r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15634
Expires: Mon, 06 Feb 2023 17:03:40 GMT
Date: Mon, 06 Feb 2023 12:43:06 GMT
Connection: keep-alive
infallible-shirley.34-134-130-193.plesk.page/
34.134.130.193301 Moved Permanently 162 B URL HTTP/1.1 infallible-shirley.34-134-130-193.plesk.page/
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Chronopost
openphish Chronopost International
fortinet Phishing
GET / HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 06 Feb 2023 12:43:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://infallible-shirley.34-134-130-193.plesk.page/
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12599
Expires: Mon, 06 Feb 2023 16:13:05 GMT
Date: Mon, 06 Feb 2023 12:43:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7240
Expires: Mon, 06 Feb 2023 14:43:46 GMT
Date: Mon, 06 Feb 2023 12:43:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 12:36:27 GMT
content-type: application/json
age: 399
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UUB3ejiugPbpatcDgcjnOlHtPA0yHo0bmrUVGXQmKBVM58uQf17KVeezAxTzJlRhAom46ZOPxqk=
x-amz-request-id: 4QX36AXN9H5T8YRM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 12:24:56 GMT
age: 1090
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 12:43:06 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ee8796ee119113074af7957ce23b9af4
850249607f397fd9878688ee2ec9eb63b51460d5
0c26751114949aba9ff73710507f25ce797f05df12bb4fc8864baf965d53d966
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0C26751114949ABA9FF73710507F25CE797F05DF12BB4FC8864BAF965D53D966"
Last-Modified: Sun, 05 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 18:43:06 GMT
Date: Mon, 06 Feb 2023 12:43:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, Pragma, Alert, Cache-Control, Content-Length, Expires, Retry-After, Backoff, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 11:51:19 GMT
age: 3107
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/
34.134.130.193302 Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/
IP 34.134.130.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Chronopost
openphish Chronopost International
fortinet Phishing
GET / HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Mon, 06 Feb 2023 12:43:06 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; path=/
location: client/index.html
x-powered-by: PHP/8.0.27, PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9770
Expires: Mon, 06 Feb 2023 15:25:57 GMT
Date: Mon, 06 Feb 2023 12:43:07 GMT
Connection: keep-alive
push.services.mozilla.com/
52.37.14.141101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.14.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lZA7T/bkk3F/LTAQU4FWzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lxKDO1ZXuZSw2pLPLimleoeZ4CE=
consent.cookiebot.com/uc.js?cbid=07728dca-296d-43fc-9a3b-107a450004d2
95.101.10.153200 OK 24 kB URL HTTP/2 consent.cookiebot.com/uc.js?cbid=07728dca-296d-43fc-9a3b-107a450004d2
IP 95.101.10.153:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 63376e520f58e80f2cff75a65d69fba9
af06e4eac8db3dfe17487018d62fb9b175912b8e
631182aa4d9ba695d52b20e06635a63caa4e06cba5c475d67c09c635cf7b774e
GET /uc.js?cbid=07728dca-296d-43fc-9a3b-107a450004d2 HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Sun, 29 Jan 2023 10:39:43 GMT
accept-ranges: bytes
etag: "80161ffcd33d91:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 23598
cache-control: public, max-age=990
expires: Mon, 06 Feb 2023 12:59:37 GMT
date: Mon, 06 Feb 2023 12:43:07 GMT
X-Firefox-Spdy: h2
consentcdn.cookiebot.com/consentconfig/07728dca-296d-43fc-9a3b-107a450004d2/state.js
104.110.3.72200 OK 50 B URL HTTP/2 consentcdn.cookiebot.com/consentconfig/07728dca-296d-43fc-9a3b-107a450004d2/state.js
IP 104.110.3.72:0
File type ASCII text, with no line terminators
Hash 11162cf300c563c78b68778aba71c14b
61a397c20a7867448b1beda7a314a298555862b8
aa5aeeb724c2185d46aed9abd8a3cf57c1e0399a90deb7c69ebcf2b36b04d9aa
GET /consentconfig/07728dca-296d-43fc-9a3b-107a450004d2/state.js HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8fabfd3bb9b067b11ad664181b30fa66:1598559568.623191"
last-modified: Thu, 27 Aug 2020 20:19:28 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 50
unused62: 8096267
cache-control: max-age=20125
expires: Mon, 06 Feb 2023 18:18:32 GMT
date: Mon, 06 Feb 2023 12:43:07 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
consent.cookiebot.com/logconsent.ashx?action=accept&nocache=1651310356809&referer=https%3A%2F%2Fwww.chronopost.fr%2Ffr%23%2Fstep-home&dnt=false&method=strict&clp=true&cls=true&clm=true&cbid=07728dca-296d-43fc-9a3b-107a450004d2&cbt=leveloptin&hasdata=true
95.101.10.153200 OK 440 B URL HTTP/2 consent.cookiebot.com/logconsent.ashx?action=accept&nocache=1651310356809&referer=https%3A%2F%2Fwww.chronopost.fr%2Ffr%23%2Fstep-home&dnt=false&method=strict&clp=true&cls=true&clm=true&cbid=07728dca-296d-43fc-9a3b-107a450004d2&cbt=leveloptin&hasdata=true
IP 95.101.10.153:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 2a74fa3c8821745851cda8fc1af95714
bc8957da0371ec62e97c8fba997ee0e9927a24b1
9438cb1333a6be1e893c6b5f9e75f18fce97bf49a691f78b7df12d0c8889ccf4
GET /logconsent.ashx?action=accept&nocache=1651310356809&referer=https%3A%2F%2Fwww.chronopost.fr%2Ffr%23%2Fstep-home&dnt=false&method=strict&clp=true&cls=true&clm=true&cbid=07728dca-296d-43fc-9a3b-107a450004d2&cbt=leveloptin&hasdata=true HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-encoding: gzip
last-modified: Mon, 06 Feb 2023 12:43:07 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 440
expires: Mon, 06 Feb 2023 12:43:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 06 Feb 2023 12:43:07 GMT
X-Firefox-Spdy: h2
consent.cookiebot.com/07728dca-296d-43fc-9a3b-107a450004d2/cc.js?renew=false&referer=www.chronopost.fr&dnt=false
95.101.10.153200 OK 50 kB URL HTTP/2 consent.cookiebot.com/07728dca-296d-43fc-9a3b-107a450004d2/cc.js?renew=false&referer=www.chronopost.fr&dnt=false
IP 95.101.10.153:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65499)
Hash abcf57ef529594d923db5039740414f3
23cfb40b620dbdf58a633bb82cfdf0bec280e547
574d6e30901ece249401e311b3fec4670fa86ca5c3d10333206a7311a5aabd67
GET /07728dca-296d-43fc-9a3b-107a450004d2/cc.js?renew=false&referer=www.chronopost.fr&dnt=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Mon, 06 Feb 2023 12:43:07 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 49621
date: Mon, 06 Feb 2023 12:43:07 GMT
X-Firefox-Spdy: h2
cstatic.weborama.fr/js/wreport_wcm.js
93.184.221.133200 OK 4.8 kB URL HTTP/2 cstatic.weborama.fr/js/wreport_wcm.js
IP 93.184.221.133:0
Hash 6547896297b1c3172b7725e2d3858a25
a24a133b2c06de19dabdac9c983c7c35395aa0c6
0867cb02fa4b7e3551fddfefa430889dd8eab0abf03d45692cf789593c71f7ef
GET /js/wreport_wcm.js HTTP/1.1
Host: cstatic.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 57179
cache-control: max-age=604800
content-type: text/javascript
date: Mon, 06 Feb 2023 12:43:07 GMT
etag: "198470062+gzip"
expires: Mon, 13 Feb 2023 12:43:07 GMT
last-modified: Tue, 14 Sep 2021 08:33:27 GMT
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
server: ECAcc (ska/F6BB)
vary: Accept-Encoding
x-cache: HIT
content-length: 4766
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1ff070d4ff9cb0cb0fb0050ed6285ade
9938ab6f3893e06d127dfbe4e7ea9316909073e5
28643e33a505cc730c7921e232026c3eee6d5fa9485185bd8ef0e9c7dd05bfbd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5892
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:07 GMT
Etag: "63e05f40-1d7"
Last-Modified: Mon, 06 Feb 2023 11:04:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1ff070d4ff9cb0cb0fb0050ed6285ade
9938ab6f3893e06d127dfbe4e7ea9316909073e5
28643e33a505cc730c7921e232026c3eee6d5fa9485185bd8ef0e9c7dd05bfbd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2041
Cache-Control: max-age=136286
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:07 GMT
Etag: "63e05f40-1d7"
Expires: Wed, 08 Feb 2023 02:34:33 GMT
Last-Modified: Mon, 06 Feb 2023 02:00:32 GMT
Server: ECS (amb/6B7C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1ff070d4ff9cb0cb0fb0050ed6285ade
9938ab6f3893e06d127dfbe4e7ea9316909073e5
28643e33a505cc730c7921e232026c3eee6d5fa9485185bd8ef0e9c7dd05bfbd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1282
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:07 GMT
Last-Modified: Mon, 06 Feb 2023 12:21:45 GMT
Server: ECS (amb/6BB6)
X-Cache: HIT
Content-Length: 471
chatbot.chronopost.fr/JavaHookServer/static/main-es5.28706597a9508092268f.js
81.252.34.102404 Introuvable 158 B URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/main-es5.28706597a9508092268f.js
IP 81.252.34.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5fe55c07bb3f3ec997fd35662d095265
3b24202fe3345266024b34ee5eeb9825dcea0c4c
493b212a09ed6712fda530e62efa43b3bba201c09d3c2326e31ba8fd99c25246
GET /JavaHookServer/static/main-es5.28706597a9508092268f.js HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Introuvable
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
content-type: application/json;charset=UTF-8
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti1-NODE1; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
www.chronopost.fr/sites/default/files/advagg_css/css__Dxjo1LwG4Pq9gERfZDoxWl7DOsG5nNCo2lBUZtl-9sE__iS_Toc-EmMBX0r7otzn4yMya5R9UCfMJUED9W4Y5kxY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 182 B URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__Dxjo1LwG4Pq9gERfZDoxWl7DOsG5nNCo2lBUZtl-9sE__iS_Toc-EmMBX0r7otzn4yMya5R9UCfMJUED9W4Y5kxY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
Hash 70905f16de5c42368e744b9b400b7b9a
e1312e433e75b3b2424108cfb9b97868d580946e
84e9c0516b4d37e500a9ae81ce3dac7c3ae23572a692ac83ac2da64258de13ac
GET /sites/default/files/advagg_css/css__Dxjo1LwG4Pq9gERfZDoxWl7DOsG5nNCo2lBUZtl-9sE__iS_Toc-EmMBX0r7otzn4yMya5R9UCfMJUED9W4Y5kxY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:28 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 10 Mar 2021 13:20:57 GMT
etag: "b6-5bd2e8994385e"
content-length: 182
content-encoding: gzip
content-type: text/css
x-varnish: 92912525 92629598
x-varnish-cache: HIT
x-varnish-cache-hits: 1
x-varnish-grace: normal
vary: User-Agent
chatbot.chronopost.fr/JavaHookServer/static/default-theme-1648461303.css
81.252.34.102404 Introuvable 154 B URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/default-theme-1648461303.css
IP 81.252.34.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c1a28ccf43d8faa1c80a12636bbd3b60
87e924e9508f246650d740bd6e15705bd4f2cbf0
6cb98715b32e9204fbe5d0f7006294d2b08fd4421041c0cb5a21db0831595696
GET /JavaHookServer/static/default-theme-1648461303.css HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Introuvable
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
content-type: application/json;charset=UTF-8
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti1-NODE1; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
chatbot.chronopost.fr/JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js
81.252.34.102404 Introuvable 161 B URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js
IP 81.252.34.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b6fba3072c46173848249dc42e05b878
86eb7b6e0bd14590bcc10fe6797b5f883160f5fc
f8d53d2b588aaed087288cdbcf5365aa41d628bb6004264f9825d9f00d529127
GET /JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Introuvable
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
content-type: application/json;charset=UTF-8
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti1-NODE2; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
chatbot.chronopost.fr/JavaHookServer/static/styles.c3e12b4995ba4514c11e.css
81.252.34.102200 OK 7.6 kB URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/styles.c3e12b4995ba4514c11e.css
IP 81.252.34.102:0
File type Unicode text, UTF-8 text, with very long lines (33905)
Hash 361bb0c80a850eb06869dc9e5229148c
de88d3d2c09aacd123cb94b3bf9c8a7c5dab4eb9
3f5d824a8d1625d8b467741c682f834b98264334a7cb7704ec9e6cd2e6ddb8dc
GET /JavaHookServer/static/styles.c3e12b4995ba4514c11e.css HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 05 Oct 2022 13:00:18 GMT
cache-control: max-age=14400
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti2-NODE2; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
chatbot.chronopost.fr/JavaHookServer/static/index.js?_=4130a8bef48c6b4d633905080e15810fd616810912819b2608af3f41211d6aac
81.252.34.102200 OK 1.3 kB URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/index.js?_=4130a8bef48c6b4d633905080e15810fd616810912819b2608af3f41211d6aac
IP 81.252.34.102:0
Hash a0286b31f743f86308466950c2a5f339
f6c1a7962bafe18327875cce9dbc13d1c48db6d8
5333b92eb2562726508ae3253ff3a627c8e4809464ba9a4fd758b042447a25d9
GET /JavaHookServer/static/index.js?_=4130a8bef48c6b4d633905080e15810fd616810912819b2608af3f41211d6aac HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 05 Oct 2022 13:00:48 GMT
cache-control: max-age=14400
etag: "0a0286b31f743f86308466950c2a5f339"
content-type: application/javascript
content-length: 1307
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti2-NODE1; path=/;HttpOnly;Secure;SameSite=strict
www.googletagmanager.com/gtm.js?id=GTM-MGZ67C
142.250.74.40200 OK 69 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MGZ67C
IP 142.250.74.40:0
File type ASCII text, with very long lines (45131)
Hash 097ed8903a14d32264b1a3737f6b4c73
0745a22bd1c309eef27026972704bf60762449b7
dc87e470e6eaf3834b741d3dbe06315c68c5b84df7120f82a77385e414834700
GET /gtm.js?id=GTM-MGZ67C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 12:43:07 GMT
expires: Mon, 06 Feb 2023 12:43:07 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69006
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.chronopost.fr/sites/default/files/advagg_css/css__0RWLjX5x0uBSmQNhDIUL0XXtkQBWZvd0rQjtxKv3gbM__GUTOhhSWX9kbyu8z_f3jD3UZZUbYIfF6KgkZolz-iOw__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 26 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__0RWLjX5x0uBSmQNhDIUL0XXtkQBWZvd0rQjtxKv3gbM__GUTOhhSWX9kbyu8z_f3jD3UZZUbYIfF6KgkZolz-iOw__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (19850)
Hash 2ea3cba46ba5515b4c2521795f5dc4b1
ac39ba8248bf49f04b4c893ed005736ae396de14
18743df4de2d4e467d90a8aefc44eb6ad540ca4fddd7be95cef49a18e0de610e
GET /sites/default/files/advagg_css/css__0RWLjX5x0uBSmQNhDIUL0XXtkQBWZvd0rQjtxKv3gbM__GUTOhhSWX9kbyu8z_f3jD3UZZUbYIfF6KgkZolz-iOw__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:37 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "63ab-5bd2e89928886"
last-modified: Wed, 10 Mar 2021 13:20:57 GMT
content-length: 25515
content-encoding: gzip
content-type: text/css
x-varnish: 92886815 92978652
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
vary: User-Agent
www.chronopost.fr/sites/default/files/advagg_css/css__SPynlSLgon-RMKQdfoxbx4Xe8hv4j7Rurvz3k89ApNs__z5nBuKo4JdeXrgU0Yxw-6clPdnVMbpJcIxA4_-GZQUg__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 16 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__SPynlSLgon-RMKQdfoxbx4Xe8hv4j7Rurvz3k89ApNs__z5nBuKo4JdeXrgU0Yxw-6clPdnVMbpJcIxA4_-GZQUg__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (22907)
Hash 80301f1378dec97a3bc6e4b415f9f5b0
e06849345fe2f605288efcfa2fe00e440cef88fe
b159ab8434d493a1613ebd5625672b90f01ae8c195c031c30c2dd58dc4e1e042
GET /sites/default/files/advagg_css/css__SPynlSLgon-RMKQdfoxbx4Xe8hv4j7Rurvz3k89ApNs__z5nBuKo4JdeXrgU0Yxw-6clPdnVMbpJcIxA4_-GZQUg__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:37 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 12 Oct 2021 17:39:41 GMT
etag: "3f2d-5ce2b548d1b6c"
content-length: 16173
content-encoding: gzip
content-type: text/css
x-varnish: 91107381 91107206
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
vary: User-Agent
www.chronopost.fr/sites/default/files/advagg_js/js__oCcNTRezMUWfsPNNPhYborj61KxjZUxCKq9kf-Gb9Tk__3hSvAHKBWlb1xl0JmOP0HQz8jg4VMd_8rbQc_XzqpMA__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
213.41.95.60200 OK 292 B URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_js/js__oCcNTRezMUWfsPNNPhYborj61KxjZUxCKq9kf-Gb9Tk__3hSvAHKBWlb1xl0JmOP0HQz8jg4VMd_8rbQc_XzqpMA__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (347)
Hash 690fa1ccd44f2c6ed3690131c8b8c55b
3071351e78b7830cb6eaac3c0e9aebcb058acef7
50cb714d3144e4f106a69612533ad18cebc0810e04365908434a18db10f21561
GET /sites/default/files/advagg_js/js__oCcNTRezMUWfsPNNPhYborj61KxjZUxCKq9kf-Gb9Tk__3hSvAHKBWlb1xl0JmOP0HQz8jg4VMd_8rbQc_XzqpMA__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:18 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 10 Mar 2021 13:20:58 GMT
etag: "124-5bd2e89960737"
content-length: 292
content-encoding: gzip
content-type: text/javascript
x-varnish: 90954889 91259213
x-varnish-cache: HIT
x-varnish-cache-hits: 3
x-varnish-grace: normal
vary: User-Agent
www.chronopost.fr/sites/default/files/advagg_css/css__mpDqrfbbZETcDOED0FJDgmJIRJGb_VbVB4R0r8jTGlI__rji2WeP7_BWeMe36C3CoAxEAuqKmFTv2AqMNsvCtqEY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 29 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__mpDqrfbbZETcDOED0FJDgmJIRJGb_VbVB4R0r8jTGlI__rji2WeP7_BWeMe36C3CoAxEAuqKmFTv2AqMNsvCtqEY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (19987)
Hash 5e1817f70b3aa869f04bcc3b59f839c0
43c101f7d4145ca167afdabde18b804a19d2b11a
474dbfe4dc2bc11c8c81da8c1240ec2f96cba4e78bc9d637a5458ea5ee30beba
GET /sites/default/files/advagg_css/css__mpDqrfbbZETcDOED0FJDgmJIRJGb_VbVB4R0r8jTGlI__rji2WeP7_BWeMe36C3CoAxEAuqKmFTv2AqMNsvCtqEY__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:07 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 10 Mar 2021 13:20:57 GMT
etag: "72d4-5bd2e8990810e"
content-length: 29396
content-encoding: gzip
content-type: text/css
x-varnish: 92655344
x-varnish-cache: MISS
vary: User-Agent
www.chronopost.fr/sites/default/files/advagg_css/css__mXEgOpYs-ZYCAV6E3EBPa6SiI_U8ltwMuIxzjJhF3n8__qNA66Cg3K1GgNxW591VEeIJLlvxq2tqb3hk-8TIfWaU__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 12 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__mXEgOpYs-ZYCAV6E3EBPa6SiI_U8ltwMuIxzjJhF3n8__qNA66Cg3K1GgNxW591VEeIJLlvxq2tqb3hk-8TIfWaU__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (45027)
Hash 6ea4e6d76836d027aaaca1c66e27680d
e8b9f263c6f045300dc2839e8f516948624e3e33
414b55b9140bbfc96fa9e2c525a8165d27db9d670787bb6dba6a6d8083f2190f
GET /sites/default/files/advagg_css/css__mXEgOpYs-ZYCAV6E3EBPa6SiI_U8ltwMuIxzjJhF3n8__qNA66Cg3K1GgNxW591VEeIJLlvxq2tqb3hk-8TIfWaU__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:27 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 10 Mar 2021 13:20:57 GMT
etag: "2f89-5bd2e89913d35"
content-length: 12169
content-encoding: gzip
content-type: text/css
x-varnish: 92662321 92466563
x-varnish-cache: HIT
x-varnish-cache-hits: 6
x-varnish-grace: normal
vary: User-Agent
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.chronopost.fr/sites/default/files/advagg_js/js__i11V-7AETPhfL9YzRpXBpECwVkYyQ_ahu2eHxES_mK0__Tgy2Gm7LmUJY8GXZeWxVbS51f3txED35LX1ul4UiOfk__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
213.41.95.60200 OK 1.5 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_js/js__i11V-7AETPhfL9YzRpXBpECwVkYyQ_ahu2eHxES_mK0__Tgy2Gm7LmUJY8GXZeWxVbS51f3txED35LX1ul4UiOfk__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
Hash 44129ec2ccd65c0afe95ddecb6d916e6
3b0f73159a4d288bdc91a54ba9e5d61b639755fc
e23a18dac06b1284cfa7f3f60ac5946dd087574ad34ff695e5041e6fa272fa64
GET /sites/default/files/advagg_js/js__i11V-7AETPhfL9YzRpXBpECwVkYyQ_ahu2eHxES_mK0__Tgy2Gm7LmUJY8GXZeWxVbS51f3txED35LX1ul4UiOfk__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:17 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 10 Mar 2021 13:20:57 GMT
etag: "5f5-5bd2e8994fe7e"
content-length: 1525
content-encoding: gzip
content-type: text/javascript
x-varnish: 91143794 91107165
x-varnish-cache: HIT
x-varnish-cache-hits: 3
x-varnish-grace: normal
vary: User-Agent
chatbot.chronopost.fr/JavaHookServer/static/polyfills-es5.fe5b938b80faf8ee65ae.js
81.252.34.102200 OK 208 kB URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/polyfills-es5.fe5b938b80faf8ee65ae.js
IP 81.252.34.102:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 208 kB (208283 bytes)
Hash 96fb7d4adc5d1a4c871539781f4bd9fb
7f8b4ab890606657556cd23463d9130538fc346c
69aae16302c99a9233366df736b1f5be514315ea14a536cd0e463148ab3678d1
GET /JavaHookServer/static/polyfills-es5.fe5b938b80faf8ee65ae.js HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:07 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 05 Oct 2022 13:00:26 GMT
cache-control: max-age=14400
content-type: application/javascript
content-length: 208283
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti1-NODE1; path=/;HttpOnly;Secure;SameSite=strict
www.chronopost.fr/sites/default/files/advagg_js/js__H0_UM623Z1WrioLq9YuBK3tuyrC27-d4LFDRiXvk8Ak__5AL13hdbH52Mghy0tocsHhGlHeAvZzS-CBwx1qRI0Xo__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
213.41.95.60200 OK 129 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_js/js__H0_UM623Z1WrioLq9YuBK3tuyrC27-d4LFDRiXvk8Ak__5AL13hdbH52Mghy0tocsHhGlHeAvZzS-CBwx1qRI0Xo__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
Size 129 kB (128884 bytes)
Hash 16d574d4df1d533096a048100eaddfc5
2597ec576fb168da33a3a3c5eb5f663ce24d4af1
7fe377021d74eeb77143322fd87426faf119c7248c910eb0343f695c0a677864
GET /sites/default/files/advagg_js/js__H0_UM623Z1WrioLq9YuBK3tuyrC27-d4LFDRiXvk8Ak__5AL13hdbH52Mghy0tocsHhGlHeAvZzS-CBwx1qRI0Xo__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.js HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:29 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Thu, 10 Mar 2022 21:22:59 GMT
etag: "1f774-5d9e3d1801144"
content-length: 128884
content-encoding: gzip
content-type: text/javascript
x-varnish: 92754881 92978623
x-varnish-cache: HIT
x-varnish-cache-hits: 5
x-varnish-grace: normal
vary: User-Agent
tag.aticdn.net/555972/smarttag.js
54.230.111.120200 OK 26 kB URL HTTP/2 tag.aticdn.net/555972/smarttag.js
IP 54.230.111.120:0
File type ASCII text, with very long lines (944)
Hash f4d224b9a046a0f06f8b70098d96b4a3
81be336559420e1d6b6427a055e2876974868fa3
6e6184d54310ee22ebeffc2db8ad950aff7df62dc4b420e495ce79ecbdbd5c5d
GET /555972/smarttag.js HTTP/1.1
Host: tag.aticdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Mon, 29 Aug 2022 09:00:38 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: P1KWCOn_PYUXTiEhvNQ8GCDQ.FEcVZHH
server: AmazonS3
content-encoding: br
date: Mon, 06 Feb 2023 12:37:50 GMT
cache-control: max-age=1800
etag: W/"b29775c9bd7526c29b2834b7acbb6379"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YjZGJpIRw8f1SIrZBN1BYeGDtCFZG2wovDh4ZK6ivFRt3MhHqX4zXw==
age: 378
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
www.chronopost.fr/sites/default/files/advagg_css/css__rrSrrOGtcDkawAOviIBpWgZqMG-EzRNZ6NlriNSm-ag__KUAGEwtfseLuePb6eHr7OUVubHR6s1Swcmvp7hEhm3Y__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
213.41.95.60200 OK 20 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/advagg_css/css__rrSrrOGtcDkawAOviIBpWgZqMG-EzRNZ6NlriNSm-ag__KUAGEwtfseLuePb6eHr7OUVubHR6s1Swcmvp7hEhm3Y__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type ASCII text, with very long lines (17961)
Hash 618a02510ef634c133031fffd3d375e8
4b3ecacb50a190402b3f66173637b447a9d494d0
47f56805ae2b8f6e7ada06494300a86d6136a0ca3322d0f8403dc78fde7c2b44
GET /sites/default/files/advagg_css/css__rrSrrOGtcDkawAOviIBpWgZqMG-EzRNZ6NlriNSm-ag__KUAGEwtfseLuePb6eHr7OUVubHR6s1Swcmvp7hEhm3Y__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:03 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "4e31-5bd2e8c254f17"
last-modified: Wed, 10 Mar 2021 13:21:40 GMT
content-length: 20017
content-encoding: gzip
content-type: text/css
x-varnish: 93008568 92853280
x-varnish-cache: HIT
x-varnish-cache-hits: 5
x-varnish-grace: normal
vary: User-Agent
www.chronopost.fr/sites/all/themes/chronopost/images/chronopost_logo.png
213.41.95.60200 OK 17 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/chronopost_logo.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 339 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash c33a8f71f937b74aa1c92c074bc57e30
8cedfc20a2e9b83a7478a2f88ee90e226faa5a4b
a1d4dc7ed12cbd39ab6e8d1f572312c75c1051047a0c5b40b78721c6f6f4f934
GET /sites/all/themes/chronopost/images/chronopost_logo.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:47 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "40b4-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 16564
content-type: image/png
x-varnish: 92466782 92662290
x-varnish-cache: HIT
x-varnish-cache-hits: 8
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/logo_youtube.png
213.41.95.60200 OK 2.1 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/logo_youtube.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f873e5a83ebd872a53688778a55b7f7a
81373b85a3215c93bbf8d0864afae44bbec27806
f0a24a3e583df473d57b8839316226f958c4086a24d0735897918e4e4ce8fcd6
GET /sites/all/themes/chronopost/images/logo_youtube.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:20 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "83c-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 2108
content-type: image/png
x-varnish: 15387518 15105432
x-varnish-cache: HIT
x-varnish-cache-hits: 13
x-varnish-grace: normal
www.chronopost.fr/sites/all/modules/contrib/languageicons/flags/fr.png
213.41.95.60200 OK 116 B URL HTTP/1.1 www.chronopost.fr/sites/all/modules/contrib/languageicons/flags/fr.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 18 x 12, 2-bit colormap, non-interlaced\012- data
Hash 2380ab084e3ba1203defae901ab1237b
039410fa845ce85552a129d8ce35e2eae79410a1
a96e0f82101107fc2ee09f39d32d3549ee113641bf9ba5568d4f2a5d6def4f0b
GET /sites/all/modules/contrib/languageicons/flags/fr.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:30 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "74-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 116
content-type: image/png
x-varnish: 92366604 92824121
x-varnish-cache: HIT
x-varnish-cache-hits: 14
x-varnish-grace: normal
www.chronopost.fr/sites/all/modules/contrib/languageicons/flags/en.png
213.41.95.60200 OK 210 B URL HTTP/1.1 www.chronopost.fr/sites/all/modules/contrib/languageicons/flags/en.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 24 x 12, 4-bit colormap, non-interlaced\012- data
Hash cdf92e329cc12fa614a9b706250d8498
d19753e0424b36d45a23360921c615f54fe59375
57ea54a19a47dc49bf624211f8827a5686bab98dc994fe9762cfad1ed332ffea
GET /sites/all/modules/contrib/languageicons/flags/en.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:11 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "d2-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 210
content-type: image/png
x-varnish: 91107384 91259190
x-varnish-cache: HIT
x-varnish-cache-hits: 21
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_nos_offres_part.jpg?itok=30Vzaf_1
213.41.95.60200 OK 14 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_nos_offres_part.jpg?itok=30Vzaf_1
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 480x190, components 3\012- data
Hash 81a1af474c1a96322c010e03434d2304
acc5fd78b1d1c1fa794d7d9ef01b9bb73f7b7f23
7b5e49e63c128ecce7d265166fd7a27528f4048eb2bd87fe20ace3525728f346
GET /sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_nos_offres_part.jpg?itok=30Vzaf_1 HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:37 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 08 Feb 2022 14:09:05 GMT
etag: "37dc-5d782428a9c11"
content-length: 14300
content-type: image/jpeg
x-varnish: 92789774 92938950
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bann_collecte_hp.jpg?itok=VxnhtJUA
213.41.95.60200 OK 18 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bann_collecte_hp.jpg?itok=VxnhtJUA
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 480x190, components 3\012- data
Hash f644e412c7a8d76e0594b1f84d938f67
04dc7bb8e4517d12f0e4cee9c46eeb4c3f976989
c15b460a38e3f3d6a0eb9e270d93a311982bf6b0c80840b6fab31639b7d86c1e
GET /sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bann_collecte_hp.jpg?itok=VxnhtJUA HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:32 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 27 Oct 2021 10:44:28 GMT
etag: "4728-5cf53473dff72"
content-length: 18216
content-type: image/jpeg
x-varnish: 91411674 93001933
x-varnish-cache: HIT
x-varnish-cache-hits: 8
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_aide.png?itok=1HhL0XDg
213.41.95.60200 OK 2.2 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_aide.png?itok=1HhL0XDg
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ef21d22b9086db8bebc84f6cdee06730
7e2899084a6945230017473df8d8330b5831a7ee
b68f936844712823318eb7416a8f935dcb8a1bc482471d62703412d96fbf7914
GET /sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_aide.png?itok=1HhL0XDg HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:32 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Thu, 11 Apr 2019 14:42:00 GMT
etag: "8a8-586423056ac17"
content-length: 2216
content-type: image/png
x-varnish: 91077735 90954717
x-varnish-cache: HIT
x-varnish-cache-hits: 11
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/logo_found/public/thumbnails/image/logo_ou_nous_trouver.png?itok=q_XzNA9l
213.41.95.60200 OK 5.1 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/logo_found/public/thumbnails/image/logo_ou_nous_trouver.png?itok=q_XzNA9l
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 105 x 122, 8-bit/color RGBA, non-interlaced\012- data
Hash dabc0f7b0b9f5638df62ba402c3995fa
c213d022689a0b8cd9f0a982a82e481c1aae8144
146775db8285c8e8209d96a868f07088203ce9a21d895f43267c5dda15d8bd5f
GET /sites/default/files/styles/logo_found/public/thumbnails/image/logo_ou_nous_trouver.png?itok=q_XzNA9l HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:56 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "13d9-586443419460c"
last-modified: Thu, 11 Apr 2019 17:06:13 GMT
content-length: 5081
content-type: image/png
x-varnish: 92886819 93002001
x-varnish-cache: HIT
x-varnish-cache-hits: 4
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/bloc_accueil/public/thumbnails/image/bloc_envoyer_inter_pro.png?itok=wzwxF6ed
213.41.95.60200 OK 189 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/bloc_accueil/public/thumbnails/image/bloc_envoyer_inter_pro.png?itok=wzwxF6ed
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 480 x 290, 8-bit/color RGBA, non-interlaced\012- data
Size 189 kB (189192 bytes)
Hash f9938f2a9918af87fb18092923d6ce4f
7dd2b8de3f2dd8056fdd02a986c0e9601a488549
5811ff7e29e86248dc62c6d75980dae7632e2278ad82cc04a86ba6ea6503728d
GET /sites/default/files/styles/bloc_accueil/public/thumbnails/image/bloc_envoyer_inter_pro.png?itok=wzwxF6ed HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:13 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Wed, 03 Apr 2019 13:32:17 GMT
etag: "2e308-585a04845210c"
content-length: 189192
content-type: image/png
x-varnish: 90954892 91077472
x-varnish-cache: HIT
x-varnish-cache-hits: 16
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/logo_instagram.png
213.41.95.60200 OK 2.5 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/logo_instagram.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b50469dbf2a0be6b9de30de9f749cfc0
669d02dc3734f9c9afde11833c60669314f1f3b1
b2090662b163c8ca0d240c3e6c00c5f61bff2319d8009c6aa97c1b2b3a072e88
GET /sites/all/themes/chronopost/images/logo_instagram.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:30 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "9d6-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 2518
content-type: image/png
x-varnish: 93002170 91411519
x-varnish-cache: HIT
x-varnish-cache-hits: 26
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/logo_facebook.png
213.41.95.60200 OK 2.3 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/logo_facebook.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a127e913598b5e50d3ba10930803e82
0d71c1dabae690dc25c35999b8de830f86c6c60f
1095a9f5a0b25c9150fa0b949aa1e7c95ffc3c8d33baf3ba0ff5c470978ded8f
GET /sites/all/themes/chronopost/images/logo_facebook.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:24 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "91b-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 2331
content-type: image/png
x-varnish: 93471440 93628346
x-varnish-cache: HIT
x-varnish-cache-hits: 14
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_envoyer_colis_en_ligne_part.png?itok=UNGENo0d
213.41.95.60200 OK 200 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_envoyer_colis_en_ligne_part.png?itok=UNGENo0d
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 480 x 190, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (199909 bytes)
Hash 80cc426d5d96aa0ee342a7792b0a782f
22569bc4cb7d02881e414e48b9a745671452c2e9
f3468117fab30a121099bf0d0f1251dc2c312da07c82db3527e9d1d361ac2ade
GET /sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_envoyer_colis_en_ligne_part.png?itok=UNGENo0d HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:08 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Thu, 11 Apr 2019 18:27:58 GMT
etag: "30ce5-586455875d20e"
content-length: 199909
content-type: image/png
x-varnish: 15503604
x-varnish-cache: MISS
www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_predict.png?itok=G9c7_pUW
213.41.95.60200 OK 1.7 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_predict.png?itok=G9c7_pUW
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 100 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cb89609efabaaef30d3b1bcd6c96a95
619eef84526cd98d4c0f7507774e7e3581b5cf12
3a54f4bc0f94358733f890a7737247c8939adeffd82bef4d002c151e951e27c3
GET /sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/picto_reassurance_predict.png?itok=G9c7_pUW HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:28 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Thu, 11 Apr 2019 14:42:00 GMT
etag: "6a3-58642305636e7"
content-length: 1699
content-type: image/png
x-varnish: 92621269 92809452
x-varnish-cache: HIT
x-varnish-cache-hits: 11
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/pitco_reassurance_a_propos.png?itok=Ca6mQjGE
213.41.95.60200 OK 1.9 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/pitco_reassurance_a_propos.png?itok=Ca6mQjGE
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 12e8fe2253b917efc807c2f4eabb4877
7279ab7c8176b022d1a386af11d5a4a074c2139d
793559f25aaed0f720bdf2cc853e7a51d110244ecaedd7b69a070c8d1a894957
GET /sites/default/files/styles/icone_bloc_3_colonnes/public/thumbnails/image/pitco_reassurance_a_propos.png?itok=Ca6mQjGE HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:46 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Thu, 11 Apr 2019 14:42:00 GMT
etag: "73f-586423056a05f"
content-length: 1855
content-type: image/png
x-varnish: 91107385 91143730
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/dpd-logo.png
213.41.95.60200 OK 3.3 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/dpd-logo.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 128 x 33, 8-bit/color RGB, non-interlaced\012- data
Hash f34de078547c6cb96064a9b2ea61c251
267eec3f02fd2f6ec8ce0218f812ad1c8f517aee
bc5fa15b90d078322fac07419dbce0372e156a38d69c6b3abc38bf29ad476b32
GET /sites/all/themes/chronopost/images/dpd-logo.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:31 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "ce9-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 3305
content-type: image/png
x-varnish: 90954893 91107192
x-varnish-cache: HIT
x-varnish-cache-hits: 15
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/chronopost_logo_small.png
213.41.95.60200 OK 6.7 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/chronopost_logo_small.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 170 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 83844a55b0719c2c568323edcc3aa72f
904ae759c546c8055bc558670db715c03d5d5e3b
277b3d7509e18a5853b95de911547f1453ad45c201bee91ccdc814d8441ddf11
GET /sites/all/themes/chronopost/images/chronopost_logo_small.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:55 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "1a22-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 6690
content-type: image/png
x-varnish: 15503608 15566603
x-varnish-cache: HIT
x-varnish-cache-hits: 22
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/logo_linkedin.png
213.41.95.60200 OK 2.3 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/logo_linkedin.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d23b2484d577ff2daa2a6a818f4eb686
03363511b79eacd1aa0a363721451e25b3bdd5df
0467d3d2279995a987385142f1731e93eda9df0e22609ed1923b6c0658eed25d
GET /sites/all/themes/chronopost/images/logo_linkedin.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:07 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "8e5-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 2277
content-type: image/png
x-varnish: 91077736 91107377
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_engagement_vert_part.png?itok=eL_frFSz
213.41.95.60200 OK 122 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_engagement_vert_part.png?itok=eL_frFSz
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 480 x 190, 8-bit/color RGBA, non-interlaced\012- data
Size 122 kB (122164 bytes)
Hash 992a393c4b06058b009a741da10a327f
4109906983b6b599bdc0c7706f872d9280ef1312
5bd59b5fa87ee471b318be12849ddb1d4b44f0c7bf3cd914b7a780ed9fd56881
GET /sites/default/files/styles/bloc_accueil_190/public/thumbnails/image/bloc_full_width_engagement_vert_part.png?itok=eL_frFSz HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:46 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "1dd34-5d7829bd08957"
last-modified: Tue, 08 Feb 2022 14:34:03 GMT
content-length: 122164
content-type: image/png
x-varnish: 92366605 92824153
x-varnish-cache: HIT
x-varnish-cache-hits: 3
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/logo_twitter.png
213.41.95.60200 OK 2.1 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/logo_twitter.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2af99de3c9c1f308ac437cd10c1699a4
e061b8585447e35a153584e390caf7e8f1d8fa51
ab3fde5854cb322af1ffdbe8a402c61f864b80b55cbefc1643d47912467874a5
GET /sites/all/themes/chronopost/images/logo_twitter.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:24 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "854-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 2132
content-type: image/png
x-varnish: 92886820 92938926
x-varnish-cache: HIT
x-varnish-cache-hits: 13
x-varnish-grace: normal
www.dwin1.com/16573.js
143.204.55.42200 OK 12 kB IP 143.204.55.42:0
File type C source, ASCII text, with very long lines (41776), with no line terminators
Hash 93c64f6ac741fdc82e94583f5eea1826
8b177082fb4b16895f43cb99f93c9d3a8ffd6108
c5567f482d0e3b3e582b36cd99b13b2ce56784d7e8a3d5cdb89f318e773080c4
GET /16573.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 09:28:48 GMT
x-amz-version-id: JY22CozXGgMhwjwdYjWO9Sa33NjmY7iO
server: AmazonS3
content-encoding: gzip
date: Mon, 06 Feb 2023 12:40:32 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"819a9fecddd9c183d59814c1334b6038"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xosuYUDxLpiJd7_kTkjW2OACcGbdUkGqBsx4sT7ZLq5u9umTgnfpCw==
age: 324
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4efb883fc49ab497eabea4b146f197af
29fa80932d89cba8e015ad7b225c573785aa0997
6f0141c17e682e2372bd0be1fdd6dea37fe1bcf568331beb8eaf6e07ed576033
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F0141C17E682E2372BD0BE1FDD6DEA37FE1BCF568331BEB8EAF6E07ED576033"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13647
Expires: Mon, 06 Feb 2023 16:30:35 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4efb883fc49ab497eabea4b146f197af
29fa80932d89cba8e015ad7b225c573785aa0997
6f0141c17e682e2372bd0be1fdd6dea37fe1bcf568331beb8eaf6e07ed576033
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F0141C17E682E2372BD0BE1FDD6DEA37FE1BCF568331BEB8EAF6E07ED576033"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13647
Expires: Mon, 06 Feb 2023 16:30:35 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
infallible-shirley.34-134-130-193.plesk.page/sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js
34.134.130.193404 Not Found 9.0 kB URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 84a7f7da8d317815eac1a51907e8031f
914c760202a7149c963ff1dfe4034335df395947
da384ed008ce25effaba576df45a5b847952aa2d453d6918a53091d5788a911f
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19504
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19504
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19504
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19504
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:43:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53585
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 53579
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dcinfos-cache.abtasty.com/v1/ua-parser
34.107.143.101200 OK 607 B URL HTTP/2 dcinfos-cache.abtasty.com/v1/ua-parser
IP 34.107.143.101:0
Hash 98747db0506561ee8e91983fc4307c9f
3868b3640f62ef2119a1d9fa77282002327c0c34
499fc627ff2334b9a423d3bf2bfe7f5d97abdb6acd594844be53c21e61111297
GET /v1/ua-parser HTTP/1.1
Host: dcinfos-cache.abtasty.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: application/json
vary: Accept-Encoding,User-Agent
x-envoy-upstream-service-time: 4
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: public, max-age=86400
content-encoding: gzip
server: -
x-envoy-decorator-operation: -
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixAMZh_xOYWVESJ0jOEPOXZ4GQBDUZZsh26yEDYfl8APcBF2x2sZYg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53585
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 12:01:53 GMT
age: 2475
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13572f84ad268caedcc897f2ad7b9baf
afb91ab43953e8915a2169618d2ab5e330cde0a1
0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LXNdWi5iKCUI61c2z3spsg5_DGu1jnZ4cIACc3MCmqWP57RveBMGw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53585
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f54c8725e5dab88b12d42876fa61b12
89c734d690981e30f9d566a7763a1870724d65aa
b8cc5148ae01e1a1fe32f56bdce71de086da320cdd8a55a746609c9773fdaf77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9809
x-amzn-requestid: 533de5fa-8173-430e-a657-4386728723eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc-VEGbIAMFSmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0ec1-4e160c5c2a46d2913cc8e71e;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BgSfqU3WmIhR8N86AEfaU7pXN7jIKs_lKJVD6yCSaJBl5AVx13e5hw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:54:03 GMT
etag: "89c734d690981e30f9d566a7763a1870724d65aa"
content-type: image/jpeg
age: 53345
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
chatbot.chronopost.fr/JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js
81.252.34.102404 Introuvable 161 B URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js
IP 81.252.34.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1b07393f730bfb7e3dc3f73e270b5483
40fdf4f5a8323b57a33a8caf6ebeb47b701e1e36
14a555281ba8501eaa148ae3b1c2dd4dd2b0063c6e6534c110ca9b44d248e62c
GET /JavaHookServer/static/runtime-es5.87c391e2731ce4c21a8e.js HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Introuvable
date: Mon, 06 Feb 2023 12:43:08 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
content-type: application/json;charset=UTF-8
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti2-NODE1; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/small.js?v=1.3.5
34.134.130.193404 Not Found 528 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/small.js?v=1.3.5
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6fe2027400ce3848e06314585166da51
b05af5a5c51972f26a9a85cb13e243316e632bd0
3c0c7209cccfa3b8564d831b4de9c0acb2be57044f36eb831ef64f64a271615a
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/js/small.js?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
chatbot.chronopost.fr/JavaHookServer/static/default-theme-1648461303.css
81.252.34.102404 Introuvable 154 B URL HTTP/1.1 chatbot.chronopost.fr/JavaHookServer/static/default-theme-1648461303.css
IP 81.252.34.102:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4999a3aebc50c12fd778685971e31a31
287cbdf0e8d44a6ef0c198aee5b614092f895ceb
8c6b54ef116d42532e44c8728351187a19aa4314661a8bc709352d90e91d8604
GET /JavaHookServer/static/default-theme-1648461303.css HTTP/1.1
Host: chatbot.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Introuvable
date: Mon, 06 Feb 2023 12:43:08 GMT
server: Apache
x-frame-options: SAMEORIGIN
referrer-policy: origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
x-content-security-policy: frame-ancestors 'self'; frame-src 'self' www.youtube.com
feature-policy: geolocation 'self'; midi 'none';notifications 'none';push 'self';sync-xhr 'self';microphone 'self';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'none';vibrate 'none';fullscreen 'self';payment 'self';usb 'none'
strict-transport-security: max-age=0; includeSubDomains;
content-type: application/json;charset=UTF-8
x-robots-tag: noindex, nofollow, noarchive, nosnippet
set-cookie: JSESSIONID_TCCHATBOT=.tc-chatboti2-NODE1; path=/;HttpOnly;Secure;SameSite=strict
transfer-encoding: chunked
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/vendor.js?v=1.3.5
34.134.130.193404 Not Found 762 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/vendor.js?v=1.3.5
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f9287f1cee0a0ef28a526656aabd8a67
a56bb85ef37e47ef6c595d8a0c83496487d97abc
cf1a2fd7f29c3234677b353d79415c7e99ce5b0ce46c01939c0c67d4cfb79c5e
Analyzer Verdict Alert urlquery phishing Phishing - Chronopost
openphish Chronopost International
fortinet Phishing
GET /small-webapp/js/vendor.js?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
www.chronopost.fr/sites/all/themes/chronopost/images/arrow-white.png
213.41.95.60200 OK 971 B URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/arrow-white.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 7 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 92fd8aeae4298bb22d36e4ca2d09d4cb
8ef18530c5f66634b8070bebcc6f3cb06908718e
5b8f9d3f08fffb56070986824a4d0d53f2278966b52b6a8488a4474e8d2bccd1
GET /sites/all/themes/chronopost/images/arrow-white.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chronopost.fr/sites/default/files/advagg_css/css__mXEgOpYs-ZYCAV6E3EBPa6SiI_U8ltwMuIxzjJhF3n8__qNA66Cg3K1GgNxW591VEeIJLlvxq2tqb3hk-8TIfWaU__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:24 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "3cb-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 971
content-type: image/png
x-varnish: 92466786 92824112
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/arrow.png
213.41.95.60200 OK 354 B URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/arrow.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 15 x 26, 8-bit gray+alpha, non-interlaced\012- data
Hash f9be4fa7aa4391de9038d05c7f92bef3
ef34902bb971f3e3b5def3c4a810b0f06ef46ed1
7092c05cac78000039bb16b02803fb3458466fae04ce1c43de23618ad0025f9a
GET /sites/all/themes/chronopost/images/arrow.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chronopost.fr/sites/default/files/advagg_css/css__0RWLjX5x0uBSmQNhDIUL0XXtkQBWZvd0rQjtxKv3gbM__GUTOhhSWX9kbyu8z_f3jD3UZZUbYIfF6KgkZolz-iOw__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:31 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "162-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 354
content-type: image/png
x-varnish: 92912819 92824127
x-varnish-cache: HIT
x-varnish-cache-hits: 8
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/arrow-gray.png
213.41.95.60200 OK 438 B URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/arrow-gray.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 15 x 26, 8-bit gray+alpha, non-interlaced\012- data
Hash c0a1f111cb414d7e59dc80ce802dca80
e3d5f2943d9a1d642f81aff1561bfc9a3a2a6fea
51149a8eeb4ef5ed83966303e4fd52894828ce9129ee763c024e0ea073b87c10
GET /sites/all/themes/chronopost/images/arrow-gray.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chronopost.fr/sites/default/files/advagg_css/css__0RWLjX5x0uBSmQNhDIUL0XXtkQBWZvd0rQjtxKv3gbM__GUTOhhSWX9kbyu8z_f3jD3UZZUbYIfF6KgkZolz-iOw__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:30 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "1b6-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 438
content-type: image/png
x-varnish: 92775306 92316926
x-varnish-cache: HIT
x-varnish-cache-hits: 18
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/images/drop_down.png
213.41.95.60200 OK 1.3 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/images/drop_down.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 40 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash b1e8344c0aa4a8b910384abdee2d8431
8779be2be601f6d77ae0ae9a13d3fc7b9e703bdf
bf45ea7eeb75d7f9e4bafcefa493632ed14104d77ca76556874a8b91c3560b36
GET /sites/all/themes/chronopost/images/drop_down.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.chronopost.fr/sites/default/files/advagg_css/css__SPynlSLgon-RMKQdfoxbx4Xe8hv4j7Rurvz3k89ApNs__z5nBuKo4JdeXrgU0Yxw-6clPdnVMbpJcIxA4_-GZQUg__vKYx-BngDq1t9o_JLD3lDVrcQ0ZPQfwM5NmbK2EQ0KI.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:45 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "50a-5d54c4a387cc0"
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
content-length: 1290
content-type: image/png
x-varnish: 91107388 91143639
x-varnish-cache: HIT
x-varnish-cache-hits: 8
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/thumbnails/image/slidergreen24villes.jpg
213.41.95.60200 OK 198 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/thumbnails/image/slidergreen24villes.jpg
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x500, components 3\012- data
Size 198 kB (197592 bytes)
Hash bcc941997d5b1a3dff3271c9d508f0b5
8a88697a74d0eda12d9a77af9f68db482a588b79
c6e3d7278e8bd4337e167a3d1060f58d40d0d45093f46af468045f1d7c9f37b8
GET /sites/default/files/thumbnails/image/slidergreen24villes.jpg HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:35 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "303d8-5cff446e72ef7"
last-modified: Thu, 04 Nov 2021 10:49:12 GMT
content-length: 197592
content-type: image/jpeg
x-varnish: 92621272 92556539
x-varnish-cache: HIT
x-varnish-cache-hits: 2
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/thumbnails/image/slider_homeoffice.jpg
213.41.95.60200 OK 79 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/thumbnails/image/slider_homeoffice.jpg
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1042, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4167], progressive, precision 8, 2000x500, components 3\012- data
Hash a78cc93695c4c6eb2fe3e79391d5c817
f2db66f6aef0a90c0fba43c9be55399bf2040540
22db618d1b8074989a0333f953b4fd5ed5afd7487f4bb64f9f48782ebd1162fd
GET /sites/default/files/thumbnails/image/slider_homeoffice.jpg HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:14 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "135da-5c11bca822f36"
last-modified: Thu, 29 Apr 2021 12:39:49 GMT
content-length: 79322
content-type: image/jpeg
x-varnish: 93815532 93815299
x-varnish-cache: HIT
x-varnish-cache-hits: 16
x-varnish-grace: normal
www.chronopost.fr/sites/default/files/thumbnails/image/bloc_texte_img_lien_elabel.png
213.41.95.60200 OK 94 kB URL HTTP/1.1 www.chronopost.fr/sites/default/files/thumbnails/image/bloc_texte_img_lien_elabel.png
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type PNG image data, 512 x 342, 8-bit/color RGB, non-interlaced\012- data
Hash add0fe12d6fbd3bf334a1f24e97e7b1b
9fc2ca7132bd6181ef61ace1eb1d8747c6bef816
88a3d91a78875911c6d9e551b8becde0abe8069fa829e6f82b854ca775cc1b8a
GET /sites/default/files/thumbnails/image/bloc_texte_img_lien_elabel.png HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:51 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
etag: "16d8f-5d7824e5bad8c"
last-modified: Tue, 08 Feb 2022 14:12:23 GMT
content-length: 93583
content-type: image/png
x-varnish: 93002174 92938824
x-varnish-cache: HIT
x-varnish-cache-hits: 8
x-varnish-grace: normal
www.chronopost.fr/sites/all/themes/chronopost/fonts/glyphicons-halflings-regular.woff
213.41.95.60200 OK 16 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/fonts/glyphicons-halflings-regular.woff
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type Web Open Font Format, TrueType, length 16448, version 1.0\012- data
Hash 7c4cbe928205c888831ba76548563ca3
c707207e52ffe555a36880e9873d146c226e3533
71c12656535e99119c2a952c10554cd6f47c6923d2d96155a7833276e68992af
GET /sites/all/themes/chronopost/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://www.chronopost.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:09 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
access-control-allow-origin: *
content-type: application/font-woff
x-varnish: 92686348
etag: W/"4040-5d54c4a387cc0-gzip"
x-varnish-cache: MISS
vary: User-Agent
transfer-encoding: chunked
www.chronopost.fr/sites/all/themes/chronopost/fonts/PlutoSansDPDRegular-Web.woff
213.41.95.60200 OK 60 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/fonts/PlutoSansDPDRegular-Web.woff
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type Web Open Font Format, TrueType, length 60042, version 1.0\012- data
Hash 32319d6149e2659c974fef61dfd5cc42
e2aedccccdbad3f63b14e27941c59e7ba533cc51
c99d0b5a290e48d4e4cbb86c29dd12436f465696702a81ded130a411f1e98cd3
GET /sites/all/themes/chronopost/fonts/PlutoSansDPDRegular-Web.woff HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://www.chronopost.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:55 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
access-control-allow-origin: *
content-type: application/font-woff
x-varnish: 93628462 93628269
etag: W/"ea8a-5d54c4a387cc0-gzip"
x-varnish-cache: HIT
x-varnish-cache-hits: 16
x-varnish-grace: normal
vary: User-Agent
transfer-encoding: chunked
www.chronopost.fr/sites/all/themes/chronopost/fonts/PlutoSansDPDLight-Web.woff
213.41.95.60200 OK 61 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/fonts/PlutoSansDPDLight-Web.woff
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type Web Open Font Format, TrueType, length 60781, version 1.0\012- data
Hash 20398ebf2986259c88014178d7044844
02422f7f86e44268579b2b3694ca72eaaa8a301a
9e462606602d426b676f2b6f9c0b6629b02f91204214898f7d4a56749c4e00d0
GET /sites/all/themes/chronopost/fonts/PlutoSansDPDLight-Web.woff HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://www.chronopost.fr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:41:55 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
access-control-allow-origin: *
content-type: application/font-woff
x-varnish: 92956393 92916347
etag: W/"ed6d-5d54c4a387cc0-gzip"
x-varnish-cache: HIT
x-varnish-cache-hits: 14
x-varnish-grace: normal
vary: User-Agent
transfer-encoding: chunked
infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/small.css?v=1.3.5
34.134.130.193404 Not Found 78 kB URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/small.css?v=1.3.5
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 35e907c727ace4d6a8f015be827fe496
2199f675987b6ba656fc96b87cf4b5b34a1de9d1
d83dede03c799d1d6acfb41633e382f5d70962a48a754d04a95bbf9253c0fb3a
Analyzer Verdict Alert urlquery phishing Phishing - Chronopost
openphish Chronopost International
fortinet Phishing
GET /small-webapp/assets/css/small.css?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
www.chronopost.fr/sites/all/themes/chronopost/favicon.ico
213.41.95.60200 OK 7.3 kB URL HTTP/1.1 www.chronopost.fr/sites/all/themes/chronopost/favicon.ico
IP 213.41.95.60:0
ASN #8220 COLT Technology Services Group Limited
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 965e3d0e99af6bb893f3a381fc99e4c3
340b33fcb188c1fde7ddfb2d656f3cafe476937d
a63ee029601fe160510c5ae7ba8814724870ae106ff3d8fbb5dbf8da31f44baa
GET /sites/all/themes/chronopost/favicon.ico HTTP/1.1
Host: www.chronopost.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:42:42 GMT
x-content-type-options: no-sniff
strict-transport-security: max-age=0; includeSubDomains;
last-modified: Tue, 11 Jan 2022 10:55:23 GMT
etag: "7d26-5d54c4a387cc0-gzip"
content-encoding: gzip
content-length: 7341
content-type: image/vnd.microsoft.icon
x-varnish: 92591545 92855808
x-varnish-cache: HIT
x-varnish-cache-hits: 9
x-varnish-grace: normal
vary: User-Agent
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 889
Cache-Control: max-age=116447
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:09 GMT
Etag: "63e01643-1d7"
Expires: Tue, 07 Feb 2023 21:03:56 GMT
Last-Modified: Sun, 05 Feb 2023 20:49:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=82510
date: Mon, 06 Feb 2023 12:43:09 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6300
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:09 GMT
Last-Modified: Mon, 06 Feb 2023 10:58:09 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5182
Cache-Control: max-age=120740
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:09 GMT
Etag: "63e01643-1d7"
Expires: Tue, 07 Feb 2023 22:15:29 GMT
Last-Modified: Sun, 05 Feb 2023 20:49:07 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: BnJNUS5GWt8ZIFtoe7Mm1btrwhhpRz/34mRXqSwXWWqtD/Jcp9HtE/F4GWLoKJdXpN2ZDOt0gYODvnY6kEek0g==
content-length: 27843
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 12:43:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5910
Cache-Control: max-age=121468
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:43:09 GMT
Etag: "63e01643-1d7"
Expires: Tue, 07 Feb 2023 22:27:37 GMT
Last-Modified: Sun, 05 Feb 2023 20:49:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/alphasslcasha256g4
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.21.226:0
Hash ffba762f01497a3d81d6a4f62a3ad841
eec4e2fb81f289594f37d3f3b3097d717aaf2ab9
ec801097bbfd297aae92f4391935e2913df2bae288faa3b08c21cafe7de97dd0
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:43:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Fri, 10 Feb 2023 11:39:37 GMT
ETag: "eec4e2fb81f289594f37d3f3b3097d717aaf2ab9"
Last-Modified: Mon, 06 Feb 2023 11:39:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1861
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7953f847b857b4f4-OSL
groupelapostefranalytics.solution.weborama.fr/fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=
195.54.48.26302 Found 506 B URL HTTP/1.1 groupelapostefranalytics.solution.weborama.fr/fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=
IP 195.54.48.26:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (372)
Hash ffdef73efa76bb53d651a7cce696d1cb
de32d9049932743dc31a2c50426ba455694bd47c
68d80fa9f94ab4f31cf1e8cda4c0154e4a0194f3f165f28a3309f2eb3b444c18
GET /fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref= HTTP/1.1
Host: groupelapostefranalytics.solution.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
date: Mon, 06 Feb 2023 12:43:09 GMT
server: Apache
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
set-cookie: AFFICHE_W=ZF-NPzJdCtxk89; path=/; expires=Tue, 05-Mar-2024 12:43:09 GMT; domain=.weborama.fr; SameSite=None; Secure
location: https://groupelapostefranalytics.solution.weborama.fr/fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=&BOUNCE=OK
content-length: 506
content-type: text/html; charset=iso-8859-1
px.ads.linkedin.com/collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D460532%26time%3D1675687434299%26url%3Dhttps%253A%252F%252Finfallible-shirley.34-134-130-193.plesk.page%252Fclient%252Flogin.php%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLMppm9Wi7fMQAAAYYmwGk36Ei-fD8xgAKN5OcHmGxrzLNRt2SLqK4SE7SxzAOB_nOFqEFK2c4sZg; Max-Age=2592000; Expires=Wed, 08 Mar 2023 12:43:09 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJ_nDwsFAUbYwAAAYYmwGk3bzZUN9uSq8e4PUBoGTAfXN_SyHIT75ZgoNaJeRDVCQ98xsZPLjt_zVj02Oz_-Q; Max-Age=2592000; Expires=Wed, 08 Mar 2023 12:43:09 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4e03424b-b114-4f8e-8903-64df8014d212"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 06-Feb-2024 12:43:09 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675687389:t=1675773789:v=2:sig=AQE8xnUYA2_B6Nc7LOs-ZpAlB3o1C6EE"; Expires=Tue, 07 Feb 2023 12:43:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAX0B1+a7RkxegmB65643Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E9EA40CAA88F4428B9DD2B5BA7E783CA Ref B: OSL30EDGE0207 Ref C: 2023-02-06T12:43:09Z
date: Mon, 06 Feb 2023 12:43:09 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=254373261805620&ev=PageView&dl=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&rl=&if=false&ts=1675687434501&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.2.1675687434500.1297969260&it=1675687434360&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=254373261805620&ev=PageView&dl=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&rl=&if=false&ts=1675687434501&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.2.1675687434500.1297969260&it=1675687434360&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=254373261805620&ev=PageView&dl=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&rl=&if=false&ts=1675687434501&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.2.1675687434500.1297969260&it=1675687434360&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 06 Feb 2023 12:43:09 GMT
X-Firefox-Spdy: h2
groupelapostefranalytics.solution.weborama.fr/fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=&BOUNCE=OK
195.54.48.26200 OK 67 B URL HTTP/1.1 groupelapostefranalytics.solution.weborama.fr/fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=&BOUNCE=OK
IP 195.54.48.26:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2db45a8f494c4b40095f4fd38d613fd
211639854b03d88502835b2649d42066016fa452
09d46019c7a75b96187202c3c8412182f27c413a9c3661857923dc8e94e91b7b
Analyzer Verdict Alert urlquery phishing Phishing - Chronopost
GET /fcgi-bin/comptage_wreport.fcgi?WRP_ID=485233&WRP_PFL=%7C%7C%7C%7C&BI1=&BI2=&BI3=&BI4=&BI5=&WRP_SECTION=NA&WRP_SUBSECTION=NA&WRP_CONTENT=&WRP_CHANNEL=&ver=2&da2=1675687434&ta=1280x1024&co=24&ref=&BOUNCE=OK HTTP/1.1
Host: groupelapostefranalytics.solution.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 06 Feb 2023 12:43:09 GMT
server: Apache
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
set-cookie: AFFICHE_W=!Z8Af78zhMz564; path=/; expires=Mon, 30-Jan-2023 12:43:09 GMT; domain=.weborama.fr; SameSite=None; Secure
wbo_temps_reel=;expires=Mon, 06 Feb 2023 13:13:09 GMT;domain=.weborama.fr;path=/; SameSite=None; Secure
pragma: no-cache
cache-control: no-cache
transfer-encoding: chunked
content-type: image/gif
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D460532%26time%3D1675687434299%26url%3Dhttps%253A%252F%252Finfallible-shirley.34-134-130-193.plesk.page%252Fclient%252Flogin.php%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D460532%26time%3D1675687434299%26url%3Dhttps%253A%252F%252Finfallible-shirley.34-134-130-193.plesk.page%252Fclient%252Flogin.php%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D460532%26time%3D1675687434299%26url%3Dhttps%253A%252F%252Finfallible-shirley.34-134-130-193.plesk.page%252Fclient%252Flogin.php%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&8dae4e87-b351-43ff-8263-70d03f64c776"; Domain=.linkedin.com; Expires=Tue, 06-Feb-2024 12:43:09 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302061243095900cf69-6f0e-4cf0-81ed-e2092be1c073AQG5gho78Ovw_E41PmKgTsPitMK8EWi0"; Domain=.www.linkedin.com; Expires=Tue, 06-Feb-2024 12:43:09 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU2ODczODk7MjswMjFo7q2B7HUAyhKeNdV1XH0vySBa/YfIgC9he/3FJeNc4w==; Domain=.linkedin.com; Expires=Sat, 05 Aug 2023 12:43:09 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675687389:t=1675773789:v=2:sig=AQE8xnUYA2_B6Nc7LOs-ZpAlB3o1C6EE"; Expires=Tue, 07 Feb 2023 12:43:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAX0B1+d4aqxBAaqUNVkuQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 469A050F957E4ECABEBC8EB149C4FF77 Ref B: OSL30EDGE0207 Ref C: 2023-02-06T12:43:09Z
date: Mon, 06 Feb 2023 12:43:09 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=460532&time=1675687434299&url=https%3A%2F%2Finfallible-shirley.34-134-130-193.plesk.page%2Fclient%2Flogin.php&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&e7a18e94-774c-4b63-8fd2-299845dfb23a"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 06-Feb-2024 12:43:09 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675687389:t=1675773789:v=2:sig=AQG3ekNVtqfQcj_EdhdXisb33CVCVClr"; Expires=Tue, 07 Feb 2023 12:43:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAX0B1+gquQ+zy5AtdRc1Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 435C997376774F9582ADCFEAC2763B35 Ref B: OSL30EDGE0207 Ref C: 2023-02-06T12:43:09Z
date: Mon, 06 Feb 2023 12:43:09 GMT
content-length: 0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb0dab387816c4b691190ec83c2f0f06
9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358
6655307747227d7905f0eca1aaefda6147e4ae443fb9fb20cdb6a336aaab5b67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8528
x-amzn-requestid: b799da5b-d52a-4d83-bdd4-9582d39d6c5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwCmAFYgIAMFjvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb159-77235f642e8a0bdb07414dcb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:01:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EN4Mi_2U_eISge5bd6JQgkg6rGJcB2cQAyhKHOZO-g_Arj6kofRo6g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:27:28 GMT
age: 18947
etag: "9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/small.css?v=1.3.5
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/small.css?v=1.3.5
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/assets/css/small.css?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/style.css?v=1.3.5
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/style.css?v=1.3.5
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/assets/css/style.css?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /sites/all/modules/custom/chrono_xiti/js/chrono_xiti.js HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/small.js?v=1.3.5
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/small.js?v=1.3.5
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/js/small.js?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/vendor.js?v=1.3.5
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/vendor.js?v=1.3.5
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/js/vendor.js?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token
143.204.55.82200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token
IP 143.204.55.82:0
GET /partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 06 Feb 2023 12:43:09 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yyef7pz8hIiv0Stran-k8qAphpD-4o3d9NnALFybG038PYSEoA_kjg==
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/9.js?v=project.version
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/9.js?v=project.version
IP 34.134.130.193:0
GET /small-webapp/js/9.js?v=project.version HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token
143.204.55.82200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token
IP 143.204.55.82:0
GET /partner/460532/domain/infallible-shirley.34-134-130-193.plesk.page/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://infallible-shirley.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 06 Feb 2023 12:43:09 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9anfkEE4g8cPDFX5MdPkZgdN696wExPe8qF2iovhZoItuoXBfy1dfA==
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/client/index.html
34.134.130.193200 OK 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/client/index.html
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /client/index.html HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
x-accel-version: 0.01
last-modified: Mon, 12 Dec 2022 10:25:21 GMT
etag: W/"4d-5ef9eebb53e61"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/style.css?v=1.3.5
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/assets/css/style.css?v=1.3.5
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /small-webapp/assets/css/style.css?v=1.3.5 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/9.js?v=project.version
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/small-webapp/js/9.js?v=project.version
IP 34.134.130.193:0
GET /small-webapp/js/9.js?v=project.version HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/sites/all/themes/chronopost/images/arrow.png
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/sites/all/themes/chronopost/images/arrow.png
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
GET /sites/all/themes/chronopost/images/arrow.png HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:07 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/tracking-no-drupal/resources/js/selfcare.js?_=1675687434075
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/tracking-no-drupal/resources/js/selfcare.js?_=1675687434075
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /tracking-no-drupal/resources/js/selfcare.js?_=1675687434075 HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:09 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2
infallible-shirley.34-134-130-193.plesk.page/JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb
34.134.130.193404 Not Found 0 B URL HTTP/2 infallible-shirley.34-134-130-193.plesk.page/JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb
IP 34.134.130.193:0
Analyzer Verdict Alert openphish Chronopost International
fortinet Phishing
GET /JavaHookServer/static/assets/config-ext.js?_=bc0b8de9863fbe53dbe7fa6eaf8f98a7bdec46fa6a19c4d5e59e4c71c111e2bb HTTP/1.1
Host: infallible-shirley.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://infallible-shirley.34-134-130-193.plesk.page/client/login.php
Cookie: PHPSESSID=ts0vk6cntn2nh6t3bafg0ujic8; has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 06 Feb 2023 12:43:08 GMT
content-type: text/html
last-modified: Mon, 12 Dec 2022 10:25:01 GMT
etag: W/"328-5ef9eea7e625b"
content-encoding: br
X-Firefox-Spdy: h2