pdpsouthafrica.org
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
cache-control: max-age=28800, public
content-type: font/woff2
date: Wed, 05 Oct 2022 15:04:33 GMT
expires: Wed, 05 Oct 2022 23:04:33 GMT
SFRVia: sa15860adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 16196
X-Varnish: 203446400 202731974, 704916253 677491041
Age: 25545
Via: front100-piw-pr, 1.1 bdx1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
netc.sfr.fr/dynview/sfr-fr/pix.gif?ead-publisher=NextRegie-BOL&ead-name=Display-acquisition-NextRegie-BOL-SFR-FR-OTT&ead-location=WebMail&ead-creative=sfr_ott_d+_sfrcinema_dropout_HABILLAGE&ead-creativetype=HABILLAGE&ead-mediaplan=SFR-FR-OTT&gdpr=true&gdpr_consent=&ea-rnd=1652741757924
109.232.196.59200 OK 43 B URL HTTP/1.1 netc.sfr.fr/dynview/sfr-fr/pix.gif?ead-publisher=NextRegie-BOL&ead-name=Display-acquisition-NextRegie-BOL-SFR-FR-OTT&ead-location=WebMail&ead-creative=sfr_ott_d+_sfrcinema_dropout_HABILLAGE&ead-creativetype=HABILLAGE&ead-mediaplan=SFR-FR-OTT&gdpr=true&gdpr_consent=&ea-rnd=1652741757924
IP 109.232.196.59:0
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 2 x 2\012- data
Hash ab787857a0e1740d6efd21c174d54baa
bf2d4544d24488290f611473416491d35d857ddd
546ff857e2a98234cfa067618f3958fd03762f2e8c6b44adbf4ab219b8a07151
GET /dynview/sfr-fr/pix.gif?ead-publisher=NextRegie-BOL&ead-name=Display-acquisition-NextRegie-BOL-SFR-FR-OTT&ead-location=WebMail&ead-creative=sfr_ott_d+_sfrcinema_dropout_HABILLAGE&ead-creativetype=HABILLAGE&ead-mediaplan=SFR-FR-OTT&gdpr=true&gdpr_consent=&ea-rnd=1652741757924 HTTP/1.1
Host: netc.sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 22:10:19 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=Vy1IEgxdsNmtwFckLAWQntv3jQzq_1ClfKopEq600gSIWBpQtoJ7DQ--; expires=Thu, 02 Nov 2023 22:10:19 GMT; domain=.sfr.fr; path=/; SameSite=None; secure; HttpOnly
et0=O5wfGlgNHZK8_W.6yKsuOiBKHH4jO2MRPnKrmRtz55g5mjzO2_C3_cp7DmMd2hvfr0y7vegSNCqELaZ_X8YeS9ikUqICwBwzn_xHFIH2YudLe26eM2KX6RWT; expires=Thu, 02 Nov 2023 22:10:19 GMT; domain=.sfr.fr; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Thu, 02 Nov 2023 22:10:19 GMT; domain=.sfr.fr; path=/; SameSite=None; secure; HttpOnly
static.s-sfr.fr/resources/font/sfr-1.0-regular-webfont.woff
93.20.64.1200 OK 35 kB URL HTTP/1.1 static.s-sfr.fr/resources/font/sfr-1.0-regular-webfont.woff
IP 93.20.64.1:0
File type Web Open Font Format, TrueType, length 34968, version 1.0\012- data
Hash 04dee8f5360b71969e9ab8243e986581
7de09d4e1417e84af79dade872e52c9bdb92cc55
5f618841c21775f839c5d4fdf8263c31100724110a105a9ab356b5e00f084ddd
GET /resources/font/sfr-1.0-regular-webfont.woff HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pdpsouthafrica.org
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=28800, public
content-type: font/woff
date: Wed, 05 Oct 2022 18:40:19 GMT
expires: Thu, 06 Oct 2022 02:40:19 GMT
SFRVia: sa15857adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Mon, 26 Sep 2022 03:56:55 GMT
content-length: 34968
X-Varnish: 912356756 902850538, 139922289 80111983
Age: 12599
Via: front200-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http01
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/resources/font/sfr-1.0-bold-webfont.woff
93.20.64.1200 OK 35 kB URL HTTP/1.1 static.s-sfr.fr/resources/font/sfr-1.0-bold-webfont.woff
IP 93.20.64.1:0
File type Web Open Font Format, TrueType, length 34860, version 1.0\012- data
Hash 58c79734d98e0db2f2eb8fb60d05caca
fac4595ecec39061ed499596c58441385d8d5b6e
d1d5dad65e744e1812f2f9b88a700d9fe6ef30e43db3e8ca16c3a076d1bcda5e
GET /resources/font/sfr-1.0-bold-webfont.woff HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pdpsouthafrica.org
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
HTTP/1.1 200 OK
Server: SFR Reverse Proxy
vary: Accept-Encoding
cache-control: max-age=28800, public
content-type: font/woff
date: Wed, 05 Oct 2022 21:47:27 GMT
expires: Thu, 06 Oct 2022 05:47:27 GMT
SFRVia: sa15859adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
last-modified: Wed, 28 Sep 2022 03:56:33 GMT
content-length: 34860
X-Varnish: 940621131 935913988, 707213958 696803862
Age: 1371
Via: front100-piw-pr, 1.1 lyo2-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
Accept-Ranges: bytes
Connection: keep-alive
static.s-sfr.fr/media/16789_mire-mail.jpeg
93.20.64.1200 OK 144 kB URL HTTP/2 static.s-sfr.fr/media/16789_mire-mail.jpeg
IP 93.20.64.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data
Size 144 kB (143968 bytes)
Hash b7e8cabb59f812bbc4ac84c6d34196f3
d27ae927c28b09809d51f4e78e8530c16ed8671e
87369b14c21725db36d9672a58e9bd351e3501293aeda479a27556a709e7dbb7
GET /media/16789_mire-mail.jpeg HTTP/1.1
Host: static.s-sfr.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pdpsouthafrica.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: SFR Reverse Proxy
cache-control: max-age=604800, public
content-type: image/jpeg
date: Tue, 04 Oct 2022 10:47:07 GMT
expires: Tue, 11 Oct 2022 10:47:07 GMT
sfrvia: sa15858adm|1580|vs_SFR-FR-GP-http
access-control-allow-origin: *
content-length: 143968
x-varnish: 967350428, 266722012 528818576
age: 127392
via: front200-piw-pr, 1.1 trs1-cdn-middle-http00, 1.1 mit1-cdn-edge-http00
accept-ranges: bytes
X-Firefox-Spdy: h2
pdpsouthafrica.org/libraries/layer-content-1.jpg
41.185.8.150200 OK 28 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/layer-content-1.jpg
IP 41.185.8.150:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x111, components 3\012- data
Hash 43d37376f3e9f6de565652ca90e43a7b
85b1055063df606d2ceeeb2e5bd49c30260e1f82
149aa738b1cd062359330f7705f4a22684fa3f14e647120e28067a0a4fb064f2
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/layer-content-1.jpg HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:19 GMT
Content-Type: image/jpeg
Content-Length: 28047
Last-Modified: Mon, 16 May 2022 20:58:30 GMT
Accept-Ranges: bytes
pdpsouthafrica.org/libraries/mire-sfr-mail.jpg
41.185.8.150200 OK 67 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/mire-sfr-mail.jpg
IP 41.185.8.150:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 632x493, components 3\012- data
Hash fa7d96cf3ca5757ebe5c2b004d3a7489
fea8ad4b631b19ed0d419f484958df107344a4b6
4838ecf875b02765777cd75c56c1e7b8e9cb919513b7138ccac79134744912e9
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
GET /libraries/mire-sfr-mail.jpg HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:19 GMT
Content-Type: image/jpeg
Content-Length: 67087
Last-Modified: Mon, 16 May 2022 20:58:30 GMT
Accept-Ranges: bytes
pdpsouthafrica.org/libraries/fav.ico
41.185.8.150200 OK 216 kB URL HTTP/1.1 pdpsouthafrica.org/libraries/fav.ico
IP 41.185.8.150:0
File type MS Windows icon resource - 19 icons, 256x256, 16 colors with PNG image data, 256 x 256, 4-bit colormap, non-interlaced, 4 bits/pixel, 256x256 with PNG image data, 256 x 256, 8-bit colormap, non-interlaced, 8 bits/pixel\012- data
Size 216 kB (215849 bytes)
Hash 312ad2b2619552e21952f899c4df024f
e40fb976c7252f77a4f319da994f0705973d2b56
29964e773ed02dde205d1107c611e8878c0bdb106bcbab42fcdadfd981b2fa24
Analyzer Verdict Alert openphish SOCIETE FRANCAISE DU RADIOTELEPHONE
fortinet Phishing
GET /libraries/fav.ico HTTP/1.1
Host: pdpsouthafrica.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pdpsouthafrica.org/app/
Cookie: PHPSESSID=a504ccc7e5c6376b266ae14accbf86bd
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 05 Oct 2022 22:10:19 GMT
Content-Type: image/x-icon
Content-Length: 215849
Last-Modified: Mon, 16 May 2022 21:04:54 GMT
Accept-Ranges: bytes