francerelooking.fr/
82.165.202.51301 Moved Permanently 0 B IP 82.165.202.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 18 Jan 2023 08:06:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://francerelooking.fr/
X-Cache-Status: HIT
X-Powered-By: PHP/7.4.33, PleskLin
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3359
Expires: Wed, 18 Jan 2023 09:02:14 GMT
Date: Wed, 18 Jan 2023 08:06:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2488
Expires: Wed, 18 Jan 2023 08:47:43 GMT
Date: Wed, 18 Jan 2023 08:06:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2457
Expires: Wed, 18 Jan 2023 08:47:12 GMT
Date: Wed, 18 Jan 2023 08:06:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 07:34:22 GMT
content-type: application/json
age: 1913
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xER6yjISxViSG04iboqV98p7986Z8O1UQyvLlhKagEjrj1+8lO0ThJJ4+vIWCioemoQA5thDhx0=
x-amz-request-id: FYQ405ZX2867XZYJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 07:45:19 GMT
age: 1256
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:15 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 64d376ed1e9324f5b551b7e870d732ff
69841e50a590d5a95aa3ede100b7f4a67495dc4c
1d3e46fe03a11c8475813fa44e85dad653f5096dd07065e8bfb222990a74796d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D3E46FE03A11C8475813FA44E85DAD653F5096DD07065E8BFB222990A74796D"
Last-Modified: Wed, 18 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 18 Jan 2023 14:06:15 GMT
Date: Wed, 18 Jan 2023 08:06:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 07:17:25 GMT
age: 2931
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 08:06:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
francerelooking.fr/wp-includes/css/dist/block-library/style.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 12 kB URL HTTP/2 francerelooking.fr/wp-includes/css/dist/block-library/style.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
File type ASCII text, with very long lines (47826)
Hash b37b166af8895e3b5742dbf18dacdffa
366871a56a68640ea01117418001d46b28091eeb
6ce8318d338b65e6c8e63db4018d4ce6d426715a407fd41f77bef3885527cb52
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 03:37:37 GMT
etag: W/"63745b01-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
polyfill.io/v2/polyfill.js?features=Intl.%7Elocale.en&ver=7cc720ea35884a84ed274ab902452129
151.101.129.26200 OK 126 B URL HTTP/2 polyfill.io/v2/polyfill.js?features=Intl.%7Elocale.en&ver=7cc720ea35884a84ed274ab902452129
IP 151.101.129.26:0
Hash 73facef13260d15915b31c39a22317b8
2e0d6642d943b6bba33c14ed89db6ca0d98e7844
fe0e7a42051b9bde30f5d3f6679756e2aad5814be1914d6606d961f6e15f07f7
GET /v2/polyfill.js?features=Intl.%7Elocale.en&ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=UTF-8
last-modified: Wed, 11 Jan 2023 11:21:49 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Wed, 18 Jan 2023 08:06:16 GMT
vary: User-Agent, Accept-Encoding
server-timing: PASS, fastly;desc="Edge time";dur=13
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 126
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f404da3b1abdefd6f64e8ab04e9cb72c
f370005dff7facaadd69b0798429288c7a7dfeb7
6401934189fb3b3e98c348bce0803f026e71bd48050af1879f19730f398d1e09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1924
Cache-Control: max-age=150311
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 08:06:16 GMT
Etag: "63c7491b-1d7"
Expires: Fri, 20 Jan 2023 01:51:27 GMT
Last-Modified: Wed, 18 Jan 2023 01:19:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
francerelooking.fr/wp-content/plugins/revslider/admin/assets/images/transparent.png
82.165.202.51200 OK 71 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/admin/assets/images/transparent.png
IP 82.165.202.51:0
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 753f6c59bbe7913f21576b58b193bc5a
b3e3885f69e401b3a320010ff7a40dd19768fe3b
8ea078292393a14a8e44be139a7fa6ed09d9c650e210eccca587045239b71cab
GET /wp-content/plugins/revslider/admin/assets/images/transparent.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 71
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: "62fa63b0-47"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/hearts-couple-2-75x75.png
82.165.202.51200 OK 1.5 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/hearts-couple-2-75x75.png
IP 82.165.202.51:0
File type PNG image data, 75 x 75, 8-bit gray+alpha, non-interlaced\012- data
Hash 2de1cf1c5b8e873f6f70c870e8d66ba4
7c73bdd6980beb0c5cdee892cd39a1d792ea8a93
32ddb80c6434bd1a082275e84510d77a233c420034e395bce09f501c78693597
GET /wp-content/uploads/2019/03/hearts-couple-2-75x75.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 1517
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-5ed"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/images/close.png
82.165.202.51200 OK 2.4 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/images/close.png
IP 82.165.202.51:0
File type PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 525c837d809c56cf4374b8ae8c8c1d2e
a5d82ed71cc507878ddb1db38b504d04ec91c07b
10b48a1ec522abd18c5f62d7282433ff88b0a15af5351d0103fb78ea07b85693
GET /wp-content/plugins/advanced-floating-content-lite/public/images/close.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 2407
last-modified: Sun, 25 Dec 2022 12:16:57 GMT
etag: "63a83f39-967"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2022/12/certification-datadock-300x133-1.png
82.165.202.51200 OK 17 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2022/12/certification-datadock-300x133-1.png
IP 82.165.202.51:0
File type PNG image data, 300 x 133, 8-bit/color RGBA, non-interlaced\012- data
Hash 1cc17cc332ff2a7b95ef726a6a16a114
4ca61f60d5afed11cd0fe0cbb9a388f92a269bfb
4788ffda23bed30be1ca02d580c641e932e242c8b60abc3aaccb8f6078e88f0f
GET /wp-content/uploads/2022/12/certification-datadock-300x133-1.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 16716
last-modified: Sun, 25 Dec 2022 12:03:57 GMT
etag: "63a83c2d-414c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2022/12/FranceRelooking-datadock-logo.jpg
82.165.202.51200 OK 74 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2022/12/FranceRelooking-datadock-logo.jpg
IP 82.165.202.51:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=199, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=513], baseline, precision 8, 513x199, components 3\012- data
Hash 89d6ff7ad6b87dfecea63581879e7e58
88b7031e9b7240990a20beecea7c250fdd9160da
37657ef20283b1c5d7ac6a9fedaaf19b395adbdd7a0a55b18dc181464924a801
GET /wp-content/uploads/2022/12/FranceRelooking-datadock-logo.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/jpeg
content-length: 74171
last-modified: Sun, 25 Dec 2022 12:21:09 GMT
etag: "63a84035-121bb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
blog.protur-hotels.com/wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg
185.156.219.145301 Moved Permanently 707 B URL HTTP/1.1 blog.protur-hotels.com/wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg
IP 185.156.219.145:0
ASN #60458 Xtudio Networks S.L.U.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg HTTP/1.1
Host: blog.protur-hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 18 Jan 2023 08:06:16 GMT
server: LiteSpeed
location: https://blog.protur-hotels.com/wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg
vary: User-Agent,Accept-Encoding,Accept-Encoding
francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.11
82.165.202.51200 OK 47 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.11
IP 82.165.202.51:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dc068076e6269f2157320a2f1554ac5d
90dbb5d832527eef0f352f0331c794952f0c2ea8
a5a5dbe8a81db540602e6edb923cfa49c4e02c41a7694757bfa5276e2f4f7c99
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js?ver=3.19.11 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 23:12:05 GMT
etag: W/"62fad2c5-3454b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/ResizeSensor.min.js?ver=1.1.0
82.165.202.51200 OK 1.3 kB URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/ResizeSensor.min.js?ver=1.1.0
IP 82.165.202.51:0
File type ASCII text, with very long lines (2233)
Hash 8e121b16ed8e52f3b441e8d43e2203c5
196864e7255de05eee8c68d3fbb237d419eded41
926f30efadd7f3fa7d1357a0a71e89510cd79331ad6ac5bd22146fdf7807c139
GET /wp-content/themes/freeman/framework/js/ResizeSensor.min.js?ver=1.1.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-8ec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
brand.mastercard.com/content/dam/mccom/brandcenter/thumbnails/mastercard_vrt_pos_92px_2x.png
23.46.125.63200 OK 2.0 kB URL HTTP/2 brand.mastercard.com/content/dam/mccom/brandcenter/thumbnails/mastercard_vrt_pos_92px_2x.png
IP 23.46.125.63:0
File type PNG image data, 185 x 152, 8-bit colormap, non-interlaced\012- data
Hash a22d05a29ee6cc4709c4e82c263a3dcd
62d155bb8ef361125d9e0fc478df6a4f5b7a23bc
7b1463cb3ecf53a64a53f3eee21319b158b4056c378b662bf9bcf98b80ced218
GET /content/dam/mccom/brandcenter/thumbnails/mastercard_vrt_pos_92px_2x.png HTTP/1.1
Host: brand.mastercard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sat, 12 Nov 2022 22:56:53 GMT
etag: "7fb-5ed4dec1d0530"
accept-ranges: bytes
content-length: 2043
access-control-allow-origin: https://maps.googleapis.com
content-type: image/png
cache-control: max-age=604800
expires: Wed, 25 Jan 2023 08:06:16 GMT
date: Wed, 18 Jan 2023 08:06:16 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash dcc630ff9b5b034f74ab531f98319910
81d27d48814dac0ddd0f1d1546cbb9662cfccb2e
18c99bdfb30a518c5961c84e1510f01bf6e97289f59732c7850eb90ab3887e80
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 08:06:16 GMT
Last-Modified: Wed, 18 Jan 2023 07:13:48 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FzWxEfLUF64RLV0ttZOHV6gdxJBFHiosVoZbRJw1VZ4e3U9QI4hOFg==
Age: 3148
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: proKg6vtnWa0ursdkQAYzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bBLLxMHAWig8rAR1eSv2RhJQvto=
francerelooking.fr/wp-content/themes/freeman/style.css
82.165.202.51200 OK 12 kB URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/style.css
IP 82.165.202.51:0
File type ASCII text, with very long lines (369), with CRLF line terminators
Hash 9febf01e42e528226ff6cbea68bb3cbf
43452599ae31e91dec885ea56e136a4929c4263d
9eb5a0d6797da8e209b641d2cd86d8cbf9ffa4683af6ecb8d99daeeeefe0d5ef
GET /wp-content/themes/freeman/style.css HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/wp-content/themes/freeman-child/style.css?ver=7cc720ea35884a84ed274ab902452129
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-d8af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 08:06:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Dosis:800
142.250.74.106200 OK 45 kB URL HTTP/2 fonts.googleapis.com/css?family=Dosis:800
IP 142.250.74.106:0
Hash 5e5b79fb58823c8489288d69d7df9158
06249faa66406abcd05dbbe15efccaed6253d080
d495f5812a7fa367bce697a6ddc59ee3c4813189d3f2e429998656bd4396aed1
GET /css?family=Dosis:800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 08:06:16 GMT
date: Wed, 18 Jan 2023 08:06:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJt7Ql2xME.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJt7Ql2xME.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15112, version 1.0\012- data
Hash 34d350cc326de1aef3bd355e445145b0
00614b7f642028a13b2056b77c5ca59f50db8aa4
a059b402f825447ebca76ddebc727e5fb0f7d6ae19a904db51cc4c3a00dd9a5a
GET /s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJt7Ql2xME.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://francerelooking.fr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 18:59:02 GMT
expires: Mon, 15 Jan 2024 18:59:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:43 GMT
content-type: font/woff2
age: 220034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blog.protur-hotels.com/wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg
185.156.219.145200 OK 9.3 kB URL HTTP/2 blog.protur-hotels.com/wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg
IP 185.156.219.145:0
ASN #60458 Xtudio Networks S.L.U.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x624, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e81273b5ce05dba88fd9b3c7bb36a5af
984ee28bb5f91fe015eabb7b5fd5475d0d734910
148ce6eb4a88c570ff0e137ba9cc73f9c43297a8304e3213b9e22263ad6c6cf0
GET /wp-content/uploads/2015/09/Ahora-en-web-protur-hotels-puede-pagar-con-Paypal.jpg HTTP/1.1
Host: blog.protur-hotels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=10368000
expires: Thu, 18 May 2023 08:06:16 GMT
content-type: image/webp
last-modified: Wed, 18 May 2022 21:53:24 GMT
accept-ranges: bytes
content-length: 9340
date: Wed, 18 Jan 2023 08:06:16 GMT
server: LiteSpeed
vary: User-Agent,Accept-Encoding,Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
botw-pd.s3.amazonaws.com/styles/logo-thumbnail/s3/0013/4323/brand.gif
54.231.192.233200 OK 4.4 kB URL HTTP/1.1 botw-pd.s3.amazonaws.com/styles/logo-thumbnail/s3/0013/4323/brand.gif
IP 54.231.192.233:0
File type GIF image data, version 87a, 195 x 195\012- data
Hash 9644a35c4ec7b8ac42468bb335f7e500
44f320575173ba2720cd83e4d04ba210bf529d3e
33b5d1012535c01eb9f0487540b8a7fb98bfde54373d0863505cb15b89052c6b
GET /styles/logo-thumbnail/s3/0013/4323/brand.gif HTTP/1.1
Host: botw-pd.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RgZWEAXs1g/gOxBDEeYGtljenDoJ3xIfI5tve0GzMhgOYliSLFAG0/JMB2MHYpvWoR8a/cbYycs=
x-amz-request-id: 9QNW1RMZRH6MQZT6
Date: Wed, 18 Jan 2023 08:06:17 GMT
Last-Modified: Thu, 31 Aug 2017 15:28:51 GMT
ETag: "9644a35c4ec7b8ac42468bb335f7e500"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 4438
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d547e6cc07ecb62b49cfb14f223d3b87
7f316e0778cf7e132cf376b92d1f9860e06894f5
4ceb4872fc5aa21ce6cdba296ce83f68d1b46836df05886eb76e0607358ba42c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 08:06:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://francerelooking.fr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 09:41:19 GMT
expires: Wed, 17 Jan 2024 09:41:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
age: 80697
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.woff
82.165.202.51200 OK 60 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.woff
IP 82.165.202.51:0
File type Web Open Font Format, TrueType, length 59872, version 2.0\012- data
Hash 95aa28e29618c068e8a53f64c87cb6a9
2cd26eab23d66ba998686c0fd2f828696e539ce2
c2430aad2b6a33948dc064cfaee8ad65ff9e3ca439834f3aaa84abec3d10dea8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.woff HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.min.css?ver=6.9.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: font/woff
content-length: 59872
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: "62fa63b0-e9e0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/vc-linecons/fonts/vc_linecons.woff?54101537
82.165.202.51200 OK 27 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/vc-linecons/fonts/vc_linecons.woff?54101537
IP 82.165.202.51:0
File type Web Open Font Format, CFF, length 27308, version 1.0\012- data
Hash f7e1d7f91c602afedad1e575e5696e30
f1a9fd07996f24302f1410ec38faaaa741a53e10
0e1076ec01481ada6dcbe8d22736b9c56cdfbd078620b589a60f5a11eee9152d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/lib/vc-linecons/fonts/vc_linecons.woff?54101537 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/vc-linecons/vc_linecons_icons.min.css?ver=6.9.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: font/woff
content-length: 27308
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: "62fa63b0-6aac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2017/11/visage-237x300.png
82.165.202.51200 OK 70 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2017/11/visage-237x300.png
IP 82.165.202.51:0
File type PNG image data, 237 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash ef4f8be477245e25568744997f7e910f
5b2de7bbfdc50a9cbf2366a01611179ac5b6d6ea
d79975140b8f46d8163805b5d4612bf49d89576f206f1ebade2cc1e27db1bcdf
GET /wp-content/uploads/2017/11/visage-237x300.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 69783
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-11097"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-shortcodes/vc_extend/vc.css?ver=1
82.165.202.51200 OK 4.9 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-shortcodes/vc_extend/vc.css?ver=1
IP 82.165.202.51:0
File type Unicode text, UTF-8 text, with very long lines (344)
Hash 3dce1a219c51c63474e3991405e7f34e
5536dcc5f645a84ab02e643a4e10f919fc9ebdf2
7d9520e8c7b041e02fa1ad136a30715be146527fa89474e6b13c156be3cad5ed
GET /wp-content/plugins/oi-shortcodes/vc_extend/vc.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-4707"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/reduce-75x75.png
82.165.202.51200 OK 2.1 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/reduce-75x75.png
IP 82.165.202.51:0
File type PNG image data, 75 x 75, 8-bit colormap, non-interlaced\012- data
Hash 3be7a8956bdf15f5ec6d42212e1e1508
16711b2e8ea9102c872e1b6e300f3405797b1fa4
41c7c10c87d046dfbc629deb64a0236a6cd239477cb77b506a2c387f8e25dbfc
GET /wp-content/uploads/2019/03/reduce-75x75.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 2135
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-857"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/high-five-1-75x75.png
82.165.202.51200 OK 1.8 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/high-five-1-75x75.png
IP 82.165.202.51:0
File type PNG image data, 75 x 75, 8-bit colormap, non-interlaced\012- data
Hash cf94ebe4da26e55289ba46c4318ffd3f
6fd895cf365155459c39f72d3ee8fb0b3270969b
16786ac6c880694c9b320874015ecc191d43996892eeba4ad755e96651e8fc99
GET /wp-content/uploads/2019/03/high-five-1-75x75.png HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: image/png
content-length: 1811
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-713"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-192x192.jpg
82.165.202.51200 OK 10 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-192x192.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 0b05f397d0e43c50a846fedbff36ba93
724c2d2dd8b2250e9a5a6ac506348f4863d51b4e
4eb9ba21e4c41c9f6450a6cc338b5b802be44fc16137ca4df11690fdc38d1550
GET /wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-192x192.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 10317
last-modified: Sun, 25 Dec 2022 11:40:54 GMT
etag: "63a836c6-284d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-32x32.jpg
82.165.202.51200 OK 3.7 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-32x32.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 8cc289076ac6ed99b2d3142a894fb10d
c6419b440910cb7cf65a62b3e477bf2d0b6a05a9
c767758391e93d7ab82404ca3ff2305e7bc7928f7d32b9a244dc01311e536f27
GET /wp-content/uploads/2022/12/cropped-android-chrome-512x512-1-32x32.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 3684
last-modified: Sun, 25 Dec 2022 11:40:54 GMT
etag: "63a836c6-e64"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/img/oval-spinner.svg
82.165.202.51200 OK 721 B URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/img/oval-spinner.svg
IP 82.165.202.51:0
File type exported SGML document, ASCII text
Hash 92319e0575e5587c1c4176facb375c91
5f14a315dce72e473407865f3fa8da901f202dd6
9c35cb6c86e5ee78561f71a7647fc5f860d8b61a3d4fe528d0d08dc86d971fe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/img/oval-spinner.svg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/svg+xml
content-length: 721
last-modified: Mon, 15 Aug 2022 18:28:52 GMT
etag: "62fa9064-2d1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/img/hourglass.svg
82.165.202.51200 OK 2.6 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/img/hourglass.svg
IP 82.165.202.51:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1521)
Hash 39fe1889135ca1be6c6152abd8aaceb1
7441d630c13c7e22d479eff9ad91a82a865e028c
27fa07014a5dc8c8f81dcfa4a7d0c501f9d7b8468e0fe0c21705dd81bc6a336d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/img/hourglass.svg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/svg+xml
content-length: 2608
last-modified: Mon, 15 Aug 2022 18:28:53 GMT
etag: "62fa9065-a30"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/img/oval-spinner.svg
82.165.202.51200 OK 721 B URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/img/oval-spinner.svg
IP 82.165.202.51:0
File type exported SGML document, ASCII text
Hash 92319e0575e5587c1c4176facb375c91
5f14a315dce72e473407865f3fa8da901f202dd6
9c35cb6c86e5ee78561f71a7647fc5f860d8b61a3d4fe528d0d08dc86d971fe6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/img/oval-spinner.svg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/svg+xml
content-length: 721
last-modified: Mon, 15 Aug 2022 18:28:52 GMT
etag: "62fa9064-2d1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/img/hourglass.svg
82.165.202.51200 OK 2.6 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/img/hourglass.svg
IP 82.165.202.51:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1521)
Hash 39fe1889135ca1be6c6152abd8aaceb1
7441d630c13c7e22d479eff9ad91a82a865e028c
27fa07014a5dc8c8f81dcfa4a7d0c501f9d7b8468e0fe0c21705dd81bc6a336d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/img/hourglass.svg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/svg+xml
content-length: 2608
last-modified: Mon, 15 Aug 2022 18:28:53 GMT
etag: "62fa9065-a30"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.paypal.com/tagmanager/pptm.js?id=francerelooking.fr&source=checkoutjs&t=xo&v=4.0.336
151.101.193.21200 OK 4.3 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?id=francerelooking.fr&source=checkoutjs&t=xo&v=4.0.336
IP 151.101.193.21:0
File type ASCII text, with very long lines (12084), with no line terminators
Hash da1b94bdea2eb1769e74df6fbd2c1a2e
4c7f6b5318ffd3d36b6b431f4bd113b55d8f14a7
45cc4e008a654e4ef3f3b3eb0ca92f52ade64445039059b5395b11734b033be4
GET /tagmanager/pptm.js?id=francerelooking.fr&source=checkoutjs&t=xo&v=4.0.336 HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-8iDRU08c2yRvn+7uABq2p57FGh33IifgRtXmFE9M1I5umMje' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
etag: W/"2f34-zQQ0FVqIlbkbuS4WgpPW/nUPXC4"
paypal-debug-id: f977030fd5d51
traceparent: 00-0000000000000000000f977030fd5d51-478725fb3975e363-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 18 Jan 2023 08:06:17 GMT
age: 0
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220058-HHN, cache-bma1643-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1674029177.008290,VS0,VE319
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f977030fd5d51-ec1037ae690997d4-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 4299
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2017/11/22625.jpg
82.165.202.51200 OK 564 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2017/11/22625.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 2692x1938, components 3\012- data
Size 564 kB (563681 bytes)
Hash 76e244922aa176d2f3ef2a5f340e1ef4
b46aca70cc0c7e3c304d90c89b8dc281aa3589c5
e7114b6471f24a6e6841e1b7b5ea623f4d82b60c832a1d9bc44fa039e2c2f00d
GET /wp-content/uploads/2017/11/22625.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 563681
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-899e1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Accueil%20-%20France%20Relooking&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674029177284&g=0&completeurl=https%3A%2F%2Ffrancerelooking.fr%2F&ru=https%3A%2F%2Ffrancerelooking.fr%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
151.101.65.35200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Accueil%20-%20France%20Relooking&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674029177284&g=0&completeurl=https%3A%2F%2Ffrancerelooking.fr%2F&ru=https%3A%2F%2Ffrancerelooking.fr%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
IP 151.101.65.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Accueil%20-%20France%20Relooking&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674029177284&g=0&completeurl=https%3A%2F%2Ffrancerelooking.fr%2F&ru=https%3A%2F%2Ffrancerelooking.fr%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Wed, 18 Jan 2023 08:06:17 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 7f78d31db6716
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1768723577%26vteXpYrS%3D1674030977%26vr%3Dc3ea1aa71850a5783a54c2f0ffffffff%26vt%3Dc3ea1aa71850a5783a54c2f0fffffffe; Expires=Sun, 18 Jan 2026 08:06:17 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Dc3ea1aa71850a5783a54c2f0ffffffff%26vt%3Dc3ea1aa71850a5783a54c2f0fffffffe; Expires=Sun, 18 Jan 2026 08:06:17 GMT; Domain=.paypal.com; Path=/; Secure
traceparent: 00-00000000000000000007f78d31db6716-93c14c8d925c93d5-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 18 Jan 2023 08:06:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220062-HHN, cache-bma1640-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674029177.417868,VS0,VE178
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 42
X-Firefox-Spdy: h2
francerelooking.fr/?wordfence_lh=1&hid=8AE27E7F2D2431276EAD6B3962DA2FDD&r=0.49156902947087855
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/?wordfence_lh=1&hid=8AE27E7F2D2431276EAD6B3962DA2FDD&r=0.49156902947087855
IP 82.165.202.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wordfence_lh=1&hid=8AE27E7F2D2431276EAD6B3962DA2FDD&r=0.49156902947087855 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
link: <https://francerelooking.fr/wp-json/>; rel="https://api.w.org/", <https://francerelooking.fr/wp-json/wp/v2/pages/3837>; rel="alternate"; type="application/json", <https://francerelooking.fr/>; rel=shortlink
x-robots-tag: noindex
x-cache-status: MISS
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_18112990-150x150.jpeg
82.165.202.51200 OK 18 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_18112990-150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CS3 Macintosh, datetime=2009:11:02 18:53:03], baseline, precision 8, 150x150, components 3\012- data
Hash 72616c54b74acb924af66d16af810041
c93bf25cd31138454a66548567ad7cd2e668ba83
3465f966a537a73ac5561ebf0d3828810d8df3a52f392f8ad16df7dc1fed37fa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_18112990-150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 17852
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-45bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_36982538-150x150.jpeg
82.165.202.51200 OK 32 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_36982538-150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2011:11:19 01:06:25], baseline, precision 8, 150x150, components 3\012- data
Hash 741bb36b3d071ede7ff18ee42f579e62
beb8938ec974ad9140fbf8afbc2319112461202f
25179e0d766405a8d8919ac939ab32ca1e2123ebb57e7d4cde5ef47b2700445f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_36982538-150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 32429
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-7ead"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_185483061-150x150.jpeg
82.165.202.51200 OK 24 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_185483061-150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Jewelry Fashion. Woman In Luxury Jewels. Glamour Female Model With Beauty Face Makeup Wearing Expensive Gold Jewelry And Stylis, manufacturer=Canon, model=Canon EOS 5DS R, orientation=upper-left, xresolution=362, yresolution=370, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:07:28 18:09:51], baseline, precision 8, 150x150, components 3\012- data
Hash 507f1975c19040ff462b5306396665c4
a6bc4f40415e59a486d25572d0522c41dfc81a88
eccdc8972affdefe267371360ce3253072d39085a1c7d8997c87894d5c06ff22
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_185483061-150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 23975
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-5da7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-catalog-5537cbef0e41f245e754.js
82.165.202.51200 OK 114 kB URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-catalog-5537cbef0e41f245e754.js
IP 82.165.202.51:0
File type Unicode text, UTF-8 text, with very long lines (65367), with no line terminators
Size 114 kB (113965 bytes)
Hash c7ee4e43d1b8a3141e9dde490574f7ba
de39006e9149964c418eeffc79287472e92b8164
45b7ac53c3dfb3fdf1bd0aea1e61577a494a9b036c91fa2fe98f27245caffea6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-catalog-5537cbef0e41f245e754.js HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 18:28:58 GMT
etag: W/"62fa906a-5fff6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_209431536-150x150.jpeg
82.165.202.51200 OK 18 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_209431536-150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Young handsome man near mirror in makeup room, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=244, yresolution=252, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2018:05:26 12:41:12, GPS-Data], baseline, precision 8, 150x150, components 3\012- data
Hash a297d8f0b3482c90d363259b924449c1
cc643be494595daa636f959a1856c240df2d3b89
6793cfe77a224628bb3000b35bd6377e2386482fe70e20b35d066260b00c76dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_209431536-150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 18439
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-4807"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/mister-150x150.jpeg
82.165.202.51200 OK 16 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/mister-150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=NIKON CORPORATION, model=NIKON D70, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2010:06:06 17:42:54], baseline, precision 8, 150x150, components 3\012- data
Hash ff6d2413b431945210372494c17e58d2
b31f33b16e4665be139ed0475080a41094d1f59e
445c5fb2eb13b2b33edfe8d3ae959a185ec97268424ad08069fd783a9a118f98
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/mister-150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 16226
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-3f62"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/Accompagnement-shopping--150x150.jpeg
82.165.202.51200 OK 27 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/Accompagnement-shopping--150x150.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=19, height=2050, bps=0, PhotometricIntepretation=RGB, description=Customer woman with shopping bags over blue background, orientation=upper-left, width=7878], baseline, precision 8, 150x150, components 3\012- data
Hash ff6179e38a2aac4b909e533e058d2ad4
3901c9573c50c83e2e2d91b9e1fc27fb2e1248a0
49fa0931cc340b8d9ef9cacd0826c6d7e65f7025a45d240a13655c20fe2c604b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/Accompagnement-shopping--150x150.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 26825
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-68c9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2017/11/meches-de-cheveux-colorer-150x150.jpg
82.165.202.51200 OK 7.4 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2017/11/meches-de-cheveux-colorer-150x150.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 9a4dfaaf1cf7971099f9e8c052dd1257
28d3a71101437d8fffd6ceb030d440564f65f89e
f8922a994bdde66a9eb74b4b606bf6380930de2ebf37476834554b0e84cd2376
GET /wp-content/uploads/2017/11/meches-de-cheveux-colorer-150x150.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: image/jpeg
content-length: 7376
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-1cd0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6232
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 08:06:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6232
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 08:06:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6232
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 08:06:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 928e970121a035e9f8d537e4bfe6bf5c
ce4aadc6b3500508d1c4b42b76f09be4414b6eee
2da1438b17cf05aed64e565350dcc706420f2bae7e8c5e36d1b5bad38248c275
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 5b743b27-b6d4-4d98-9984-3a5e17cb28e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1xH8BIAMFuZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f1-2f1031db0871abae4760d5b6;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jyWosZVSdPHomvHRyf-MuxVp0gR7sKIJ0-jmMStDeixhd8Bhoqzitg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:09 GMT
age: 36309
etag: "ce4aadc6b3500508d1c4b42b76f09be4414b6eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df397b10a8e03cec7f74cd8f0fbb4e6e
625e8a1b7e865def8861e194ac754c486cd374e7
6bafab2eaac6814dd4c0f2155119f71e01cf6ecd602d51fa5d5e547db3588705
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7574
x-amzn-requestid: e330d010-6465-47c6-b45f-b25a6de84f9d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A16GjsIAMFYgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f2-17ca5566719117874cb6a6d0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wF_siKELQDBuWLkhNtrGzLwKyuMaGaSoCQNpE5etDRs6XotQgRYF3w==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:02:53 GMT
age: 36205
etag: "625e8a1b7e865def8861e194ac754c486cd374e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 015e1f23253643036d718d5a785be61b
55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0
78045e55e5e9966b1fddb9e3f734972611ea78e7cb78b92beb2e4adf56f724ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983f844-6675-400d-b957-26ce8e636ae7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8939
x-amzn-requestid: 5fbb2a5d-5731-4fb0-8b95-cc59338862de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1nGMvoAMFrQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f0-14de6c94416a9ced1c284d5b;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9a9h9cp9BmYqM6hR_X8VOYLSvbH8PxNs0AYpdil6CjSEy0zuZkSvsg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:52:59 GMT
age: 36799
etag: "55b5ce93ba3ab53b227aa1fdb60b6062d35ae2f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKl5JNASQseZsuX_yJtVaUT2TCY5lKIxjJ8QvhDIXDAkC8GwIRilYg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:08 GMT
age: 36310
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 93bbdd19-aa04-49ec-858f-9fa1d6b736d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BKCGEtoAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c71573-008911af44c3998d7b27b837;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:38:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adtKl3gOcesaXNHcRbi71-1Wz6caEgtXrAvbhB9qhId7eJEkd7d7pQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:59:45 GMT
age: 36393
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:00:29 GMT
age: 14749
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2017/11/Myriam-Barchichat-1-150x150.jpg
82.165.202.51200 OK 5.2 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2017/11/Myriam-Barchichat-1-150x150.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 15670352c720d0310bf676283c3a7ccd
3821c4b60f4af071d27fdbebabbbd058c8e5d56b
044675fa33627226725fe9757524bc436fbd1b7a5bf23654f263c947f4bac4f9
GET /wp-content/uploads/2017/11/Myriam-Barchichat-1-150x150.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 5211
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-145b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_114269383.jpg
82.165.202.51200 OK 187 kB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_114269383.jpg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 622x1158, components 3\012- data
Size 187 kB (187097 bytes)
Hash 546a7606901ddde549cda17b4c4b7eab
e330d81c9103388e28b42eea79da40bccabd0086
4bd476a149787c6d5c846fcc0b1a228c1b46bbbd0fdd678991ca30dc2b609adb
GET /wp-content/uploads/2019/03/AdobeStock_114269383.jpg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 187097
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-2dad9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_209431536.jpeg
82.165.202.51200 OK 3.2 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_209431536.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Young handsome man near mirror in makeup room, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=244, yresolution=252, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2018:05:26 12:41:12, GPS-Data], baseline, precision 8, 6720x4480, components 3\012- data
Size 3.2 MB (3173719 bytes)
Hash d3c0b686eb23d5d8de28d83d19a6c352
9d9bd05334f4b66306ad9deb62b7e0dd4160079a
5ce27348c5afc855b42252e87bedc1023c0f9cc2bc2b777526720f33f2339699
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_209431536.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 3173719
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-306d57"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/mister.jpeg
82.165.202.51200 OK 2.2 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/mister.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=NIKON CORPORATION, model=NIKON D70, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2010:06:06 17:42:54], baseline, precision 8, 2000x3008, components 3\012- data
Size 2.2 MB (2203315 bytes)
Hash b5e3340f151cd37a7dc2cbedd051f937
2627389cc40640ca6034cce4eb166c3e3a948109
bc528c1bae79f5faeb45b56e3abc29f782b564c36cf8a3f5c1f7af7826a46ba4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/mister.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 2203315
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-219eb3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_18112990.jpeg
82.165.202.51200 OK 5.6 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_18112990.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CS3 Macintosh, datetime=2009:11:02 18:53:03], baseline, precision 8, 5616x3744, components 3\012- data
Size 5.6 MB (5584151 bytes)
Hash de20e4f6f2e5d312e65c5df7285b4624
ebf880799e28f3d9f20b52f8c8b79f16541d9f40
188390c21692b49ef5aaa4e0fdabef34146a0809438c36963ad354feeb89f992
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_18112990.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 5584151
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-553517"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/city.jpeg
82.165.202.51200 OK 5.1 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/city.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, description=sale, shopping, fashion, style and people concept - happy young man in shirt choosing jacket in mall or clothing store, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, xresolution=354, yresolution=362, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2016:05:26 14:39:43], baseline, precision 8, 4843x3306, components 3\012- data
Size 5.1 MB (5098061 bytes)
Hash 1db6632a9413bf64b1e1b85496106d34
8a7fdeb14dbc390c19e71683b476a299142d5dfc
e464c650cc969d8b1ecd1897ef2e180a4bbfaf4f2e5d71bb193644f76db44ce0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/city.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 5098061
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-4dca4d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_36982538.jpeg
82.165.202.51200 OK 5.9 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_36982538.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop CS4 Macintosh, datetime=2011:11:19 01:06:25], baseline, precision 8, 3181x3180, components 3\012- data
Size 5.9 MB (5942046 bytes)
Hash 1499ccfe931027989b846a0e00d3af60
456305815d985b7542e9b16ddce1189b0aaddb32
e20419c6f0f4030814af3672f8e836841764f883584e3c224ad110ff5f33b897
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_36982538.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 5942046
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-5aab1e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_89367819.jpeg
82.165.202.51200 OK 3.5 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_89367819.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=Pretty jeans princess. Beautiful girl in jeans and paper crown over blue background., manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, xresolution=274, yresolution=282, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2015:05:25 14:16:23, copyright=II*], baseline, precision 8, 4000x4000, components 3\012- data
Size 3.5 MB (3466694 bytes)
Hash 5350a003be528f5fd70a2051d7af2b8a
ac7b496770293811f031f7dd8b647398eb765c29
25221ef127c74908f2596793c53d0facedb41751ec7a778116d23ffa97491160
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_89367819.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 3466694
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-34e5c6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_185483061.jpeg
82.165.202.51200 OK 13 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_185483061.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, description=Jewelry Fashion. Woman In Luxury Jewels. Glamour Female Model With Beauty Face Makeup Wearing Expensive Gold Jewelry And Stylis, manufacturer=Canon, model=Canon EOS 5DS R, orientation=upper-left, xresolution=362, yresolution=370, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:07:28 18:09:51], baseline, precision 8, 8688x5792, components 3\012- data
Size 13 MB (13165735 bytes)
Hash 643b4d890909a2aad43157bb9e93af95
4cbe98c2c29cc814882d6ad873a515363c1087f5
368dfb1d9fa1aebbf1257866e182973275a3b6ad3bb276d0febd11f3ad5c5974
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_185483061.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 13165735
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-c8e4a7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_213678757.jpeg
82.165.202.51200 OK 6.2 MB URL HTTP/2 francerelooking.fr/wp-content/uploads/2019/03/AdobeStock_213678757.jpeg
IP 82.165.202.51:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=Adobe Photoshop CC 2017 (Macintosh), datetime=2018:07:16 19:52:26], baseline, precision 8, 6720x4480, components 3\012- data
Size 6.2 MB (6154525 bytes)
Hash 72458486ad895529fbf75d0343a5b661
29a44ae64dc5b08f39aae73464fe1265ab328576
24be7ee0723c8b1821cf65e64a3b5214cc31d5929a7f3bb23a01ab3981884bd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/03/AdobeStock_213678757.jpeg HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:18 GMT
content-type: image/jpeg
content-length: 6154525
last-modified: Mon, 15 Aug 2022 15:18:09 GMT
etag: "62fa63b1-5de91d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/lightcase/lightcase.css?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/lightcase/lightcase.css?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/lightcase/lightcase.css?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-440b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0
IP 82.165.202.51:0
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.9.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-76891"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:37:21 GMT
etag: W/"6361e5f1-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.min.css?ver=6.9.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.min.css?ver=6.9.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/lib/typicons/src/font/typicons.min.css?ver=6.9.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-3a75"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/vc-linecons/vc_linecons_icons.min.css?ver=6.9.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/css/lib/vc-linecons/vc_linecons_icons.min.css?ver=6.9.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/lib/vc-linecons/vc_linecons_icons.min.css?ver=6.9.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-93e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js?ver=6.2.3
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js?ver=6.2.3
IP 82.165.202.51:0
GET /wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js?ver=6.2.3 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 11:40:30 GMT
etag: W/"63849e2e-5b89"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.11
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.11
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/vhparallax.min.js?ver=3.19.11 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 23:12:05 GMT
etag: W/"62fad2c5-cdd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/js/advanced-floating-content-public.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/js/advanced-floating-content-public.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/advanced-floating-content-lite/public/js/advanced-floating-content-public.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Sun, 25 Dec 2022 12:16:57 GMT
etag: W/"63a83f39-32f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1d95c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/owl.carousel.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/owl.carousel.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/owl.carousel.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-bcc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 82.165.202.51:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:10 GMT
etag: W/"62fa63b2-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%26amp%3Bsubset%3Dlatin-ext&subset=latin%2Clatin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%26amp%3Bsubset%3Dlatin-ext&subset=latin%2Clatin-ext
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A400%2C700%2C900%2C400italic%2C700italic%2C900italic%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%26amp%3Bsubset%3Dlatin-ext&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 08:06:16 GMT
date: Wed, 18 Jan 2023 08:06:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/tipso.min.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/tipso.min.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/js/tipso.min.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-2954"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/isotope.pkgd.min.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/isotope.pkgd.min.js?ver=1.0.0
IP 82.165.202.51:0
GET /wp-content/plugins/oi-portfolio/framework/js/isotope.pkgd.min.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-8ce2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/jquery.fullpage.min.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/jquery.fullpage.min.js?ver=1.0.0
IP 82.165.202.51:0
GET /wp-content/themes/freeman/framework/js/jquery.fullpage.min.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-68a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/animate.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/animate.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/animate.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-11cda"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11
IP 82.165.202.51:0
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=3.19.11 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:10 GMT
etag: W/"62fa63b2-6bf7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-72d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP 82.165.202.51:0
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 11:41:11 GMT
etag: W/"63ac2b57-2945"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/remodal.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/remodal.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/remodal.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-61e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/
82.165.202.51200 OK 0 B IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/html; charset=UTF-8
link: <https://francerelooking.fr/wp-json/>; rel="https://api.w.org/", <https://francerelooking.fr/wp-json/wp/v2/pages/3837>; rel="alternate"; type="application/json", <https://francerelooking.fr/>; rel=shortlink
x-cache-status: HIT
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.11
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.11
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-css/ultimate.min.css?ver=3.19.11 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 23:12:06 GMT
etag: W/"62fad2c6-70508"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:37:21 GMT
etag: W/"6361e5f1-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.2
IP 82.165.202.51:0
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1afe3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/js/wp-emoji-release.min.js?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/js/wp-emoji-release.min.js?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 18:25:33 GMT
etag: W/"62fa8f9d-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/uploads/amelia/css/amelia-booking.tYDkaMI0bh.css?ver=5.1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/uploads/amelia/css/amelia-booking.tYDkaMI0bh.css?ver=5.1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/amelia/css/amelia-booking.tYDkaMI0bh.css?ver=5.1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 22:25:43 GMT
etag: W/"62fac7e7-d6acd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/gmap3.min.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/gmap3.min.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/js/gmap3.min.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-7427"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/font-awesome/css/font-awesome.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/font-awesome/css/font-awesome.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/font-awesome/css/font-awesome.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-7918"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/css/classic-themes.min.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/css/classic-themes.min.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 03:37:21 GMT
etag: W/"6361e5f1-d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.11
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.11
IP 82.165.202.51:0
GET /wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate_bg.min.js?ver=3.19.11 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 23:12:05 GMT
etag: W/"62fad2c5-b05b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/remodal.min.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/remodal.min.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/js/remodal.min.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1dc7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/theia-sticky-sidebar.min.js?ver=1.1.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/theia-sticky-sidebar.min.js?ver=1.1.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/js/theia-sticky-sidebar.min.js?ver=1.1.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-141b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/css/style.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/css/style.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
GET /wp-content/plugins/oi-portfolio/framework/css/style.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1483"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/owl.theme.default.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/owl.theme.default.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/owl.theme.default.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-55a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/snow-storm/snow-storm.js?ver=1.4.5
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/snow-storm/snow-storm.js?ver=1.4.5
IP 82.165.202.51:0
GET /wp-content/plugins/snow-storm/snow-storm.js?ver=1.4.5 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-267c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/css/frontend/vendor.css?ver=5.1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/css/frontend/vendor.css?ver=5.1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/css/frontend/vendor.css?ver=5.1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 18:28:51 GMT
etag: W/"62fa9063-4cda2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-shortcodes/vc_extend/vc_custom.js
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-shortcodes/vc_extend/vc_custom.js
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oi-shortcodes/vc_extend/vc_custom.js HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-c68"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0
IP 82.165.202.51:0
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.9.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-4f5b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-category-5537cbef0e41f245e754.js
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-category-5537cbef0e41f245e754.js
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/js/chunks/amelia-booking-category-5537cbef0e41f245e754.js HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 18:28:58 GMT
etag: W/"62fa906a-5e385"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.2
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-fddf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/css/advanced-floating-content-public.css?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/advanced-floating-content-lite/public/css/advanced-floating-content-public.css?ver=1.0.0
IP 82.165.202.51:0
GET /wp-content/plugins/advanced-floating-content-lite/public/css/advanced-floating-content-public.css?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Sun, 25 Dec 2022 12:16:57 GMT
etag: W/"63a83f39-62"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/functions.js?ver=1.0.1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/functions.js?ver=1.0.1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/js/functions.js?ver=1.0.1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1c11"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/ameliabooking/public/js/frontend/amelia-booking.js?ver=5.1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/ameliabooking/public/js/frontend/amelia-booking.js?ver=5.1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ameliabooking/public/js/frontend/amelia-booking.js?ver=5.1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 18:28:57 GMT
etag: W/"62fa9069-162d0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oi-portfolio/framework/css/bootstrap.min.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-305d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/js/owl.carousel.min.js?ver=2.1.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/js/owl.carousel.min.js?ver=2.1.0
IP 82.165.202.51:0
GET /wp-content/themes/freeman/framework/js/owl.carousel.min.js?ver=2.1.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-a728"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 11:41:11 GMT
etag: W/"63ac2b57-316c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/custom_plugin.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/custom_plugin.js?ver=1.0.0
IP 82.165.202.51:0
GET /wp-content/plugins/oi-portfolio/framework/js/custom_plugin.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-10b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/lightcase/lightcase.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/lightcase/lightcase.js?ver=1.0.0
IP 82.165.202.51:0
GET /wp-content/themes/freeman/framework/lightcase/lightcase.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-bb5f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-admin/admin-ajax.php?action=wpamelia_api&call=/entities&types[]=locations&types[]=employees&types[]=categories&types[]=custom_fields&types[]=packages&page=booking
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-admin/admin-ajax.php?action=wpamelia_api&call=/entities&types[]=locations&types[]=employees&types[]=categories&types[]=custom_fields&types[]=packages&page=booking
IP 82.165.202.51:0
GET /wp-admin/admin-ajax.php?action=wpamelia_api&call=/entities&types[]=locations&types[]=employees&types[]=categories&types[]=custom_fields&types[]=packages&page=booking HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: application/json;charset=utf-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-cache-status: MISS
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.2
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.2
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.2 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-7578"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/remodal-default-theme.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/remodal-default-theme.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/remodal-default-theme.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1599"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/jquery.waitforimages.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/jquery.waitforimages.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oi-portfolio/framework/js/jquery.waitforimages.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-4d5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-includes/js/underscore.min.js?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-includes/js/underscore.min.js?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 03:37:21 GMT
etag: W/"6361e5f1-4991"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.paypalobjects.com/api/checkout.js?ver=7cc720ea35884a84ed274ab902452129
192.229.221.25200 OK 0 B URL HTTP/2 www.paypalobjects.com/api/checkout.js?ver=7cc720ea35884a84ed274ab902452129
IP 192.229.221.25:0
GET /api/checkout.js?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript; charset=utf-8
date: Wed, 18 Jan 2023 08:06:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6266d4b0-16d23e"
expires: Thu, 19 Jan 2023 08:06:16 GMT
last-modified: Mon, 25 Apr 2022 17:04:48 GMT
paypal-debug-id: b1ee0c211b6e9
server: ECAcc (ska/F770)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 239948
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:17 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-dac0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/jquery.fullpage.min.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/jquery.fullpage.min.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/jquery.fullpage.min.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-c7c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/imagesloaded.js?ver=1.0.0
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/plugins/oi-portfolio/framework/js/imagesloaded.js?ver=1.0.0
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oi-portfolio/framework/js/imagesloaded.js?ver=1.0.0 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-1b2b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman-child/style.css?ver=7cc720ea35884a84ed274ab902452129
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman-child/style.css?ver=7cc720ea35884a84ed274ab902452129
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman-child/style.css?ver=7cc720ea35884a84ed274ab902452129 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-17c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
francerelooking.fr/wp-content/themes/freeman/framework/css/tipso.min.css?ver=1
82.165.202.51200 OK 0 B URL HTTP/2 francerelooking.fr/wp-content/themes/freeman/framework/css/tipso.min.css?ver=1
IP 82.165.202.51:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/freeman/framework/css/tipso.min.css?ver=1 HTTP/1.1
Host: francerelooking.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://francerelooking.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 08:06:16 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 15:18:08 GMT
etag: W/"62fa63b0-357"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2