reglementationsg04.firebaseapp.com/
301 Moved Permanently 0 B URL HTTP/1.1 reglementationsg04.firebaseapp.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: reglementationsg04.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://reglementationsg04.firebaseapp.com/
Accept-Ranges: bytes
Date: Wed, 21 Sep 2022 23:57:22 GMT
X-Served-By: cache-bma1683-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1663804642.073797,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 23:13:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a2NuaEgci0VgETlWGV2Qam6s3TSdahqzbSn9-31qsG1Yb8INPLgB1Q==
Age: 2613
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v3B1BWZj-fmzAP-yhlQF_Vq7inWWOTmX4Xf1NwfLApf76oetyoRrWw==
age: 69729
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10768
Expires: Thu, 22 Sep 2022 02:56:50 GMT
Date: Wed, 21 Sep 2022 23:57:22 GMT
Connection: keep-alive
reglementationsg04.firebaseapp.com/
200 OK 161 B URL HTTP/2 reglementationsg04.firebaseapp.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c87ac2ef5934a577b5ea6ef71298def2
a83e9bc7babd49a0030a1944e40339a31f6cb056
88c6d2f86795c957ff5116eccf95e76276ce8a37f2249ec1e5ee2744bf772d99
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: reglementationsg04.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "974a23515e79a5d984d7fefcad2e2daa840eb023ea73b204891cb34de11406d1-br"
last-modified: Wed, 21 Sep 2022 11:04:03 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 21 Sep 2022 23:57:22 GMT
x-served-by: cache-bma1621-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663804642.276785,VS0,VE51
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 161
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/vfTajG9ARFE
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/vfTajG9ARFE
IP
Hash aa1e129bb97e31defd30e90a0484f952
105bc62d0c9ef1faa29972f0df347f206deb7ed9
5e92f0d676c68975316c0dcb1e32800dc2d2775ef5d9f5020007284f83c9c870
POST /s/gts1d4int/vfTajG9ARFE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e1539805acbcb70df7e3b3b5c988e626
5b2281703d936be8ff098e5952e1ed027a01a1e9
05299f35500e1bb23a753a8f70a57f7812274f85f5a772020882d89b90e4893e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05299F35500E1BB23A753A8F70A57F7812274F85F5A772020882D89B90E4893E"
Last-Modified: Wed, 21 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 22 Sep 2022 05:57:22 GMT
Date: Wed, 21 Sep 2022 23:57:22 GMT
Connection: keep-alive
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter
301 Moved Permanently 407 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f08c5d1b0ce111b87f628551a7154ab1
b253adeae987129d202c6e4716fe26d9c4166a4d
44ac78212d93f9e0bb6b1f167ff7e03d2233bde7ea10c208761126480b0961e6
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 21 Sep 2022 23:57:22 GMT
content-type: text/html; charset=iso-8859-1
content-length: 407
location: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/
x-powered-by: PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 23:03:22 GMT
Expires: Wed, 21 Sep 2022 23:58:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rAd_RM6MFvb_6w1JvOhNw7AGdgzpE-WUqPuRTGjEzHOHdD7S69zfcQ==
Age: 3240
ocsp.digicert.com/
200 OK 471 B IP
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3663
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:22 GMT
Last-Modified: Wed, 21 Sep 2022 22:56:19 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/
302 Found 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/ HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: 24cea43b641b02fd1df98000b5498338
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338
301 Moved Permanently 440 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9e65bb5ab834d065fcb94843b5fa7664
383fae64110ba386e4ddbcf881c3fad859cd81e4
767524b7b25d8e7d2858aaf9368b027a5416f7705a811a5545982a534d55f779
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338 HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/html; charset=iso-8859-1
content-length: 440
location: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
x-powered-by: PleskLin
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SMYF8Im7FMqDMDnI1fXleg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KGPH9gYJMrOLvi9QJL2o/MtvFvg=
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
200 OK 2.3 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 53db349fa6e9eeec992846899cf10494
f7ecc16644ee93b2409acbbe7052d1a3bdd50824
668cf10ba83c7526e6b06af9935d3d1add3d2936f091107165b2bcb296ff2867
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/ HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/html; charset=UTF-8
content-length: 2347
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora1.png
200 OK 1.1 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora1.png
IP
File type PNG image data, 63 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 94d565c17eb506f5c7cb7269f143de52
87ae8ffb409dae4060cce85b6109d9c037c3277c
2f17ed036cfd90e3be3a94066352e4fd68b508453d6bb79a3df839d54078e6f7
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora1.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 1103
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-44f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js
200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js
IP
File type ASCII text, with very long lines (40808), with no line terminators
Hash cb97ae392c3fb56f4afc6d5f97da4237
38c35ad19fb9b7bacaff79840bef8638b6f52d85
cbff330b47a3850bdc0c1047256d98921de83c11cbdfcdfd42a61d9424b3021d
GET /ajax/libs/sweetalert/2.1.2/sweetalert.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 10494
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ff8-9f68"
last-modified: Mon, 04 May 2020 16:16:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3031213
expires: Mon, 11 Sep 2023 23:57:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67U1jwgcS7wFowy041GgugXMnB3msEPKLYJRv9GvsbfgmMQ8FHA3rHJFeG0kbg7iOYqVO8ianRT6ye5%2FUiAiXXfCx7E5XBdhXPtUB5%2FoaSHQQYkV%2BH04XnTAWIOIUCBAntViUj5o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74e6be2cfc05b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:23 GMT
Last-Modified: Wed, 21 Sep 2022 22:16:08 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js
200 OK 15 kB URL HTTP/2 cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (34666)
Hash 4d09ebb6b98eea8864b0907f469b3915
0bd401bfe99c80a9675e3c60012cdb64a131197d
d5d777125e123cd311ceb283f7f9c6a9d16fc593a704e089e31f12aa3570a35e
GET /npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.26.11
x-jsd-version-type: version
etag: W/"f0e9-mwT0+YYEiqCevutFnxfidLvDzeY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 23:57:23 GMT
age: 3187853
x-served-by: cache-fra19179-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14829
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora.png
200 OK 975 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora.png
IP
File type PNG image data, 50 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash f76996087a2582f228f56290a1692239
e0e04a46815bada84eb63bfb6fa215dc21d585f1
5735d2ceaefd9e4a326e6f015178feee4bb2b80c9d048a1857f18f5640c6b987
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 975
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"3cf-5e938b4b9be88"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora2.png
200 OK 438 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora2.png
IP
File type PNG image data, 45 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 79291e8ef7ed55380de1d1b9bc0920c2
2d3b5bbf86dcef67b91ca1e87d4ee9617b3346c7
97e1d35262f8d1df88a0d036b7058a8d7cd60baa0218de601b617ad3441576af
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora2.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 438
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"1b6-5e938b4b9ddc8"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:23 GMT
Last-Modified: Wed, 21 Sep 2022 22:16:08 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash aa5aca05a905d11ada79fb327953c5c9
148ed6ceaefce57c82e674f2221a82ecd4caf42e
83397f6165981ac7c3a47a79cc18e8b80a4e7663e6f0bf3c83bab73e16f7336a
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 23:57:23 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "AA0C0443D49614E12779528F657E3B1A21D8E1D0"
Expires: Thu, 22 Sep 2022 11:00:00 GMT
Last-Modified: Wed, 21 Sep 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 668
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e6be2d5b16b529-OSL
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo-sg-seul.png
200 OK 3.3 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo-sg-seul.png
IP
File type PNG image data, 245 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ce152793719208ddec25710c54f2687e
395293765d358215c40a66056eab8b3d250bfdaf
1095ef0c8401943aebdcd816e921c30b770b1c232acf5df2e40b70300efde552
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo-sg-seul.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 3264
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-cc0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/common/log.js
200 OK 449 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/common/log.js
IP
File type ASCII text, with CRLF line terminators
Hash 244d229b9568d2d5c50839703b63f0be
e04ee8b0a1d36571d781d1378ca00404de0f25e5
dd27f38196fd0af6ad069844ad7f84f380c551f81ab46cb754d25ccd585d2087
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/common/log.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: application/javascript
content-length: 449
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:22 GMT
etag: W/"376-5e938b4b6b14a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/del.png
200 OK 394 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/del.png
IP
File type PNG image data, 29 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash e35e3deee20eb343773c7ab354aae6f8
288fdfc29eae862f071e9d5b3a3ad5c8921cba71
0cacaf469800b12d9f3ae16c58e13836c70e4e4a0ef87501f6f3458127da4057
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/del.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 394
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"18a-5e938b4b9aee8"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk_right.png
200 OK 2.9 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk_right.png
IP
File type PNG image data, 195 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash de732dd1a1fd527dd4e02aee6c0085d6
54bc6ef40a0995f2ae66737474dbbccef75eb961
efa4e07d133048f4c2341b63a74e7cd50a29146710bf682c9bdabcd173285278
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk_right.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 2866
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-b32"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora3.png
200 OK 1.5 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora3.png
IP
File type PNG image data, 200 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b41df62a6b07f8ae97f5ca5fecc76b2
074a7ffe3dfc3eeb4f8b2b32c1908f74aedcf9a8
28998adacc6d83affb12d973b7500a5ec9e7e96a5eb5f9ba9c521a8ed0cb1539
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/icora3.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 1524
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-5f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk.png
200 OK 3.1 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk.png
IP
File type PNG image data, 211 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash acee6e3c89be65ad1e6b7883c805f984
370e5b07648d226a8d3115bb5763a2dc101fe8fd
2f1163ec7e6e951ca4a06d722ff2e50827a3788a6a36d5fa2af1f284c668c1a3
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/logo_desk.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 3065
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-bf9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/sov.png
200 OK 3.8 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/sov.png
IP
File type PNG image data, 242 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash c7f51f466f01e234d8c45f39086a9d5c
20d936a93cdb8776f9e2b8c3d46fc2e074cc2668
443156d6d3e81b6248173675b3612b2d66a57d9e4f2b508016931ac8d099c10d
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/sov.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 3774
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: "632ba4e3-ebe"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/ico_text.png
200 OK 256 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/ico_text.png
IP
File type PNG image data, 15 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 81da99c17940b159fae9b148edfcf184
fc974800ce7105761ed8bc6639cfa8a27f7d9280
1da576a49156cff58c8ecd323c7c85da4a4ebff143ba1946509a88611547093b
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/ico_text.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/png
content-length: 256
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"100-5e938b4b9fd08"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14880, version 1.0\012- data
Hash 819af3d3abdc9f135d49b80a91e2ff4c
0fd9f29faa386a9c8de328f799d2698948ed3d25
1491de1b31182d38593bcf660c99bc6018af8e192d91663f67ec9d045a3b5ccc
GET /s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 01:46:29 GMT
expires: Tue, 19 Sep 2023 01:46:29 GMT
cache-control: public, max-age=31536000
age: 252654
last-modified: Tue, 23 Jul 2019 19:31:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/main.js
200 OK 1.7 kB URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/main.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Hash ef1d34fa0628d9b927080152edb45100
16d97ae98376b50d0527be90f6c72087bde3986b
f3ed0ae185a7dedab8850bd490289ebc10d5f0cf6db69f82c0ea7e7164acd650
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/main.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-1975"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15056, version 1.0\012- data
Hash 0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b
GET /s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 01:47:33 GMT
expires: Sun, 17 Sep 2023 01:47:33 GMT
cache-control: public, max-age=31536000
age: 425390
last-modified: Tue, 23 Jul 2019 19:30:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14380, version 1.0\012- data
Hash 33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52
GET /s/opensans/v17/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:39:30 GMT
expires: Tue, 19 Sep 2023 22:39:30 GMT
cache-control: public, max-age=31536000
age: 177473
last-modified: Tue, 23 Jul 2019 19:30:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/index.ico
200 OK 318 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/index.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Hash ca10c09aeaf43460d3760f50c608eb51
f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e
daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/img/index.ico HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: image/vnd.microsoft.icon
content-length: 318
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"13e-5e938b4b9aee8"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2308
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2308
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2308
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2308
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d546012-e1d1-4ccd-a38f-d808cdfe4af0.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d546012-e1d1-4ccd-a38f-d808cdfe4af0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06589b53db5d3d6307e15e354325e252
af20ced3f00015ad8ae837d7cf3f39b9f5f0f752
513daca9889934875f2c453aaed4ce1af32628550a4b2f2b8e69533cb09eda56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d546012-e1d1-4ccd-a38f-d808cdfe4af0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5161
x-amzn-requestid: 9ba63285-4cef-4604-bd12-95a99463e087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0wHYXIAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-1380adf019b16d5a50475cdb;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: aRS8EmSflaJJjXsdsfTjeovOMrdDXbiDlGHsLNpkB4NGyLsvgfQq_w==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "af20ced3f00015ad8ae837d7cf3f39b9f5f0f752"
content-type: image/jpeg
age: 8595
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 095da54b533e1dbad223f820b7018ff5
d0859402a9e0c61d6193995130db553995c1be9d
aadbdba88629367686d44a660ff1bf3969643bed29546553d0d22837aba38543
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa5fccb8-005e-4a27-aee2-802639e26592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7206
x-amzn-requestid: cb23bf7a-e726-44c8-8952-c3edc9411989
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1Gu-EyEoAMFtFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84c6-2d9be9e7136d8223377efa43;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: S1pxBVRSjKELqBLhf1JDSrHfK49tRMGaTjeXHDCuildb4A0knsTEow==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 7745
etag: "d0859402a9e0c61d6193995130db553995c1be9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 08:16:24 GMT
age: 56460
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb268d425-806d-4e8d-98c9-df2f896671ce.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb268d425-806d-4e8d-98c9-df2f896671ce.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75d3255c85ff0dd5971b92c1df0d855a
01c5bd6a99e818c5d8aa961977c62231cb6f6f94
276915e715a3b193815fb0ea4df9ec98ca3b12775e9b8eb91926389ed8d9cfad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb268d425-806d-4e8d-98c9-df2f896671ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 7cda9a9f-ad39-420f-bd5a-e2bd358ac6e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F5-FO-oAMFXAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8372-5e5c9cc35d3eb14505ee3e32;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e9CzllZTXdhUwcWuWZvWwJ6B6E5LGDrpDa19bUk3FzQCrsrOB8hJHA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:35:36 GMT
etag: "01c5bd6a99e818c5d8aa961977c62231cb6f6f94"
content-type: image/jpeg
age: 8508
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 8595
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:25:34 GMT
age: 73910
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery-ui.js
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery-ui.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery-ui.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-3a7d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 08/03/2021 15:16:56
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: d6b43e13ddbcd4f60dded6d39b2abed5
cdn-cache: HIT
cf-cache-status: HIT
age: 9245631
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74e6be2d289e0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery.js
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/js/jquery.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-14917"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/nm.css
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/nm.css
IP
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/nm.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-1bfa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/css2.css
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/css2.css
IP
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/css2.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-1eb0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css
IP
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-56d2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main2.css
200 OK 0 B URL HTTP/2 societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main2.css
IP
GET /se-connecter/24cea43b641b02fd1df98000b5498338/layout/css/main2.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/24cea43b641b02fd1df98000b5498338/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:23 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 23:57:23 GMT
etag: W/"632ba4e3-4e1b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
199.36.158.100
104.18.10.207
93.184.220.29
161.97.101.64
151.101.85.229
23.36.76.226