| firefox.settings.services.mozilla.com/v1/ |  143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 06:52:56 GMT
Expires: Mon, 24 Oct 2022 07:52:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PguFPNFVNLJmy8MK3JC_AlEBO9KVDjYm-4sIINPLOFd0KQlEjuJMAw==
Age: 2774
|
|
| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb3537658770790ad6cf0d727f0c0acd2 8365cadda05ef27b2ebd627d545e31886b512bde df992311f130f15459739841de925c7eec2604d5a68ca6b2a67b6dc8d229212c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF992311F130F15459739841DE925C7EEC2604D5A68CA6B2A67B6DC8D229212C"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10278
Expires: Mon, 24 Oct 2022 10:30:28 GMT
Date: Mon, 24 Oct 2022 07:39:10 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4287
Expires: Mon, 24 Oct 2022 08:50:38 GMT
Date: Mon, 24 Oct 2022 07:39:11 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0cVrI/nlycxKc6hB/bfm4MiOjoB7sfZIFKRdNU9wOg9eq2WsjBBsFg2AV4oLs44ZS53BTeFOruM=
x-amz-request-id: HTJ8X4EPTNWA3WPY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 07:08:25 GMT
age: 1846
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 07:39:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 24 Oct 2022 07:33:32 GMT
Cache-Control: max-age=3600
Expires: Mon, 24 Oct 2022 07:44:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HXwHLAe6dl9QZNw_oWa3VLhP0LnyS3TNzGwbUVRmjpvfpyWeD7TOFA==
Age: 339
|
|
| couverture-lobry.com/ |  146.59.209.152 | 301 Moved Permanently | 0 B |
IP146.59.209.152:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
date: Mon, 24 Oct 2022 07:39:11 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
x-redirect-by: WordPress
location: https://couverture-lobry.com/
x-iplb-request-id: 5B5A2A9A:9418_923BD198:0050_6356411E_3E14:22B01
x-iplb-instance: 41930
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash60d5d7cce6c32a6bdaf0d4c92ec93a1a cd29edee660366b41749cfd206bdc08fb421449c fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5911
Cache-Control: max-age=93963
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:11 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:45:14 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashadededff3d5fe13b699c903fd55c9f10 7fa5b8ca416576ad2dc50268536576858c20860b b5e0b3ea11f5c5bd30702849d558e3693545530c4df3eedf6b7dd0d92dfe3ebe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5E0B3EA11F5C5BD30702849D558E3693545530C4DF3EEDF6B7DD0D92DFE3EBE"
Last-Modified: Sat, 22 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21530
Expires: Mon, 24 Oct 2022 13:38:01 GMT
Date: Mon, 24 Oct 2022 07:39:11 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.36.24.174 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.36.24.174:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kN+Qj44pku20NsMu9hWrvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tdBAnjAc0HIc3f7hTaOcy8xJwZk=
|
|
| couverture-lobry.com/wp-content/plugins/aspen-footer-editor/css/custom.css?ver=1.1 | 146.59.209.152 | 200 OK | 194 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/aspen-footer-editor/css/custom.css?ver=1.1 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hashe469bb75a8c46f98240fe2440c604f9d fe8960b4d21e507c14b1d1505bdcbe2e89f79ced 0b5e02c5b70edbb72655b979e76d1babede427b3ab3b99c0f1566af3e7bc0ce6
GET /wp-content/plugins/aspen-footer-editor/css/custom.css?ver=1.1 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 194
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3 | 146.59.209.152 | 200 OK | 953 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3 IP146.59.209.152:0
Hashc503abd9f9fe09d22b59cb1fb0a292a8 a75f1bde1d2da3a4696a8e027eeaae4e96d21fec 56ea4b514650d10a9c4756a2eb1e4d292d138725164eec8c8ef004ceda2fece7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 953
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/css/ddp-admin-vb.css?ver=4.3.5 | 146.59.209.152 | 200 OK | 1.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/css/ddp-admin-vb.css?ver=4.3.5 IP146.59.209.152:0
Hash6ab52eb49480922480f23b20626fccca a350e98b0d46b233bcb5cd979cb3cc5c5120bebd 5967e05f16bfada1395c74893cd9e5b1e589fe072bccd851255dbd4beba99794
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/css/ddp-admin-vb.css?ver=4.3.5 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 1474
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/wtfdivi/wp_head.css?ver=1466786789 | 146.59.209.152 | 200 OK | 330 B |
URL HTTP/2couverture-lobry.com/wp-content/uploads/wtfdivi/wp_head.css?ver=1466786789 IP146.59.209.152:0
File typeASCII text, with very long lines (792), with no line terminators Hasha8accc86310fc7c1f87193dedfeae4e4 0d634e42d4adf61019eb74d22f1e27d6378ff7ff f1daa5da7f41871f7a8d55421e7627b425c1afa240f0992849f25a576ef08bc1
GET /wp-content/uploads/wtfdivi/wp_head.css?ver=1466786789 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 330
server: Apache
last-modified: Tue, 18 Oct 2022 08:58:47 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3 | 146.59.209.152 | 200 OK | 4.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3 IP146.59.209.152:0
Hash6ccc50d8058f37c03eea10782430638c f9aced9bc0c8286be877fc48a10ae37fdcc2269c 534cd08c1ea0eaeebe1ba35b004f2a17d329a1d20c0b398785c4714458834b15
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 4395
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/dwd-map-extended/css/dwd-maps-extended.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 136 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/dwd-map-extended/css/dwd-maps-extended.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashda2b0c0e77a33ab934e548040628275f 283c956d69c0bbae1b4d813f488e1c3902a1eb83 0e8e862ef6cdc1ffdb8bb046222936827ddf768ef8d3c25b76ff4ed6b0c1447b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/dwd-map-extended/css/dwd-maps-extended.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 136
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/divi-switch/scripts/switch-style.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 8.0 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/divi-switch/scripts/switch-style.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hash0978afa1eb0dc1b8d432556540268d06 57b6d5e3efed93569340fd4bc6f683b51406bd28 09b19382dafd26def3e1aed1d5aeff378b6c60c4a7d6dd7e7dd8ede3d93f1809
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/divi-switch/scripts/switch-style.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 8027
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/dwd-custom-fullwidth-header-extended/css/animate.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 4.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/dwd-custom-fullwidth-header-extended/css/animate.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashdc52135c5ae1fde2c1cea118ae129d19 03a8284d2346593c8e10b85721bf0b6eba9860d7 d2282531f9c6bad537ef3ecd207302becc3b0f5f2acf0eaea3242f88d7d9a1db
GET /wp-content/plugins/dwd-custom-fullwidth-header-extended/css/animate.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 4466
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/Divi-Ultimate-Header-Plugin/css/main.css?ver=1.0.2.6 | 146.59.209.152 | 200 OK | 2.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/Divi-Ultimate-Header-Plugin/css/main.css?ver=1.0.2.6 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hash32ed8bcd01b9b75463dab9222c449d29 581a687a98d1cef209886ed356f0cf767d9ae433 0404aa04a63a52dff01dec506f292af75fa23192eaf860fd54b3370ab4a72a6f
GET /wp-content/plugins/Divi-Ultimate-Header-Plugin/css/main.css?ver=1.0.2.6 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 2458
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/EDConcept24/style.css?ver=4.18.0 | 146.59.209.152 | 200 OK | 196 B |
URL HTTP/2couverture-lobry.com/wp-content/themes/EDConcept24/style.css?ver=4.18.0 IP146.59.209.152:0
Hashef30e54da8f45bfe3cb6a80903872d52 136dbdcf5b2d124f51c8ef5103fd85bed1c5d959 6645df3bbc0e7b432baf017a315d2e022d2255f7c3cb135c96acf582d5ee5707
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/EDConcept24/style.css?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 196
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.1 | 146.59.209.152 | 200 OK | 3.2 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.1 IP146.59.209.152:0
File typeASCII text, with very long lines (1571) Hash967b1fb5314d24ef7f24fcb9c90e7013 e971e58ebd738600b27b966ded6dab8733f22339 c8d80ecc14430de7c5fd23d9abab5f71a62eb506344da0e1882845478d6eec50
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.1 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 3244
server: Apache
last-modified: Tue, 18 Oct 2022 09:00:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/couverture-lobry_white.png | 146.59.209.152 | 200 OK | 31 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/couverture-lobry_white.png IP146.59.209.152:0
File typePNG image data, 800 x 319, 8-bit/color RGBA, non-interlaced\012- data Hash78022f8f8682e1d541882c5f32648f1e d4b7058b1245198c54fb11d63e244f6c19351fe1 86a4f3d0218a1f09d762001f7515794999ec99ec8348183194c9ff0fce02c8f8
GET /wp-content/uploads/2019/09/couverture-lobry_white.png HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/png
content-length: 31425
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 146.59.209.152 | 200 OK | 4.2 kB |
URL HTTP/2couverture-lobry.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP146.59.209.152:0
File typeASCII text, with very long lines (11126) Hash5629711d7fdd5b28441bac39b851299f 4e0bf2b7383097f7c352023a1b1b1b48a50356b6 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 4169
server: Apache
last-modified: Tue, 18 Oct 2022 09:26:55 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/couverture-lobry.png | 146.59.209.152 | 200 OK | 41 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/couverture-lobry.png IP146.59.209.152:0
File typePNG image data, 800 x 319, 8-bit/color RGBA, non-interlaced\012- data Hashe60e497827f8088bbce870693f77dbd9 ae72676b060a8e438e4fad43ffc771a9e679d891 7a54334471c3f359774e66bb238b7b97fa72665f8324d564abea3b80a8aa2468
GET /wp-content/uploads/2019/09/couverture-lobry.png HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/png
content-length: 40795
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/ceramic-400x284.jpg | 146.59.209.152 | 200 OK | 22 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/ceramic-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hash1508fb2fc3407f6e6ee92bbb47d53dd4 9a11aa6bdc10c0c92a8226c5ad28de74315f89a8 a178b7e984d759eaed483286255b7dfe04476a1f21ff7cb3d213f4545140afc9
GET /wp-content/uploads/2019/09/ceramic-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 21666
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3 | 146.59.209.152 | 200 OK | 7.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3 IP146.59.209.152:0
Hash99b4ce14b33b03419e3809847af3fda7 aa0f15bb8b70726fd61c06e61faab08a6c758929 7994c287f4a7d3dfaa71f5eafdec1bd8341955b53b1ae2489772ac36e5f6a825
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 7526
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 146.59.209.152 | 200 OK | 31 kB |
URL HTTP/2couverture-lobry.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP146.59.209.152:0
File typeASCII text, with very long lines (65447) Hash9640915738503451aa21181699feab5b c053eaf36ef0da96619706b3abda326305063bd6 f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 30908
server: Apache
last-modified: Tue, 18 Oct 2022 09:26:56 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1ea30e37b7f86b7d0a7cb7341087fdc1 2e88a09e17356724c7e0f488d70be82ebc64f55c bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/tumblr_inline_pmv1oxO0Mk1wykohk_1280-400x284.jpg | 146.59.209.152 | 200 OK | 24 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/tumblr_inline_pmv1oxO0Mk1wykohk_1280-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hash21484a6b3c06bfe1b1141577b9b3bdb8 01266a8cd8c297a571ce4cada6becab7cd678b48 92f5125bfab5d06cbf9bc6f9323f1241fa94001a9b3cad87cf5f06c84b4d1c26
GET /wp-content/uploads/2019/09/tumblr_inline_pmv1oxO0Mk1wykohk_1280-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 23745
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/single-flue-crowncoat-and-cap-400x284.jpg | 146.59.209.152 | 200 OK | 21 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/single-flue-crowncoat-and-cap-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hashca80a7c27fa1477d593c6d8f89ff10bc ab6930357130d39d9164762108b72e3fa0814b35 0f9fb398af31e71e2b342ed12dfb05bcc6ba5e4f73d8b26fdae935409e5801a9
GET /wp-content/uploads/2019/09/single-flue-crowncoat-and-cap-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 20704
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/guttering-1-400x284.jpg |  | | 16 kB |
URL couverture-lobry.com/wp-content/uploads/2019/09/guttering-1-400x284.jpg IP:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hashc60e958f05ad8bfb95153fd60aee0987 ed46b031e309d533381b90edc8de7101f945a728 8cc5c7add43a01fad136a551a2baf35295f0611737cd779982a393050e9ebbf6
GET /wp-content/uploads/2019/09/guttering-1-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/Roof-Cleaning-Brisbane-400x284.jpg | 146.59.209.152 | 200 OK | 26 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/Roof-Cleaning-Brisbane-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hashef1cc7199e2b329c1c6360b21725d916 118b1b796361f473494eb1890324e248c99c785c 63bbf9dd27bee29b3f4a682ecacf2c58b49acbc4b9b7ecdff1594f885231871f
GET /wp-content/uploads/2019/09/Roof-Cleaning-Brisbane-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 26097
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/tile-roof-400x284.jpg | 146.59.209.152 | 200 OK | 23 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/tile-roof-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hashadebb5eaa8518ad57d9802c98a628c56 9f43f7bc636ad812747e4532118b290753f72e0a 950a679ccec54827e82208a7986b9e79a675ee2e1b29b2bc19e784bfb3a304f1
GET /wp-content/uploads/2019/09/tile-roof-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 22863
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/seamless-gutters-400x284.jpg | 146.59.209.152 | 200 OK | 22 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/seamless-gutters-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hash70677442c5025f372424030d6e296fcd 429a339259d764d8d0aadbdae65ccba30c907838 da8e2cc2f7ccc255b47bfad45f18ef40c52b4746f9a784ab42e203f403cee7b2
GET /wp-content/uploads/2019/09/seamless-gutters-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 21568
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/Chimney-Sweep-400x284.jpg | 146.59.209.152 | 200 OK | 17 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/Chimney-Sweep-400x284.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x284, components 3\012- data Hashe07415c703c6b1ae96714b450a5f4ed7 2d4c45895202a2d77f8db44c5153719a68540b88 e5d8ea8deee4352a038952107dcfe784f0aeec419b4c2e2ab6345e939b5c50e6
GET /wp-content/uploads/2019/09/Chimney-Sweep-400x284.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 17362
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/phone.png | 146.59.209.152 | 200 OK | 163 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/phone.png IP146.59.209.152:0
File typePNG image data, 500 x 445, 8-bit/color RGBA, non-interlaced\012- data Size163 kB (162600 bytes) Hash90f5fdd17984701253a1f1d8ee64ebc9 20807513ff4e73c8dd0e0366c2b72473b8365b48 c5bfd5895ba724e46684515b851be8bf08ac5ef9158bcb6a564e97ebe5dd775c
GET /wp-content/uploads/2019/09/phone.png HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/png
content-length: 162600
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3 | 146.59.209.152 | 200 OK | 1.7 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3 IP146.59.209.152:0
File typeASCII text, with very long lines (401) Hash8d9b2928b6874e8da430585524784319 e3d99309ac812763f77759e258840f348357b607 adfab777821109a22e899673a3688fa30f9cfd2f8bc18aad62bd9fddb5c93a02
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 1731
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:12 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.3 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash469e158e980f989eed890ff1603c6a2e f725b2986c41b09bae6751e4b5e721f264dcc63c 27c9a9247a4e9fd7f5d7a7796540fd467619411405e7b82240c65d453ea801e7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 1274
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/falkor/css/falkor-headers.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 2.2 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/falkor/css/falkor-headers.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash0631fc91976ae0116ff8cb234e1b25ed 61d289fe09ebc93601f1421dec7fce116bfe7b87 e6546894c7bfa78283a90a30af56621bb2ab7d03a3dc49b6e63d6886bde3a02d
GET /wp-content/plugins/ddpro/include/falkor/css/falkor-headers.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 2199
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-211312656-1 | 142.250.74.168 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-211312656-1 IP142.250.74.168:0
File typeASCII text, with very long lines (1588) Hash17959bba6cb88830d33a2ce970b3bfdf bf329c939830d54eb61af6902cde8b1f17f1734b e59f3813ee234b781917f41c1ce236a08407f58e0a0bd3d7837e4b23196e1bd8
GET /gtag/js?id=UA-211312656-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 24 Oct 2022 07:39:13 GMT
expires: Mon, 24 Oct 2022 07:39:13 GMT
cache-control: private, max-age=900
last-modified: Mon, 24 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43591
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/mermaid/css/mermaid_16_buttons_with_hover_effects_kit.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 2.0 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/mermaid/css/mermaid_16_buttons_with_hover_effects_kit.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash2b8b474315d8deeb42893207946d42a9 6c9b1cf12d83f486e075132375a2582036818b8d af40714dafc25c0cd884928a3c725e5ad21152083026009613091dc1bf71873e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/mermaid/css/mermaid_16_buttons_with_hover_effects_kit.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 2026
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 248 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeCSV text\012- , ASCII text Hash321799f77d4a52e8173d8d0fab448e97 01c4012350f8a19ee2c0cde758765cb6109e5a41 3e19363426d81f87f562b9f6162b4064d6033371f4d0aa87a060413ab1f33529
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 248
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups6.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups6.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashc72eef8bd5a5e0b58e60c59ee3ada7e5 70af8d6d21eca86343bbd03adaa200c74be194c5 aaf55c8821e88e052e507ebac13fdbce22585684ff7e60341b7e9baf199d889e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups6.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 1363
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups7.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 670 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups7.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash1c298caca55ba1e8aec4a0399631213b e7ede2ea05ecc3750ca42567f77fde7362f9b76a 7c11babce813cc76421c41ba70ea413f1155ec0ca31527ed3fb5beda146a93bf
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups7.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 670
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups8.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 831 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups8.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash10c2ca5cec3acb61997f389a6e95a5ae 690bdd09e30079f328004c4b1f788a70d49694c7 1157dcdf9e253da6cc4ba42cb371f581c2a3e18d923b2229f54b42fb93602ff6
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups8.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 831
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Mon, 24 Oct 2022 10:45:03 GMT
Date: Mon, 24 Oct 2022 07:39:13 GMT
Connection: keep-alive
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups5.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 438 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups5.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash43e6015b9bc4356b95c0495d7029bc9c 86a7ddd2854562f188bc7305df9ce014342d5b6b 71fc0c8a7040e2dd7866b8eee748f79dc908b7a183c6b353c86d4c1bf629c6ce
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups5.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 438
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups4.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 836 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups4.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hash1d13277e70c6852e2f80bb2a71733ba5 bde28542403e13cefecf74fc98491ec65e41c23c 1b32e23bb8e5aa5e064aeaa80c65506652b964262467dedd125a7ad0eafed80a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups4.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 836
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups3.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 914 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups3.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashae7ec7edf1927b4deed286d976a276e5 7e9e7a8a3b930f8f011e35481960a93deae36100 9301e3312f428238678e25248b27b1df5740f64752ff2ea01e60df4545ee8ac2
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups3.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 914
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups2.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 799 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups2.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashd8eacc85fdd034922105aff8f9208629 e906067e28309177a7d33f5ccd46b162ae816592 7e1c1beb902e963b554678e4b757df75d766cd4a4a65df435e5e7ebc2f19dc6f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/css/diana-overlays-popups2.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 799
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/includes/css/icons.css?ver=1.1.5 | 146.59.209.152 | 200 OK | 8.9 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/includes/css/icons.css?ver=1.1.5 IP146.59.209.152:0
File typeASCII text, with very long lines (36350) Hasha800e9735e2baa5db3048aeac539f4de 556bf6d98052371b356b471a17c342a84bf02e27 eb948a2713b3e4a298c2605cdc2fded921c93dd6344f68b75306abb5e1331ea9
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/shortcodes-ultimate/includes/css/icons.css?ver=1.1.5 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 8871
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:51 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Mon, 24 Oct 2022 10:45:03 GMT
Date: Mon, 24 Oct 2022 07:39:13 GMT
Connection: keep-alive
|
|
| couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/includes/css/shortcodes.css?ver=5.12.2 | 146.59.209.152 | 200 OK | 7.8 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/includes/css/shortcodes.css?ver=5.12.2 IP146.59.209.152:0
File typeASCII text, with very long lines (45570), with no line terminators Hashe87dafe81a4743b47562279b8c2d91bd 8d18dcb12cf4acd607a339e99b9923bd91c209c5 a058f9dc529c179fde8228bf7fad1bafae2ab7fdb41a059dc8c286606f334272
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/shortcodes-ultimate/includes/css/shortcodes.css?ver=5.12.2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 7777
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:51 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/js/clipboard.min.js?ver=4.3.3 | 146.59.209.152 | 200 OK | 3.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/js/clipboard.min.js?ver=4.3.3 IP146.59.209.152:0
File typeUnicode text, UTF-8 text, with very long lines (10809) Hashd61b6eb7870562cbb87e7ad207c4744e 78435f519440a8bb908aacf0359a9f359b069ffc 1b0e007131f711d0b6839bfed21deaa15bc6fe61dd93f65616414c67f0ff39ce
GET /wp-content/plugins/ddpro/js/clipboard.min.js?ver=4.3.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 3397
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/js/jquery.alphanum.js?ver=4.3.3 | 146.59.209.152 | 200 OK | 6.6 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/js/jquery.alphanum.js?ver=4.3.3 IP146.59.209.152:0
File typeUnicode text, UTF-8 text, with very long lines (2787) Hashe981e56e05f1bc2261df13cd3d4315dd b71496dcb4865f7999caeffa507e93caf33f8cb7 9528e8f3258a0d871898afb0ad299546c4878367c350ed624e4a19f08c54ce14
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/js/jquery.alphanum.js?ver=4.3.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 6604
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Mon, 24 Oct 2022 10:45:03 GMT
Date: Mon, 24 Oct 2022 07:39:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Mon, 24 Oct 2022 10:45:03 GMT
Date: Mon, 24 Oct 2022 07:39:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash398e3c90084d7d71fc1e9fd833116f5f 3e202da5559a8f219144adee3639d063a98559c0 724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Mon, 24 Oct 2022 10:45:03 GMT
Date: Mon, 24 Oct 2022 07:39:13 GMT
Connection: keep-alive
|
|
| couverture-lobry.com/wp-content/plugins/aspen-footer-editor/js/call.js?ver=1.1 | 146.59.209.152 | 200 OK | 169 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/aspen-footer-editor/js/call.js?ver=1.1 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hash02db81fdc8c5b0a4fe8d3ac1c806e7ef 3fad8382e656b12abe1fd2b4460ece02d671c5b5 2d24ba4b5e2f07849964034f3df17768f6d80b7706a4462255ca8e8b60717012
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/aspen-footer-editor/js/call.js?ver=1.1 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 169
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/js/ddp-admin.js?ver=4.3.3 | 146.59.209.152 | 200 OK | 8.3 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/js/ddp-admin.js?ver=4.3.3 IP146.59.209.152:0
File typeUnicode text, UTF-8 text, with very long lines (717) Hash14ad588b17540ffff902714126895287 53453998ff49d2ad7c67580ea935169de9cfc3dc f04267aa196768c5baf5244f1a3e160595f073fdcace830424a9e55dd4d50fb3
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/js/ddp-admin.js?ver=4.3.3 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 8323
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/divi-switch/scripts/ds_snippets.js?ver=1.0.0 | 146.59.209.152 | 200 OK | 838 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/divi-switch/scripts/ds_snippets.js?ver=1.0.0 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hash84434998618e8aacf4b8d3e329e79e48 5f5b80785a409ff9be6913f2c77e494fce4cc62a 80799d746bc26adb0b123c2198f46c9cf839110ba151ff2d8f7dd14272cf7d64
GET /wp-content/plugins/divi-switch/scripts/ds_snippets.js?ver=1.0.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 838
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/wtfdivi/wp_footer.js?ver=1466786789 | 146.59.209.152 | 200 OK | 22 B |
URL HTTP/2couverture-lobry.com/wp-content/uploads/wtfdivi/wp_footer.js?ver=1466786789 IP146.59.209.152:0
File typeASCII text, with no line terminators Hash2f5a939c7b9e10aea4bdb533914408f7 5bc1e969e30bc9284e770823b6821d118f8d6fc3 98a7ba9cdc807b81b3250190c80f17836f639c821936c75e77e6fc66a5fc881a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/uploads/wtfdivi/wp_footer.js?ver=1466786789 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 22
server: Apache
last-modified: Tue, 18 Oct 2022 08:58:47 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/Divi-Ultimate-Header-Plugin/js/main.js?ver=1.0.2.6 | 146.59.209.152 | 200 OK | 556 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/Divi-Ultimate-Header-Plugin/js/main.js?ver=1.0.2.6 IP146.59.209.152:0
File typeASCII text, with CRLF line terminators Hash117119c762d235f12b25f160ed85d43a 3dd812fa47ddbac34f94232f25c7445aca037488 93c5e52b04225435cc36b4e2940da7e69c10702ce00826ce3923303fc1bb33b9
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/Divi-Ultimate-Header-Plugin/js/main.js?ver=1.0.2.6 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 556
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:17 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 | 146.59.209.152 | 200 OK | 2.6 kB |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 IP146.59.209.152:0
File typeASCII text, with very long lines (5644) Hash062e1255f1cb0d2f5b2badd2375ac0fd c3c9772e967520006444fe8877b747a7155afc87 90164a05ed461227744513b44fbd7e0b0b2e4ea18de01c0da57df97039e93147
GET /wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 2557
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:28 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 | 146.59.209.152 | 200 OK | 566 B |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 IP146.59.209.152:0
Hashc24ce4d2c7d7512601a6db3b24242297 ed36ea05d2e96b5706a803067c84206a8f7c3202 ce9cccfd1fbc822ac820d3ad47f5a3adabb312ac517a8c6473568bd2d2f98fb4
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 566
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:29 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 6.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (480) Hash8e0113bb95709c63348dbd48cfc94288 89052c8de8689fa79b55922e68a4eaba5a6be5df 50355f095e847d421249e9ab61b25de83d4527c83f1d3754026cbb6f28cb7e0b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 6521
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.pack.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 9.8 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.pack.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (450) Hash4e6681a469343c19128917c538f3a2ad a1bd61c61515473780ecddfe00d8cc4b6b9394da 8ef65f6d3574b859dc267e069afdb75a491d7cca4d81399cd4364b3bbebd74c6
GET /wp-content/plugins/ddpro/include/fancybox/jquery.fancybox.pack.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 9779
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/mermaid/js/mermaid_divi.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 4.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/mermaid/js/mermaid_divi.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (1155) Hashf552cc957774415dba4fe50f26476d08 19c5e76905a233a9d0e0bd78631d136a99670a2b fb50dd177d92e6ee20a38ad64994a53cbfe37ea3e589d78bfadf4e27e1f5cdc5
GET /wp-content/plugins/ddpro/include/mermaid/js/mermaid_divi.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 4549
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/falkor/js/falkor_divi.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 7.1 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/falkor/js/falkor_divi.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashe3eebcb482cbd9786c7fb6dcad377204 e8d65d5eaeb02d65e6a97c397ad864269a0f476d bd167da270b00d5af7a8a1568072808946d190ce21090288ac1bd955a745da79
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/falkor/js/falkor_divi.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 7087
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf1a2e95e4cdae92b60d0fde61c6c8312 fa110a433705597d1384e6d5dd0e757090dbe366 bfa8bc3faf60272c250c0b7d220c90bcf9f01267907dd81465ed0a6a4fda8fdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10639
x-amzn-requestid: 983ddbdb-f97d-44dc-b502-6a555f50217f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDaEkBoAMFcRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b548-351c26ae42c01c94616d04b4;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J-VZLP51uG6onthE4ymBDhlNk5KtxsfX_sF-J_pjUHsr5mFrORdvwQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:52:34 GMT
age: 35199
etag: "fa110a433705597d1384e6d5dd0e757090dbe366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/jquery.gsap.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/jquery.gsap.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (2165) Hash16bcbb07e9a6ca01d102babda8f7de66 19f33169c319e6a6046350ab727b6eb315186e07 2261926c37aac49e1344ae72cf2dde8a76fae20f154bfbbcbfd9d6e6175298ea
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/jquery.gsap.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 1396
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/AttrPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 649 B |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/AttrPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (788) Hash6815ba73682fcdd43147ac55802d3dc8 93ab5acda2a42458622a3d7362988b30cb640200 c85a579ffab37e8ef4a5f2b57351863b65ead9c4d82ba1664418d6ac5dfeac4e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/AttrPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 649
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/CustomEase.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 2.6 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/CustomEase.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (4844) Hashf395ed79f5ebfbacdaa7bd504bc38c03 b02823291d5e9c07da2b6ac8c7e67e67cf088db5 6a13a2fe525ac67bb19a4a2255348a16f421ee1cb082337a42670cc9b181c471
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/CustomEase.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 2616
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0a156d6aed9764d3759987c28b80d6f6 864d279c98c2d821010f0846de71f1b20187024f ee73e1ab7b53ebba35dc2d00958df54a7229096ff8b5e9fd60989e92acb3fbf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11635
x-amzn-requestid: aed8aa4d-2cd1-4c5e-999e-ea7391a3ebde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelIoH3BIAMFZ8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b56a-359118d242e827e67150ca6d;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:06 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sEgtn4AnAFeNUDPLPcpKl6ed2zAjDJzK724ITXxXY913c6XeqZ7RNA==
via: 1.1 94f8839a97f73584e70cc07d9f704d62.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:30:00 GMT
age: 32953
etag: "864d279c98c2d821010f0846de71f1b20187024f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/DrawSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 2.3 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/DrawSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (4549) Hash04d02e38329f5296093bb645d1efac28 5b61ffac93ca1d17cb3ea3b0a40c3f25ef91632b 889600db8e01782fc30614bb2677bdd58166c1277991ff261c2080561114600d
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/DrawSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 2331
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1974529bf378941c1b76662e2b283988 cdde9ea46af873e3f838bdb35d69cc0844016311 7c39112dbb1088fe09e010fcd5d85b63a34ac40c7b93e0e9873715ccdf0ac579
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 9fbc5930-f615-4548-a683-061be9a67bb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDFGPhoAMFVzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b546-0563eb5f6ba62af65182fc3c;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YsNdkkNvH6bzM34S-EiZhHuOPYikzpYLTPqWlJFLx2-dMEf9oRnP_g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:42 GMT
age: 34171
etag: "cdde9ea46af873e3f838bdb35d69cc0844016311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/SplitText.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 3.8 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/SplitText.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (8756) Hashccc5965c3cedf6785fca3496cfa21de6 3070e0a8c76abed486b5a7386bf85988e957a6dc b7a01f7d7dd173ce9ce696b4bfd8e9f9590b09369b0b99961268574232aed509
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/SplitText.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 3823
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1ea30e37b7f86b7d0a7cb7341087fdc1 2e88a09e17356724c7e0f488d70be82ebc64f55c bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6b24b0e9eeeecd44eafc5957dc5450db e071eb9837a242f41035da077dc6c9b0178d8f9f 33e9c9c03180d2855606be0605c894180d81e151e2f4b4b2bacf5325c11152d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9495
x-amzn-requestid: f9246128-d6a3-49e0-982d-9f75d110aa2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelztGlqoAMFs8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b67d-7f04a07955c3c9a8644475a0;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:47:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0U4F6tdX0p0SMmuDAYTqvCu-wP-s_U6P3LyV_v5b0JftnP_i7SWkIQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:43 GMT
age: 34170
etag: "e071eb9837a242f41035da077dc6c9b0178d8f9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/ScrollToPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.6 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/ScrollToPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (3263) Hash9a7b5a232d4078049d7afb06ac5695d6 de96ce672e124cd3e158c8c87bfb0bd9338098ae b023c75a856eaf78437f01b57f6cf6f102b567db6bc162626a3710b353e0c8ee
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/ScrollToPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 1621
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe1bb8b1b400a1ae9d33c235e6a338c4b 834ac948f07711ed1dfe30ed365ab6c68967d932 1ef29fa4db7b8a00df3a0df1494aa41f8737664828695a4294e3ec8c9e5711e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c8789d-73b5-42b5-8b99-9a20d2d75944.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7889
x-amzn-requestid: 797475c0-3dc0-4b1c-a087-593801512ba4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_zrF9EIAMFjDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6352467d-0aa8bdd5443af5395f5b2792;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:13:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wID60l-5Ds1B1umHL6gNvcI96S5NZf_siEYhtJpwUhS7GBr2igX2zA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 24 Oct 2022 06:15:37 GMT
age: 5016
etag: "834ac948f07711ed1dfe30ed365ab6c68967d932"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/MorphSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 7.5 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/MorphSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (15869) Hash0f1be7a920d1d0b77a942126ba005938 e4cb6a0650b5256a0d551c4306a422f36732ae31 68fa05967e08d5397f330781c46277ca4681131e0bcb84f564a523a7ba407680
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/MorphSVGPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 7485
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data Hash88436497b6fe5e22155afc45e9e8fe3e 5004575548d76d878a7f27bb3fc4a9a10e8f6909 304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: p0vFhx0iHI6stdq-3zIoeKKB6xihzwhHWgkK0Wne5rbRCjZflcew8A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:09:39 GMT
age: 34174
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/TextPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.3 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/TextPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeUnicode text, UTF-8 text, with very long lines (2529) Hash86f3afb20b4ca51b9e96b5950dae9889 40aa0d54bf8a5a28dd1d4d8be9c761bd6ac30a03 5e2c6b305240b28d5f9d5fa3af2cb2044d7e4972810c8f4c7a68ddba39f702ec
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/TextPlugin.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 1346
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/TweenMax.min.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 40 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/freddie/js/gsap/TweenMax.min.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (32043) Hash1d9aca623f46a9ef961cdc350d8c4e46 b8ac188d7c264009e56e44953e222e20ce862633 60a4f4751af6c5fc785b003238ec1e1f6de66594b73ce11ea14ac700c284869f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/freddie/js/gsap/TweenMax.min.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 39642
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:16 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/js/diana-jquery.cookie.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 1.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/js/diana-jquery.cookie.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
Hashf1545320643c96675d3cf12b2859a265 ec95470d0fee882d46525763c3b5d8547029bf24 199824a9b95328e1dfa0f7bc1e6ff740841d46469fe12ddaafba45c50defe699
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/ddpro/include/diana/js/diana-jquery.cookie.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 1399
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/ddpro/include/diana/js/dianaPopups.js?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 2.1 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/ddpro/include/diana/js/dianaPopups.js?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (370) Hash41112f1b858b0c7194fb5da36f9888fd 40c8d57c87d6e107bb263a9cce8bfbc099fb9a2f bc335090b3b20dad6ca1a92ba81f5b716558ab699a175a36e9553a84e0af2762
GET /wp-content/plugins/ddpro/include/diana/js/dianaPopups.js?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 2146
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:15 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0 | 146.59.209.152 | 200 OK | 3.0 kB |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0 IP146.59.209.152:0
File typeASCII text, with very long lines (7584) Hasha55f5ffe60d0f857b59cc2c5deaedb9e 356ba99f9244a14b170c287cc58a755ae95a0672 29587ed33baa663a460bd8c013fbc62d02c974bdcb44d9e2566dae480b36d130
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 2998
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0 | 146.59.209.152 | 200 OK | 3.4 kB |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0 IP146.59.209.152:0
File typeASCII text, with very long lines (6322) Hash1b5c71c55e7595d6077b747f5eb16e19 6189a3be66ea8d32b04b0407fc618df86e8151fd 8d79ef704cdba7f25c913a457d969ab10884fdf0a7f6bfca8bbcbc4cba069b32
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 3412
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:30 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/vendor/magnific-popup/magnific-popup.js?ver=1.1.0 | 146.59.209.152 | 200 OK | 7.3 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/vendor/magnific-popup/magnific-popup.js?ver=1.1.0 IP146.59.209.152:0
File typeASCII text, with very long lines (20134) Hash7f1da87a7b54b430d07c052da4edc2cb 7194e9c8f26cbd96442f2670165f1ec24f435468 d5fc819224152c0418bdaf2e641f8c034672cb0fb713118373a4a8ee6da505eb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/shortcodes-ultimate/vendor/magnific-popup/magnific-popup.js?ver=1.1.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
content-length: 7334
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:52 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/style.css | 146.59.209.152 | 200 OK | 235 B |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/style.css IP146.59.209.152:0
Hashd7eadd436ef762785d1951847e9ecdff db02795bf4f0c1049ded5da7dc38efd0b8a39fca 3551e9280f729a4e7bdd25611df5c59e6dbb159630a76d5511ae8ab4f5412ad2
GET /wp-content/themes/Divi/style.css HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/wp-content/themes/EDConcept24/style.css?ver=4.18.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 235
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:29 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-includes/css/dist/block-library/style.min.css?ver=4355bc6ba655392360e95655f51299c2 | 146.59.209.152 | 200 OK | 12 kB |
URL HTTP/2couverture-lobry.com/wp-includes/css/dist/block-library/style.min.css?ver=4355bc6ba655392360e95655f51299c2 IP146.59.209.152:0
File typeASCII text, with very long lines (43771) Hashe5548800176e913a9084f47a3e1e04f6 eff4604acc5c26ae82a19188de2f98bf5b79d80c a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=4355bc6ba655392360e95655f51299c2 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
content-length: 11681
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:05 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/omi-chimney-caps-406-1.jpg | 146.59.209.152 | 200 OK | 215 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/omi-chimney-caps-406-1.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1365, components 3\012- data Size215 kB (214721 bytes) Hashfa43962789058c4e24f20d56bac7ee27 5ab504e24ecc304f6a8289793d98c004ab18fcf3 89a5db59fecbfd27654066d010d78c3db84b3062d82a1660fa3e15553960dfc2
GET /wp-content/uploads/2019/09/omi-chimney-caps-406-1.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 214721
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/omi-chimney-caps-406.jpg | 146.59.209.152 | 200 OK | 215 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/omi-chimney-caps-406.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1365, components 3\012- data Size215 kB (214721 bytes) Hashfa43962789058c4e24f20d56bac7ee27 5ab504e24ecc304f6a8289793d98c004ab18fcf3 89a5db59fecbfd27654066d010d78c3db84b3062d82a1660fa3e15553960dfc2
GET /wp-content/uploads/2019/09/omi-chimney-caps-406.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: image/jpeg
content-length: 214721
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/vendor/fork-awesome/fonts/forkawesome-webfont.woff2?v=1.2.0 | 146.59.209.152 | 200 OK | 110 kB |
URL HTTP/2couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/vendor/fork-awesome/fonts/forkawesome-webfont.woff2?v=1.2.0 IP146.59.209.152:0
File typeWeb Open Font Format (Version 2), TrueType, length 109916, version 1.0\012- data Size110 kB (109916 bytes) Hash12ee76445f0383c58529169d700b6650 7f7208e7b28e0862b82e05c8d1715540e22c111d 8810ba3440bf482ced33d2f74b7803bba711f689d8e4caa7da5c6ae6844a1b49
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/shortcodes-ultimate/vendor/fork-awesome/fonts/forkawesome-webfont.woff2?v=1.2.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://couverture-lobry.com/wp-content/plugins/shortcodes-ultimate/includes/css/icons.css?ver=1.1.5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-length: 109916
server: Apache
last-modified: Tue, 18 Oct 2022 08:59:52 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| couverture-lobry.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf | 146.59.209.152 | 200 OK | 92 kB |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf IP146.59.209.152:0
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data Hashde27b3e66b2f8017e000aa9d8d24d60e e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7 d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/wp-content/themes/Divi/style-static.min.css?ver=4.18.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/x-font-ttf
content-length: 92400
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:29 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 07:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 21516, version 1.0\012- data Hash90135ea44811b2d9610c33e07068fdb0 84ef1a8343877a598f1c7cbae56f35ded54a1787 bd067b886f4a67dd25c08fe73777bce7f506beb4c09d17d9f036f8a90901efd2
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 00:57:17 GMT
expires: Wed, 18 Oct 2023 00:57:17 GMT
cache-control: public, max-age=31536000
age: 542516
last-modified: Mon, 15 Aug 2022 18:12:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22084, version 1.0\012- data Hashbab4daa6bec06781aa7262eca0be0ed4 b896fcea50433114a0433c9c8117677a875f1116 ee901a5f44fcc6ea6ab97fb2751ce51af915d16dd99995a29a5905d2ce4b0831
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22084
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 22:42:00 GMT
expires: Tue, 17 Oct 2023 22:42:00 GMT
cache-control: public, max-age=31536000
age: 550633
last-modified: Mon, 15 Aug 2022 18:14:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff | 216.58.207.195 | 200 OK | 28 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff IP216.58.207.195:0
File typeWeb Open Font Format, TrueType, length 27520, version 1.1\012- data Hashcd247306809a5a4ddcfee4e2681aa03b 1aaa3efe7fc2cf5ccd75d4c67e1bf05e5041af3b 925be42fa3c0ca5ea75cd203804c3f6c717407e44010e1b63ed2c951bacc1849
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:46:12 GMT
expires: Tue, 17 Oct 2023 21:46:12 GMT
cache-control: public, max-age=31536000
age: 553981
last-modified: Mon, 15 Aug 2022 18:14:58 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22212, version 1.0\012- data Hashe62adebf67147c481b9c00011e2c5d48 3af42ef356fa413fd162c56a7b11b8d34a61cefb 17ec0c20d179cf39cbbb164c18165e8a35e9678d5602c8c4f6826ff457b0685e
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 00:57:55 GMT
expires: Wed, 18 Oct 2023 00:57:55 GMT
cache-control: public, max-age=31536000
age: 542478
last-modified: Mon, 15 Aug 2022 18:15:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 | 146.59.209.152 | 200 OK | 71 kB |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 IP146.59.209.152:0
Hashfbe3fa11d170a10b3695f40c4b31d8a2 abe14a7ad410c7e4137785faea1ece12cfe920d1 d27d6abe95d51f0117b87dac7e10c2e1ba5e2fc3174c278b9c3f82b2a982656b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: application/javascript
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:28 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/website-design-perth-background-01.jpg | 146.59.209.152 | 200 OK | 5.9 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/website-design-perth-background-01.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x333, components 3\012- data Hash266f156926b2e84ae04d8079b773cf73 91fe6e0ec84cd72279e3293b5b0d7cdafc29d1f6 46d3f41328d52a3ee88368cdf982a7d40918b5da3276cb246466cb1533df9544
GET /wp-content/uploads/2019/09/website-design-perth-background-01.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 5874
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/texte.jpg | 146.59.209.152 | 200 OK | 138 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/texte.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 600x650, components 3\012- data Size138 kB (138356 bytes) Hash0f9722d77ab25ef53c8b5bb4c6aa42dc 5c8db2cb780fadc940613d59a01445eb58499bde 5d1f0bedda81e86b0ba43644367bcd8ed7e4231141f978e1f3635767c011ead8
GET /wp-content/uploads/2019/09/texte.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 138356
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2 | 216.58.207.195 | 200 OK | 20 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 19768, version 1.0\012- data Hash8b364bf29bcf08955e8ab90358a8c1cb c8069a4fef1e4643f0454f3b11ae920688a6d121 3c3e418bbd1355279dc9a7b5d7a6ff58a73432bd49d6082a0f1544cc1c593e5c
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 06:35:49 GMT
expires: Fri, 20 Oct 2023 06:35:49 GMT
cache-control: public, max-age=31536000
age: 349405
last-modified: Mon, 11 Jul 2022 18:55:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/home_architect4_pic4.jpg | 146.59.209.152 | 200 OK | 115 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/home_architect4_pic4.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1029, components 3\012- data Size115 kB (115295 bytes) Hash62af017eb0dcdcfc2519efec67b110a7 5425464c7ca8143bd5abc16b15ec53e6aee79070 6828667a8e5ae79185a92e72e41992013a0b98f1e499043c7833590552b7741e
GET /wp-content/uploads/2019/09/home_architect4_pic4.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 115295
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 | 216.58.207.195 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22040, version 1.0\012- data Hashdde07e1d5d0325a4bbb4a89f5c4460e3 8dcc458f18816fade1ef35d0e4d2b7f0c7d99be5 a024ed618250333de09c440f8a961f86e4a46bc8a553729367eb12ee64c56eb4
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 02:41:54 GMT
expires: Wed, 18 Oct 2023 02:41:54 GMT
cache-control: public, max-age=31536000
age: 536240
last-modified: Mon, 15 Aug 2022 18:12:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/seamless-gutters.jpg | 146.59.209.152 | 200 OK | 305 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/seamless-gutters.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1200x900, components 3\012- data Size305 kB (305134 bytes) Hashb29da5c6d473bd66747f8af774837edd 72f515d2e8c9bd324d2be01316760c16a3ab2f7f 66df55422301c80c838e9aafac80edd567234172c2cf017b40da06f84595f2bb
GET /wp-content/uploads/2019/09/seamless-gutters.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 305134
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2 | 216.58.207.195 | 200 OK | 25 kB |
URL HTTP/2fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 24780, version 1.0\012- data Hash9e7827aaaf284662fe90803f0c3390d8 54a677e2d0e39ac9c7063068f42cf1eaed464c02 21d84ae6011313f56bed19d8067c8ffa780e6b8452c43b560c11d53af4c4c211
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 21:18:03 GMT
expires: Wed, 18 Oct 2023 21:18:03 GMT
cache-control: public, max-age=31536000
age: 469271
last-modified: Tue, 26 Apr 2022 15:56:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/couverture-blurb.jpg | 146.59.209.152 | 200 OK | 74 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/couverture-blurb.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 11x11, segment length 16, progressive, precision 8, 600x600, components 3\012- data Hash22e3c2f07db39dda2ea5bd3b4391f4ec 93ba3a96cbbecbdc6e3471ffb9a14e4b5092c1a4 93f7b53859195f98f7206e11462f3a64c118a807634a8e9a70b1a320674493f8
GET /wp-content/uploads/2019/09/couverture-blurb.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 74253
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxK.woff2 | 216.58.207.195 | 200 OK | 23 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22560, version 1.0\012- data Hash1dfb815c0e707ba03fb3486d94881ca4 26c19605a4ebf47cc1bbfa8223cc1d598a401f3c 8c445c283da9a171eb4841f32cb343627ef480ed8c80c6dca83ef8287687e62f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 10:38:17 GMT
expires: Fri, 20 Oct 2023 10:38:17 GMT
cache-control: public, max-age=31536000
age: 334857
last-modified: Wed, 11 May 2022 19:24:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/ramonage-blurb-3.jpg | 146.59.209.152 | 200 OK | 52 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/ramonage-blurb-3.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 600x600, components 3\012- data Hashc82b8bad0082f5c500be02791cc8008a 9d1fd19bf4c062232f9cdc241067806b0e1cddc5 950cee3616609ed605bb5774148457920aad5041d0c732d79144f8aac394cf5e
GET /wp-content/uploads/2019/09/ramonage-blurb-3.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 52391
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZQ.woff2 | 216.58.207.195 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 14768, version 1.0\012- data Hashcb40e587e2e015b6c55f8c162022936e 86d09ad03cdd635cd4ed08b9f05ea1e04cf396e7 6d0ed91894b8413a4b07b2be92ef30d7096e982a79ab8268586607e97e04f1bb
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 13:59:35 GMT
expires: Wed, 18 Oct 2023 13:59:35 GMT
cache-control: public, max-age=31536000
age: 495579
last-modified: Mon, 18 Jul 2022 19:26:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/nettoyage-blurb.jpg | 146.59.209.152 | 200 OK | 116 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/nettoyage-blurb.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 600x600, components 3\012- data Size116 kB (116237 bytes) Hashdcd26da77075662518927640a9ea5d95 d2109b1692e79dabc77b1e891e249b517012cd98 d78c3ef0046528324e109cf7e17a083523fc6da6b62843e0f0bb1c9b180684c7
GET /wp-content/uploads/2019/09/nettoyage-blurb.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 116237
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 | 216.58.207.195 | 200 OK | 25 kB |
URL HTTP/2fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 25284, version 1.0\012- data Hash26f5a0992b68bb38801b08a348288591 4dc2e90e40d35482883aea5fa535cfa4e15fd392 386a206aade080bb0045005cfdbb660430ed46d652039eef6bc299d54d7c43ed
GET /s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25284
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 21:18:19 GMT
expires: Wed, 18 Oct 2023 21:18:19 GMT
cache-control: public, max-age=31536000
age: 469255
last-modified: Tue, 26 Apr 2022 15:46:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2 | 216.58.207.195 | 200 OK | 23 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22580, version 1.0\012- data Hash1c44e440b54050bdb9c8f4cf048163bc 285209cc8e5df99937d360909021a7501269f6ac 59fb185692872a1d0060ebdb9d6f8664b499b8812e80dc59755ec2f68887450f
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 20:14:18 GMT
expires: Fri, 20 Oct 2023 20:14:18 GMT
cache-control: public, max-age=31536000
age: 300296
last-modified: Wed, 11 May 2022 19:24:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/Favicon.jpg | 146.59.209.152 | 200 OK | 7.0 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/Favicon.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 120x120, components 3\012- data Hash90ae6ac77a733db497a090a70f5c702c c93feecb91359c1a27d496980c3f91e8c62183bc 52b97b6f144e9d44de18346c08b37072204205767dff3bc867888b618edd9335
GET /wp-content/uploads/2019/09/Favicon.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Cookie: _ga_XQKJLWVLWG=GS1.1.1666597153.1.0.1666597153.0.0.0; _ga=GA1.1.933830904.1666597154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 7008
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 24 Oct 2022 06:41:09 GMT
expires: Mon, 24 Oct 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 3485
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/slider-4.jpg | 146.59.209.152 | 200 OK | 393 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/slider-4.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2048x1152, components 3\012- data Size393 kB (392833 bytes) Hashe444ee596ed62fa6cb749187f6d9ca14 0d65b5896c198c3901a78aacbf1ce622f837e842 73643da76a4e79e4b172c091fa1e2fc812ed9e71266d99ce5cf7bcb6caaf316b
GET /wp-content/uploads/2019/09/slider-4.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Cookie: _ga_XQKJLWVLWG=GS1.1.1666597153.1.0.1666597153.0.0.0; _ga=GA1.2.933830904.1666597154; _gid=GA1.2.1693203421.1666597154; _gat_gtag_UA_211312656_1=1; cookielawinfo-checkbox-cookies-de-publicite-ciblee=no; cookielawinfo-checkbox-cookies-de-performance=no; cookielawinfo-checkbox-cookies-essentiels=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 392833
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/uploads/2019/09/slider-1.jpg | 146.59.209.152 | 200 OK | 784 kB |
URL HTTP/2couverture-lobry.com/wp-content/uploads/2019/09/slider-1.jpg IP146.59.209.152:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 2048x1360, components 3\012- data Size784 kB (783498 bytes) Hash0889d3dc6b81e377cb0959faac08a1d1 3cd1900760343fb5d9fdae29b0f7c66ad4e8f962 99ce85e1a0946fe848b2d060f958108ec11acfce21c73c15b074076f0c69578c
GET /wp-content/uploads/2019/09/slider-1.jpg HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Cookie: _ga_XQKJLWVLWG=GS1.1.1666597153.1.0.1666597153.0.0.0; _ga=GA1.2.933830904.1666597154; _gid=GA1.2.1693203421.1666597154; _gat_gtag_UA_211312656_1=1; cookielawinfo-checkbox-cookies-de-publicite-ciblee=no; cookielawinfo-checkbox-cookies-de-performance=no; cookielawinfo-checkbox-cookies-essentiels=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:14 GMT
content-type: image/jpeg
content-length: 783498
server: Apache
last-modified: Wed, 06 Oct 2021 07:39:19 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-XQKJLWVLWG>m=2oeaj0&_p=514851593&gdid=dNDMyYj.dZTNiMT&cid=933830904.1666597154&ul=en-us&sr=1280x1024&_s=1&sid=1666597153&sct=1&seg=0&dl=https%3A%2F%2Fcouverture-lobry.com%2F&dt=Couverture%20Lobry%20%C3%A0%20Boussac%20en%20Creuse%20-%20couverture-lobry.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-XQKJLWVLWG>m=2oeaj0&_p=514851593&gdid=dNDMyYj.dZTNiMT&cid=933830904.1666597154&ul=en-us&sr=1280x1024&_s=1&sid=1666597153&sct=1&seg=0&dl=https%3A%2F%2Fcouverture-lobry.com%2F&dt=Couverture%20Lobry%20%C3%A0%20Boussac%20en%20Creuse%20-%20couverture-lobry.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XQKJLWVLWG>m=2oeaj0&_p=514851593&gdid=dNDMyYj.dZTNiMT&cid=933830904.1666597154&ul=en-us&sr=1280x1024&_s=1&sid=1666597153&sct=1&seg=0&dl=https%3A%2F%2Fcouverture-lobry.com%2F&dt=Couverture%20Lobry%20%C3%A0%20Boussac%20en%20Creuse%20-%20couverture-lobry.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://couverture-lobry.com
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://couverture-lobry.com
date: Mon, 24 Oct 2022 07:39:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/?wordfence_lh=1&hid=49651C373384252702ACBFBA809A86CD&r=0.4923120985272623 | 146.59.209.152 | 200 OK | 0 B |
URL HTTP/2couverture-lobry.com/?wordfence_lh=1&hid=49651C373384252702ACBFBA809A86CD&r=0.4923120985272623 IP146.59.209.152:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wordfence_lh=1&hid=49651C373384252702ACBFBA809A86CD&r=0.4923120985272623 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Cookie: _ga_XQKJLWVLWG=GS1.1.1666597153.1.0.1666597153.0.0.0; _ga=GA1.2.933830904.1666597154; _gid=GA1.2.1693203421.1666597154; _gat_gtag_UA_211312656_1=1; cookielawinfo-checkbox-cookies-de-publicite-ciblee=no; cookielawinfo-checkbox-cookies-de-performance=no; cookielawinfo-checkbox-cookies-essentiels=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:15 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
server: Apache
x-powered-by: PHP/7.4
link: <https://couverture-lobry.com/wp-json/>; rel="https://api.w.org/", <https://couverture-lobry.com/wp-json/wp/v2/pages/24889>; rel="alternate"; type="application/json", <https://couverture-lobry.com/>; rel=shortlink
x-robots-tag: noindex
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:14 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaf3d4b4d16ad8b30805be96afa6472e3 bceb257123711c43994e5a03e9caf22eeee16423 30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10072
x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FKvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sNu31Qx0p_Ikus0GsGKRNGVxOGnIRSewAXfkXyzOCmT6bJ1D1Qz-0w==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:10:20 GMT
etag: "bceb257123711c43994e5a03e9caf22eeee16423"
content-type: image/jpeg
age: 34140
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/ | 146.59.209.152 | 200 OK | 0 B |
IP146.59.209.152:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:12 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.4
link: <https://couverture-lobry.com/wp-json/>; rel="https://api.w.org/", <https://couverture-lobry.com/wp-json/wp/v2/pages/24889>; rel="alternate"; type="application/json", <https://couverture-lobry.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| couverture-lobry.com/wp-content/themes/Divi/style-static.min.css?ver=4.18.0 | 146.59.209.152 | 200 OK | 0 B |
URL HTTP/2couverture-lobry.com/wp-content/themes/Divi/style-static.min.css?ver=4.18.0 IP146.59.209.152:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/Divi/style-static.min.css?ver=4.18.0 HTTP/1.1
Host: couverture-lobry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://couverture-lobry.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 07:39:13 GMT
content-type: text/css
server: Apache
last-modified: Tue, 18 Oct 2022 09:49:29 GMT
accept-ranges: bytes
cache-control: max-age=900
expires: Mon, 24 Oct 2022 07:54:13 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|