Report - societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99

Report Overview

Submitted URL
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99
IP
161.97.101.64
ASN
#51167 Contabo GmbH
Submitted
2022-09-21 23:57:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	1.9 kB	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.20.226
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	32 kB	142.250.74.163
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	46 kB	161.97.101.64
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	514 B	12 kB	104.17.24.14
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.236.232.139
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	439 B	16 kB	151.101.85.229
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	59 kB	34.120.237.76
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	449 B	902 B	104.18.10.207
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/index.ico	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js	Phishing
2022-09-21	medium	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js	84 kB	2023-03-07	2024-04-07
Pretty URL societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js IP 161.97.101.64 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:52 Last Seen2024-04-07 19:58:08 Times Seen1589 Hash 8b0bc30d9bdfc389526361019dec7736 036d737fb63a019d8a1c434f2b4545b22b6fd45f e176dc8d5da626a295961c495ff00c67ac6dd9295677410f6e211537dfb3a1e0 Loading...

	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js	240 kB	2023-03-07	2024-04-12
Pretty URL societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js IP 161.97.101.64 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:00:30 Last Seen2024-04-12 21:50:09 Times Seen1573 Hash d6e605aa6b2d85fcd95a1e8a44f08301 a4f5f14b57bb27207f0ad780f9e615257f2f9e32 b99cb3f5a0978988ae8d179c872a10ef306036cf74189a0cd6f7821e26b1df3c Loading...

	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js	6.5 kB	2023-03-07	2024-04-07
Pretty URL societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js IP 161.97.101.64 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:53:21 Last Seen2024-04-07 19:58:08 Times Seen1672 Hash 65e61311ea424b3cc146e1ec8e0626ae 58ddd35c21e1e2f080cd25059be6e28fa8abb9c0 62059840936e01bf0f43ed99e4df32f5653d11db4e8c31aa9dafc80906affe6c Loading...

	societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js	886 B	2023-03-07	2024-04-07
Pretty URL societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js IP 161.97.101.64 ASN #51167 Contabo GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:53:21 Last Seen2024-04-07 19:58:08 Times Seen1673 Hash c0362ff2dddc218b22d44e4892b717f0 fb8d69a1385dc5b1eb8be6e0e0a852722418e9b7 f2484ecad3843167225d42944380ec56939ed2662c3304923a70c352c828a5bf Loading...

	cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js	41 kB	2023-03-07	2024-04-23
Pretty URL cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-23 18:47:16 Times Seen7303 Hash f3b8ce97ff6ce324da6232da353adf40 2a3daabc70232c6350ab48d32605dc4a6ac1f1fa 2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b Loading...

	cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js	62 kB	2023-03-07	2024-04-07
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-07 19:58:08 Times Seen3214 Hash cdb34f3de7cfb2d32a2ed08d98e7382c 9b04f4f986048aa09ebeeb459f17e274bbc3cde6 6965c967fe2474e34f024a08618c84e9f995c3482a3c46e793b9eca4b00d82e2 Loading...

HTTP Transactions (48)

URL IP Response Size

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99

161.97.101.64

301 Moved Permanently

162 B

URL HTTP/1.1
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99 HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 21 Sep 2022 23:57:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 23:13:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vrERmHpB1jjcE1AH3t2exGSuh1xIAX7CcgkRfZOhDCtbFe-rexh-4w==
Age: 2616

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10765
Expires: Thu, 22 Sep 2022 02:56:50 GMT
Date: Wed, 21 Sep 2022 23:57:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z00IfnnZzG6vtlEyPfn2W6x1TrAw_Lzsk5_V96kg91kb30ShSGUnUg==
age: 69732
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e1539805acbcb70df7e3b3b5c988e626
5b2281703d936be8ff098e5952e1ed027a01a1e9
05299f35500e1bb23a753a8f70a57f7812274f85f5a772020882d89b90e4893e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05299F35500E1BB23A753A8F70A57F7812274F85F5A772020882D89B90E4893E"
Last-Modified: Wed, 21 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Thu, 22 Sep 2022 05:57:22 GMT
Date: Wed, 21 Sep 2022 23:57:25 GMT
Connection: keep-alive

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99

161.97.101.64

301 Moved Permanently

440 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
440 B (440 bytes)
Hash
022226226d0cfea1372c331fc3366497
3c50fcc8242eff2eca936455c5702dc6757be14a
7334595674886af96bffcd856a193c657894e7f0f035b12517477b6cc2cdbd2f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99 HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/html; charset=iso-8859-1
content-length: 440
location: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
x-powered-by: PleskLin
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/

161.97.101.64

200 OK

2.3 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
2.3 kB (2347 bytes)
Hash
53db349fa6e9eeec992846899cf10494
f7ecc16644ee93b2409acbbe7052d1a3bdd50824
668cf10ba83c7526e6b06af9935d3d1add3d2936f091107165b2bcb296ff2867

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/ HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/html; charset=UTF-8
content-length: 2347
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Last-Modified: Wed, 21 Sep 2022 23:02:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js

104.17.24.14

200 OK

10 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/sweetalert/2.1.2/sweetalert.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (40808), with no line terminators
Size
10 kB (10494 bytes)
Hash
cb97ae392c3fb56f4afc6d5f97da4237
38c35ad19fb9b7bacaff79840bef8638b6f52d85
cbff330b47a3850bdc0c1047256d98921de83c11cbdfcdfd42a61d9424b3021d

HTTP Headers

GET /ajax/libs/sweetalert/2.1.2/sweetalert.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 10494
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ff8-9f68"
last-modified: Mon, 04 May 2020 16:16:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3031215
expires: Mon, 11 Sep 2023 23:57:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GgllCNZqqw7UDTx7HpNqnLiktwwxKt9JYdYzJj0iwsehIcn9wvp7BBzly4OfZRim1zbFKmArBdP78woHLrvcNsas3w%2FFbquNDkgy%2F4KdMmt4bo6roNMW1xB4GG8qDoERm68HknzS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74e6be3aca83b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js

151.101.85.229

200 OK

15 kB

URL HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (34666)
Size
15 kB (14829 bytes)
Hash
4d09ebb6b98eea8864b0907f469b3915
0bd401bfe99c80a9675e3c60012cdb64a131197d
d5d777125e123cd311ceb283f7f9c6a9d16fc593a704e089e31f12aa3570a35e

HTTP Headers

GET /npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 7.26.11
x-jsd-version-type: version
etag: W/"f0e9-mwT0+YYEiqCevutFnxfidLvDzeY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 23:57:25 GMT
age: 3187855
x-served-by: cache-fra19179-FRA, cache-bma1640-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14829
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora1.png

161.97.101.64

200 OK

1.1 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora1.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 63 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1103 bytes)
Hash
94d565c17eb506f5c7cb7269f143de52
87ae8ffb409dae4060cce85b6109d9c037c3277c
2f17ed036cfd90e3be3a94066352e4fd68b508453d6bb79a3df839d54078e6f7

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora1.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 1103
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "632b927c-44f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
aa5aca05a905d11ada79fb327953c5c9
148ed6ceaefce57c82e674f2221a82ecd4caf42e
83397f6165981ac7c3a47a79cc18e8b80a4e7663e6f0bf3c83bab73e16f7336a

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 23:57:25 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "AA0C0443D49614E12779528F657E3B1A21D8E1D0"
Expires: Thu, 22 Sep 2022 11:00:00 GMT
Last-Modified: Wed, 21 Sep 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 670
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e6be3b1a5fb523-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
a79e3fb6006915f9224684bbf94e54f6
8634c28b2be5a6ee744fa4627853f5fc9a8547f8
500e68bbfc37e3b9f22201367dad6c84dad258d60d3fd38b52555a413bb5b73e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3290
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Last-Modified: Wed, 21 Sep 2022 23:02:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora.png

161.97.101.64

200 OK

975 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 50 x 52, 8-bit/color RGBA, non-interlaced\012- data
Size
975 B (975 bytes)
Hash
f76996087a2582f228f56290a1692239
e0e04a46815bada84eb63bfb6fa215dc21d585f1
5735d2ceaefd9e4a326e6f015178feee4bb2b80c9d048a1857f18f5640c6b987

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 975
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "3cf-5e9379bf05a90"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo-sg-seul.png

161.97.101.64

200 OK

3.3 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo-sg-seul.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 245 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3264 bytes)
Hash
ce152793719208ddec25710c54f2687e
395293765d358215c40a66056eab8b3d250bfdaf
1095ef0c8401943aebdcd816e921c30b770b1c232acf5df2e40b70300efde552

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo-sg-seul.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 3264
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "632b927c-cc0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora2.png

161.97.101.64

200 OK

438 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora2.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 45 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
438 B (438 bytes)
Hash
79291e8ef7ed55380de1d1b9bc0920c2
2d3b5bbf86dcef67b91ca1e87d4ee9617b3346c7
97e1d35262f8d1df88a0d036b7058a8d7cd60baa0218de601b617ad3441576af

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora2.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 438
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "1b6-5e9379bf079d0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js

161.97.101.64

200 OK

449 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
ASCII text, with CRLF line terminators
Size
449 B (449 bytes)
Hash
244d229b9568d2d5c50839703b63f0be
e04ee8b0a1d36571d781d1378ca00404de0f25e5
dd27f38196fd0af6ad069844ad7f84f380c551f81ab46cb754d25ccd585d2087

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/common/log.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/javascript
content-length: 449
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "376-5e9379bed3db1-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo_desk_right.png

161.97.101.64

200 OK

2.9 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo_desk_right.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 195 x 82, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2866 bytes)
Hash
de732dd1a1fd527dd4e02aee6c0085d6
54bc6ef40a0995f2ae66737474dbbccef75eb961
efa4e07d133048f4c2341b63a74e7cd50a29146710bf682c9bdabcd173285278

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/logo_desk_right.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 2866
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "632b927c-b32"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/del.png

161.97.101.64

200 OK

394 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/del.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 29 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
394 B (394 bytes)
Hash
e35e3deee20eb343773c7ab354aae6f8
288fdfc29eae862f071e9d5b3a3ad5c8921cba71
0cacaf469800b12d9f3ae16c58e13836c70e4e4a0ef87501f6f3458127da4057

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/del.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 394
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "18a-5e9379bf05a90"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main2.css

161.97.101.64

200 OK

6.2 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main2.css
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
6.2 kB (6219 bytes)
Hash
bf62dd07ae9580a0eb078ab22b12322e
a865e327c1a5a7644439623ad643c3c8f1545d82
c91b47b9635369b3199811b3f9e5c0bfd163ae6f76e471a8166eef49f58357ac

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main2.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-4e1b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora3.png

161.97.101.64

200 OK

1.5 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora3.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 200 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1524 bytes)
Hash
9b41df62a6b07f8ae97f5ca5fecc76b2
074a7ffe3dfc3eeb4f8b2b32c1908f74aedcf9a8
28998adacc6d83affb12d973b7500a5ec9e7e96a5eb5f9ba9c521a8ed0cb1539

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/icora3.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 1524
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "632b927c-5f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/css2.css

161.97.101.64

200 OK

925 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/css2.css
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
ASCII text
Size
925 B (925 bytes)
Hash
abdfc3d4df2319cc85674854e92a6925
58d007e08bdd224499cfb282fa44626626b7fd81
ab08db4e32b771fb329f85d31b029e77f50bffc0f89e370490e254780f8d1333

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/css2.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-1eb0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/sov.png

161.97.101.64

200 OK

3.8 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/sov.png
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
PNG image data, 242 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3774 bytes)
Hash
c7f51f466f01e234d8c45f39086a9d5c
20d936a93cdb8776f9e2b8c3d46fc2e074cc2668
443156d6d3e81b6248173675b3612b2d66a57d9e4f2b508016931ac8d099c10d

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/sov.png HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/png
content-length: 3774
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "632b927c-ebe"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/nm.css

161.97.101.64

200 OK

16 kB

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/nm.css
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
ASCII text, with CRLF line terminators
Size
16 kB (16001 bytes)
Hash
4d66843b0d2f2112f87fef5a0d022af4
c6ea70842164770bf4cdf335702a7c6919427e39
00b724a3d4cb1c63dfe221780d595aaeaaabacd63132d611f77b18044ae083e9

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/nm.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-1bfa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2

142.250.74.163

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14880, version 1.0\012- data
Size
15 kB (14880 bytes)
Hash
819af3d3abdc9f135d49b80a91e2ff4c
0fd9f29faa386a9c8de328f799d2698948ed3d25
1491de1b31182d38593bcf660c99bc6018af8e192d91663f67ec9d045a3b5ccc

HTTP Headers

GET /s/opensans/v17/mem5YaGs126MiZpBA-UNirkOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 01:46:29 GMT
expires: Tue, 19 Sep 2023 01:46:29 GMT
cache-control: public, max-age=31536000
age: 252656
last-modified: Tue, 23 Jul 2019 19:31:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2

142.250.74.163

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15056, version 1.0\012- data
Size
15 kB (15056 bytes)
Hash
0edb76284a7a0f8db4665b560ee2b48f
02496387a5f7bf7b79df52c7b76ece4ebc7a0710
74201a4b97ec1d5e86252dd0180eafd8c5378a9235864dbcd682f3575b41c85b

HTTP Headers

GET /s/opensans/v17/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 01:47:33 GMT
expires: Sun, 17 Sep 2023 01:47:33 GMT
cache-control: public, max-age=31536000
age: 425392
last-modified: Tue, 23 Jul 2019 19:30:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 23:03:22 GMT
Expires: Wed, 21 Sep 2022 23:58:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eV12XupSumS_mLQMjU5cs9EfZP0GWsQQV5WmO_ur-_lh_ePMw-0c1A==
Age: 3243

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/index.ico

161.97.101.64

200 OK

318 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/index.ico
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type
MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Size
318 B (318 bytes)
Hash
ca10c09aeaf43460d3760f50c608eb51
f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e
daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/img/index.ico HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: image/vnd.microsoft.icon
content-length: 318
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: "13e-5e9379bf04af0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5378
Cache-Control: max-age=121144
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 23:57:26 GMT
Etag: "632ac61c-1d7"
Expires: Fri, 23 Sep 2022 09:36:30 GMT
Last-Modified: Wed, 21 Sep 2022 08:06:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.236.232.139

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.236.232.139:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rKLdERwpvJ2EYasTCbNzeg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 79HKRp6UCYQ8Q0d7ovKUD/lH4Vc=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2305
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2305
Expires: Thu, 22 Sep 2022 00:35:52 GMT
Date: Wed, 21 Sep 2022 23:57:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8861 bytes)
Hash
a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:25:34 GMT
age: 73913
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14397 bytes)
Hash
c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 08:16:24 GMT
age: 56463
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5650 bytes)
Hash
a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 6badb939-afe6-4432-a0ad-3a2b7f85a7e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1G-rFbuIAMFTeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b852a-3e9ac3331503b41d5e734a01;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PeFdtN-ow0NE39XAV9pCHX9VSno5L9z56rg-T6Bd1fks7f1ESDDzWA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:27 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 7740
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6667 bytes)
Hash
d19cac9573e6ead9bf47fafc522e65ad
804a11a71d93ce96d33d0c9eb97f200fd72295e9
27fe9a87f50dcd0ae95a7b4b1a867e4a93da6617c205e3b686c7b3ba781113ad

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8dc9975a-1730-4f22-938b-16d00b675774.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: ca197085-d84f-4b18-bb3f-bdcbe1a09179
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG6gFbVIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab843-7ad0e6464190f55e4efd96e4;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GqmLDOdrcoQM7d5mLJP_kinvgPhpAfuSh9tgKykku1Tow0xHS1bArw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:08:36 GMT
age: 60531
etag: "804a11a71d93ce96d33d0c9eb97f200fd72295e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf12030-6891-4726-8589-181dc038b664.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6747 bytes)
Hash
627a1957eb7fb1bd39319cfc87cb42ac
b778bfda1edeb8f55e27b26adfe1212a1698c4e6
efaa77c56866df2ca13fd87ac82eb12b82c0a2bd4b24ae747310de5b694f80ca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bf12030-6891-4726-8589-181dc038b664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6747
x-amzn-requestid: c1009486-0109-4431-8027-470cc6d7232d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GD7HqxoAMFv4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b83b2-72cff3ea11f29a99721803e2;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wKtTDXaNE6AMdxubq7sKRV1JzRwJOdsG2ZxkeAHA32LoSGB90WgMbQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:38:41 GMT
age: 8326
etag: "b778bfda1edeb8f55e27b26adfe1212a1698c4e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9877 bytes)
Hash
b8bb6194dcfc32bf02932f4bbb1dcec0
8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9
45d8af4c39b0bcacd2909b6deec2fc080a6a64936b53ebd7f6309381358bcaa9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd80c0b0-1f50-41ad-b183-4804f10ef060.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9877
x-amzn-requestid: 865f77de-c569-4938-9ae9-b79b11ae0804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vF4oIAMF19w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-5111662b354f54bf3c2b77c9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: epvqhKGy2mzjb3OLTsFvb1ruOFQBr0q-YpQDJYXpFhHiNgj9m8kktQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "8fa5650de8e274f8fc2fb96e13a4976e0fedb6c9"
content-type: image/jpeg
age: 8598
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js

161.97.101.64

200 OK

0 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery-ui.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-3a7d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js

161.97.101.64

200 OK

0 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/main.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-1975"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css

161.97.101.64

200 OK

0 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/css/main.css HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-56d2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js

161.97.101.64

200 OK

0 B

URL HTTP/2
societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js
IP
161.97.101.64:0
ASN
#51167 Contabo GmbH

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /se-connecter/f57f13304a7f550af2eab61abf0e2e99/layout/js/jquery.js HTTP/1.1
Host: societegenerale-relementation.sad-borg.161-97-101-64.plesk.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/se-connecter/f57f13304a7f550af2eab61abf0e2e99/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 22:38:52 GMT
etag: W/"632b927c-14917"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://societegenerale-relementation.sad-borg.161-97-101-64.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Sep 2022 23:57:25 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 08/03/2021 15:16:56
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: d6b43e13ddbcd4f60dded6d39b2abed5
cdn-cache: HIT
cf-cache-status: HIT
age: 9245633
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74e6be3aed8c0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (48)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type