r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8104
Expires: Tue, 13 Dec 2022 02:08:05 GMT
Date: Mon, 12 Dec 2022 23:53:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b642ec5702fb818c5d1c67168cc68fdb
015146489a8e7fcb4ba0ba74cfe757a072705f93
4846d047a23903856bd113d02639ce7e08a1e40030151d302295b2d12df98ffc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4846D047A23903856BD113D02639CE7E08A1E40030151D302295B2D12DF98FFC"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10253
Expires: Tue, 13 Dec 2022 02:43:54 GMT
Date: Mon, 12 Dec 2022 23:53:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 12 Dec 2022 23:08:39 GMT
content-type: application/json
age: 2662
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d29881eeb0456eff8cf415ad2ce64ba0
e3cfdd5f56ff88066257ec8f4726f53e3a733bd3
2cd90072f113163f976ddb8bc7017884efd3f764e7e8961b04e3ba5ec0a17d85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CD90072F113163F976DDB8BC7017884EFD3F764E7E8961B04E3BA5EC0A17D85"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13834
Expires: Tue, 13 Dec 2022 03:43:35 GMT
Date: Mon, 12 Dec 2022 23:53:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wiDytNPzbaqOPgrmVTsg3v5+CGxJ+A3PquofNWz8JtF46pRAcOcxsT1CQSWAyou2xM7XPVu8V3E=
x-amz-request-id: VRP5VBR8A21S7Z96
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 12 Dec 2022 23:49:48 GMT
age: 193
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Dec 2022 23:53:01 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fabblog.fabaur.fr/tag/install-php5-fpm
37.59.37.81301 Moved Permanently 0 B URL HTTP/1.1 fabblog.fabaur.fr/tag/install-php5-fpm
IP 37.59.37.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /tag/install-php5-fpm HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Dec 2022 23:53:01 GMT
Server: Apache
X-Powered-By: PHP/7.4.29
X-Redirect-By: WordPress
Location: http://fabblog.fabaur.fr/tag/install-php5-fpm/
Content-Length: 0
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 12 Dec 2022 23:07:57 GMT
age: 2704
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee19f96e42a0eca99d00c8d91f977c35
3bf8dbf8b8ce6ea7adadf7bb92cae2f9502fbee9
6d8adcb1494bfe2ca73cd6b77eb57b2d08e07b05eb892fea98a1fde0bfb2ea12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4826
Cache-Control: max-age=124455
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 23:53:02 GMT
Etag: "6396ef2b-1d7"
Expires: Wed, 14 Dec 2022 10:27:17 GMT
Last-Modified: Mon, 12 Dec 2022 09:06:51 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
fabblog.fabaur.fr/tag/install-php5-fpm/
37.59.37.81200 OK 9.3 kB URL HTTP/1.1 fabblog.fabaur.fr/tag/install-php5-fpm/
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash 1cf00cbe896feb7a22320d79598ec956
71b7de61b12fa1326911983922f5cc31078cf0e9
67118f393975bad92fdde2870962fe3f35690411601da9e94eb81ef7b314ae84
Analyzer Verdict Alert fortinet Malware
GET /tag/install-php5-fpm/ HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:01 GMT
Server: Apache
X-Powered-By: PHP/7.4.29
Link: <https://fabblog.fabaur.fr/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9335
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.148.70.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.70.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IS3ETXqOmCg5GE45u+u5SA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yGsdkwT2C0+rCsJ8H73zCkT+5fk=
fabblog.fabaur.fr/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
37.59.37.81200 OK 4.6 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
IP 37.59.37.81:0
File type ASCII text, with very long lines (10927)
Hash cecddf5ddbcefd9b5e6e2c9ccf2b0f88
47af5b49999884a7baa802269b58844df86adda3
17273e8bdfa2d374b963fda5ed3fff219ee4d53031356c6181430f92aea473e7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/tag/install-php5-fpm/
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 08:07:46 GMT
ETag: "3619-5c03ab55bace8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4619
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700%2C400italic%2C700italic&ver=5.3.14
142.250.74.106200 OK 558 B URL HTTP/1.1 fonts.googleapis.com/css?family=Playfair+Display%3A400%2C700%2C400italic%2C700italic&ver=5.3.14
IP 142.250.74.106:0
Hash de2df5765e9a8a64221d1bef18ff7825
6ba2e1fc90d3b8d134761cc55c21c84a8cf0fe3b
43737a44af8b68628ee3ef39ecab4749dfd0ca4808e78fdec75bc7be7d96a387
GET /css?family=Playfair+Display%3A400%2C700%2C400italic%2C700italic&ver=5.3.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 12 Dec 2022 23:53:02 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.googletagmanager.com/gtag/js?id=UA-23989066-1
142.250.74.40302 Found 254 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-23989066-1
IP 142.250.74.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6604315a5db0c9f479ac29e77bbae879
8ad35136ee06e9a4f51a2a471acc466202e9d446
af595460659b5628548a31159da986f5b8f4eb32f5737a60c939d0fabc39bb29
GET /gtag/js?id=UA-23989066-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-23989066-1
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 12 Dec 2022 23:53:02 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 254
X-XSS-Protection: 0
fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C400%2C600&ver=5.3.14
142.250.74.106200 OK 793 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C400%2C600&ver=5.3.14
IP 142.250.74.106:0
Hash 3be10990d1770aec06fee413a9e5dd66
7a75e9880ecf6e89390cedcee4d7a389d715f62f
6f5f18dd805567d113b72241567e80f86fb6ac23ddf10c6d89307e3725387116
GET /css?family=Open+Sans%3A400italic%2C600italic%2C400%2C600&ver=5.3.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 12 Dec 2022 23:53:02 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a83a4cc3c4c1e3d3791315fafe7e7a8
1cc93a806d3355343eb10428ca8016b49b7a3bd7
570858d720a6e74f035b4122c669579905c540a3969ba4753048e7c8fd619644
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "570858D720A6E74F035B4122C669579905C540A3969BA4753048E7C8FD619644"
Last-Modified: Mon, 12 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Tue, 13 Dec 2022 05:52:16 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a83a4cc3c4c1e3d3791315fafe7e7a8
1cc93a806d3355343eb10428ca8016b49b7a3bd7
570858d720a6e74f035b4122c669579905c540a3969ba4753048e7c8fd619644
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "570858D720A6E74F035B4122C669579905C540A3969BA4753048E7C8FD619644"
Last-Modified: Mon, 12 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Tue, 13 Dec 2022 05:52:16 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Connection: keep-alive
fabblog.fabaur.fr/wp-content/themes/oblique/bootstrap/css/bootstrap.min.css?ver=1
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/bootstrap/css/bootstrap.min.css?ver=1
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/bootstrap/css/bootstrap.min.css?ver=1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.4.2
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.4.2
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=5.4.2 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a83a4cc3c4c1e3d3791315fafe7e7a8
1cc93a806d3355343eb10428ca8016b49b7a3bd7
570858d720a6e74f035b4122c669579905c540a3969ba4753048e7c8fd619644
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "570858D720A6E74F035B4122C669579905C540A3969BA4753048E7C8FD619644"
Last-Modified: Mon, 12 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Tue, 13 Dec 2022 05:52:45 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Connection: keep-alive
fabblog.fabaur.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
37.59.37.81200 OK 4.0 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 37.59.37.81:0
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Fri, 20 May 2016 04:11:28 GMT
ETag: "2748-5333e48ec7c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.1.0
37.59.37.81200 OK 3.2 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.1.0
IP 37.59.37.81:0
File type ASCII text, with very long lines (1959)
Hash c4b8e5c2b917b59c323732bcaac501ae
4a1036d019065219f65fdd075905f377a4395c64
bcb58ba5a5f106d2352b99d6dd649330c936c71d486f5e545ec1a8e128e12e63
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.1.0 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 08:09:26 GMT
ETag: "2e45-5d9b07fdeb963-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3221
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a83a4cc3c4c1e3d3791315fafe7e7a8
1cc93a806d3355343eb10428ca8016b49b7a3bd7
570858d720a6e74f035b4122c669579905c540a3969ba4753048e7c8fd619644
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "570858D720A6E74F035B4122C669579905C540A3969BA4753048E7C8FD619644"
Last-Modified: Mon, 12 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Dec 2022 05:53:02 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Connection: keep-alive
fabblog.fabaur.fr/wp-content/plugins/wp-downloadmanager/download-css.css?ver=1.68.5
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/wp-downloadmanager/download-css.css?ver=1.68.5
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-downloadmanager/download-css.css?ver=1.68.5 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1
37.59.37.81200 OK 1.9 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1
IP 37.59.37.81:0
File type ASCII text, with very long lines (7353), with CRLF line terminators
Hash ac9240a52b4633cf8f04db62edd03b6b
0fb08636a752300aa53770d71252873c01a9a054
f3ba50ae08d8c28b23de004b229e7dfcca9cb5fbf01aa7c684d8fd0013438764
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sat, 01 May 2021 05:58:07 GMT
ETag: "1d5b-5c13e69984c5f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1938
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.4.2
37.59.37.81200 OK 1.4 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.4.2
IP 37.59.37.81:0
File type HTML document, ASCII text, with very long lines (566), with CRLF line terminators
Hash 16d47ec5e87fe75cab115fe4e2b90df1
e75774f529c31adeb1c96ce614e5cb58623d52dd
c0cda9c2049423330c8ae2fd7e144b558855d50a7ba92c06b967f76cc64f67d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=5.4.2 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 08:10:20 GMT
ETag: "bc3-5d9b0831f29ce-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1375
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 23:53:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fabblog.fabaur.fr/wp-content/themes/oblique/fonts/fontawesome-all.min.css?ver=5.0.9
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/fonts/fontawesome-all.min.css?ver=5.0.9
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/fonts/fontawesome-all.min.css?ver=5.0.9 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
37.59.37.81200 OK 34 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 37.59.37.81:0
File type ASCII text, with very long lines (31997)
Hash acf54950dfb2d6981e941d733b377591
340de686aecd9e6246a32c71e7de63ed69229ceb
d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 02:25:54 GMT
ETag: "17a69-5890c1a18d080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a89f333e6ded007b77736bd09da6f726
1cd4808f6aafcdf2212a9a1a79c24483556ca2ac
a1844a1084846563625bd9f61491f544438255ba73a45dfc85f3200bf91ab9b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1844A1084846563625BD9F61491F544438255BA73A45DFC85F3200BF91AB9B7"
Last-Modified: Mon, 12 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Tue, 13 Dec 2022 05:52:27 GMT
Date: Mon, 12 Dec 2022 23:53:02 GMT
Connection: keep-alive
fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/imagesloaded.pkgd.min.js?ver=1
37.59.37.81200 OK 2.4 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/imagesloaded.pkgd.min.js?ver=1
IP 37.59.37.81:0
File type ASCII text, with very long lines (6832)
Hash dbc33e669a20be9b777bde7bbc8b3d41
a55b4c4cdc8f8bd80271f4362d6d9b761dd3f1a2
e31f7e98dfa73772fe47da219c6f5b273af875896d9c4cd6866facb647728f88
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/vendor/imagesloaded.pkgd.min.js?ver=1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "1b25-5c0389680eee5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2352
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-includes/js/imagesloaded.min.js?ver=3.2.0
37.59.37.81200 OK 2.6 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 37.59.37.81:0
File type ASCII text, with very long lines (7996)
Hash 38b694df325f3d381d4d839d33cfb59c
82c4d20653dc93197b17e84a7b1274dac4f49588
e220e69ff51b9e853e6206a7d3204c8129e175141f5dd4e93e67a72fefdaa3b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 07:56:00 GMT
ETag: "1fb1-5c03a8b43b2e8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2551
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/themes/oblique/js/scripts.js?ver=1
37.59.37.81200 OK 381 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/scripts.js?ver=1
IP 37.59.37.81:0
Hash 711f14e57ad64e8e16d734cbb70789ed
63e30323e786a44be1d4cda372140c294e881fc2
9baf31f76a9b2184371c64663b5e8454227ff46b60b4caecca84dd06d91afa17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/scripts.js?ver=1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "348-5c0389680e32d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 381
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-includes/js/masonry.min.js?ver=3.3.2
37.59.37.81200 OK 8.5 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/masonry.min.js?ver=3.3.2
IP 37.59.37.81:0
File type ASCII text, with very long lines (28817)
Hash e76ffbc29190aeddad010bc434d36230
5d0ca611203c41695823f1e05786eea71d7bb424
0c92502affb7302571dbf04db8aea83dace8c130dadfcbeed169f406e4c42f28
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 07:56:00 GMT
ETag: "7119-5c03a8b43b6d0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8524
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/themes/oblique/style.css?ver=2.0.11
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/style.css?ver=2.0.11
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
GET /wp-content/themes/oblique/style.css?ver=2.0.11 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/masonry-init.js?ver=1
37.59.37.81200 OK 998 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/masonry-init.js?ver=1
IP 37.59.37.81:0
Hash 10c33338cd3c01c5e20da051d3e8655e
03775bd509d40dbf54b4d0ace14a79312dbc0d2a
e4177065f99b1c3cd1aa8f448df168568b27de5a9b21e1638eb954aa9646ef6b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/vendor/masonry-init.js?ver=1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "94b-5c03896811dc4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 998
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
37.59.37.81200 OK 330 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
IP 37.59.37.81:0
File type ASCII text, with CRLF line terminators
Hash ee15b925f136014f4c8e9b5a5eed06b1
a2e987e94941e875ef57fb35208d31744cb55955
ee909102fb9f079a1dca03a0a5d890f2e6682e45aa55189334e0190a79cb995d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sat, 01 May 2021 05:58:07 GMT
ETag: "2d6-5c13e69985047-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 330
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/plugins/related-posts/static/themes/momma.css?version=3.6
37.59.37.81403 Forbidden 199 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/related-posts/static/themes/momma.css?version=3.6
IP 37.59.37.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb8f534fbff5ee61a95af9c4740ae043
832e403d42aac1fec93e4f602338544d3fd2e4f1
5b13fb5957b84ef7bb9d0b6cd509c947ff6a37d67efdac2b896ddd3b908aad10
GET /wp-content/plugins/related-posts/static/themes/momma.css?version=3.6 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Content-Length: 199
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fabblog.fabaur.fr/wp-content/plugins/wordpress-seo-premium/assets/js/jquory.js?ver=5.3.14
37.59.37.81200 OK 163 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/plugins/wordpress-seo-premium/assets/js/jquory.js?ver=5.3.14
IP 37.59.37.81:0
Hash 3a5756c26f44858c089a3fa92d5e2264
1d6b14c4ae46cdb6261c8571e6864414faabf76a
c05506eba48c419f9d57f8633931f880d6679051d052d2193bfa56ca610b0153
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wordpress-seo-premium/assets/js/jquory.js?ver=5.3.14 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:47 GMT
ETag: "9f-5c03895ce69a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 163
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/themes/oblique/js/navigation.js?ver=20120206
37.59.37.81200 OK 438 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/navigation.js?ver=20120206
IP 37.59.37.81:0
Hash fc5c38525941160675e0ef9d8ca5ad9d
98d717f655f89f1af5b2090992a0f20c75ef8e8f
9e7a3889ce6aa13da2c20f66b2747d897ea0437d682aa5266b0caf73ab03d423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/navigation.js?ver=20120206 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "453-5c0389680e32d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 438
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/main.js?ver=5.3.14
37.59.37.81200 OK 3.2 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/vendor/main.js?ver=5.3.14
IP 37.59.37.81:0
File type ASCII text, with very long lines (6129)
Hash c425ea570a865e64a0d4fa407035eda9
5f3d7a49a9d15b94386fad701b5947925d19e25b
025cd6697fd4d3c9a19a5f750b4631e4a439126427dfed3df7cf2d8f7f021341
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/vendor/main.js?ver=5.3.14 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "22da-5c038968119dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3234
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-content/themes/oblique/js/skip-link-focus-fix.js?ver=20130115
37.59.37.81200 OK 379 B URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/js/skip-link-focus-fix.js?ver=20130115
IP 37.59.37.81:0
Hash b1f6fbeb350edd1c0abe2caa7940fa93
a5e1adadf006f39bc28e401d2f2317d9c8ca9217
df972baac69f7bb098b9e79ae1c183643d9bc71733c650b9be434bc8788f0de8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oblique/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "2ef-5c0389680e715-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 379
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fabblog.fabaur.fr/wp-includes/js/wp-embed.min.js?ver=5.3.14
37.59.37.81200 OK 739 B URL HTTP/1.1 fabblog.fabaur.fr/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP 37.59.37.81:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:02 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 08:07:46 GMT
ETag: "56f-5c03ab55ba900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.googletagmanager.com/gtag/js?id=UA-23989066-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-23989066-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 4d0fbf8bd28ad991a1db2298ff9986fd
30be9f8df964f1c483211036460c5901e47250b7
f1528ca9cb0e0107c027ceacbbd4c5a5c3673208bfa5a92d9a2ac8c397a43360
GET /gtag/js?id=UA-23989066-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://fabblog.fabaur.fr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Dec 2022 23:53:02 GMT
expires: Mon, 12 Dec 2022 23:53:02 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43653
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 23:53:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fabblog.fabaur.fr/wp-content/uploads/2015/05/cropped-3D-5-background-1-192x192.jpg
37.59.37.81200 OK 6.9 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/uploads/2015/05/cropped-3D-5-background-1-192x192.jpg
IP 37.59.37.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 192x192, components 3\012- data
Hash 5e9db02f206002154c3e7b2dacef0560
4d6ceaed9783e10a39c13bb59e6178ea02f2f0b0
92d16fe4bb7d6d6565963e78fcb71ba08042aebf085897238d2ef468befc8a00
GET /wp-content/uploads/2015/05/cropped-3D-5-background-1-192x192.jpg HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:03 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:36:20 GMT
ETag: "1b13-5c03897cadcf2"
Accept-Ranges: bytes
Content-Length: 6931
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
fabblog.fabaur.fr/wp-content/uploads/2015/05/cropped-3D-5-background-1-32x32.jpg
37.59.37.81200 OK 1.1 kB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/uploads/2015/05/cropped-3D-5-background-1-32x32.jpg
IP 37.59.37.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 32x32, components 3\012- data
Hash 71f1e676b98db026ed6893b43880cefd
7af47a5c51a44f0bdebadcc507dddb6559f628fc
1e0a10081df843265a33842e0cd89383fc823f0904a883da56a2355a821a6adf
GET /wp-content/uploads/2015/05/cropped-3D-5-background-1-32x32.jpg HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:03 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:36:20 GMT
ETag: "41b-5c03897caec91"
Accept-Ranges: bytes
Content-Length: 1051
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Mon, 12 Dec 2022 23:06:05 GMT
Expires: Tue, 13 Dec 2022 01:06:05 GMT
Cache-Control: public, max-age=7200
Age: 2818
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 12 Dec 2022 22:41:08 GMT
expires: Tue, 13 Dec 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 4315
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1721874707&t=pageview&_s=1&dl=http%3A%2F%2Ffabblog.fabaur.fr%2Ftag%2Finstall-php5-fpm%2F&ul=en-us&de=UTF-8&dt=install%20php5-fpm%20Archives%20-%20Le%20monde%20informatique%20de%20linux&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=33642934.1766368408.1670889181.1670889181.1670889181.1&_utmz=33642934.1670889181.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1670889181580&_u=YQBCAUABAAAAACAAI~&jid=781773723&gjid=1579403968&cid=1766368408.1670889181&tid=UA-23989066-1&_gid=2010294688.1670889182&_r=1>m=2oubu0&did=dNDMyYj&gdid=dNDMyYj&z=1734254203
142.250.74.110200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1721874707&t=pageview&_s=1&dl=http%3A%2F%2Ffabblog.fabaur.fr%2Ftag%2Finstall-php5-fpm%2F&ul=en-us&de=UTF-8&dt=install%20php5-fpm%20Archives%20-%20Le%20monde%20informatique%20de%20linux&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=33642934.1766368408.1670889181.1670889181.1670889181.1&_utmz=33642934.1670889181.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1670889181580&_u=YQBCAUABAAAAACAAI~&jid=781773723&gjid=1579403968&cid=1766368408.1670889181&tid=UA-23989066-1&_gid=2010294688.1670889182&_r=1>m=2oubu0&did=dNDMyYj&gdid=dNDMyYj&z=1734254203
IP 142.250.74.110:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1721874707&t=pageview&_s=1&dl=http%3A%2F%2Ffabblog.fabaur.fr%2Ftag%2Finstall-php5-fpm%2F&ul=en-us&de=UTF-8&dt=install%20php5-fpm%20Archives%20-%20Le%20monde%20informatique%20de%20linux&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=33642934.1766368408.1670889181.1670889181.1670889181.1&_utmz=33642934.1670889181.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1670889181580&_u=YQBCAUABAAAAACAAI~&jid=781773723&gjid=1579403968&cid=1766368408.1670889181&tid=UA-23989066-1&_gid=2010294688.1670889182&_r=1>m=2oubu0&did=dNDMyYj&gdid=dNDMyYj&z=1734254203 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://fabblog.fabaur.fr
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://fabblog.fabaur.fr
date: Mon, 12 Dec 2022 23:53:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7a3e13e78f90788c56a93f7ffd9be884
bb6e2205661434f2eb8964f59b8f0d950c11ba0d
48f33f6b844a6e9f9087e6ce54394c6af9ded4d02b4d9ba18a9fb711eb180b2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48F33F6B844A6E9F9087E6CE54394C6AF9DED4D02B4D9BA18A9FB711EB180B2C"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3887
Expires: Tue, 13 Dec 2022 00:57:50 GMT
Date: Mon, 12 Dec 2022 23:53:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7a3e13e78f90788c56a93f7ffd9be884
bb6e2205661434f2eb8964f59b8f0d950c11ba0d
48f33f6b844a6e9f9087e6ce54394c6af9ded4d02b4d9ba18a9fb711eb180b2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48F33F6B844A6E9F9087E6CE54394C6AF9DED4D02B4D9BA18A9FB711EB180B2C"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3887
Expires: Tue, 13 Dec 2022 00:57:50 GMT
Date: Mon, 12 Dec 2022 23:53:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: viqtSt0N4FbMvP-u-vlA4Y8SfzIafFu_4XhqXSKrbItp7gkJDp5PKA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 22:36:04 GMT
age: 4619
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49639c2a-f62e-4eec-a346-05935502ced7.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49639c2a-f62e-4eec-a346-05935502ced7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb63d486e856a5162fc007e35650f9
4e680af868de5455a92cbdca385c2354180d2393
9e4884c5253d20517864695b00986c7c0a60d259b753960dbdbb052252d8e71d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49639c2a-f62e-4eec-a346-05935502ced7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5694
x-amzn-requestid: dad1a1d7-3a20-4e03-a9ec-9d5961066101
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c9jkiEYXoAMF9JQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63954c83-5c52422a4e53d4200be89102;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 03:20:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: huVQ44p6j4frr0QE7wRbdhZSmFWUXZuwCRj9uQ8DDeya-6_xzZ6HMA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 08:23:08 GMT
age: 55795
etag: "4e680af868de5455a92cbdca385c2354180d2393"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8b0477fb90d103e2155bbf7ab47d877
ab668e755bd742b165fa3ba46a4c486c616a7ff6
40e2282cf64da6034f73a2ff0c0d060550caa364244d5bdf282d2f54719d48ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4703
x-amzn-requestid: 975cb427-5feb-4c36-bcfe-bed0cc9bd3b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czpW4Hh4IAMFeRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639155c5-63d6d97371f11d6012edae68;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 03:11:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BouIqIrg_vfxBH0weDXiqoEBcSV8_d4qDVB3Er5PeIrZz249iHdqGQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 08:18:10 GMT
age: 56093
etag: "ab668e755bd742b165fa3ba46a4c486c616a7ff6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fabblog.fabaur.fr/wp-content/themes/oblique/images/header.jpg
37.59.37.81200 OK 1.9 MB URL HTTP/1.1 fabblog.fabaur.fr/wp-content/themes/oblique/images/header.jpg
IP 37.59.37.81:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Signature:e8da9c4776e73b0ea17086677d34e0cf40ed7aa46eb594b5b1f0b8d6818b18fe", baseline, precision 8, 1870x1870, components 3\012- data
Size 1.9 MB (1931858 bytes)
Hash 7dfa261e8c69eea05e2616fd19a70c10
19517b38bd0d5b615ab9fbc1a9b984303594c430
78688e68600b3fb9c02d63168056e667f1117bdec21bc6f5f3d124f6537dcf49
GET /wp-content/themes/oblique/images/header.jpg HTTP/1.1
Host: fabblog.fabaur.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://fabblog.fabaur.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 23:53:03 GMT
Server: Apache
Last-Modified: Sun, 18 Apr 2021 05:35:59 GMT
ETag: "1d7a52-5c03896801426"
Accept-Ranges: bytes
Content-Length: 1931858
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703d359edb819eaefc6ccae224bbde15
4b8d7b5ff7cf1333bd0019b2d72cf2aadef6caf8
0452d24052bef979fd13f1a0fefb4c7803ff91c5afa3c871f85b73eb08f15489
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12144
x-amzn-requestid: 0d00ec22-808c-4f60-98b1-87eef4aad829
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6n0yFORIAMFskA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394201e-58f1a5c87fc341bf56fa9d68;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 05:58:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sW4dQXExyH6JvbdtSgIPJUiifHh-VfbfcG5hKMaJ4tZA3pO-fobF6w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 04:10:33 GMT
age: 70950
etag: "4b8d7b5ff7cf1333bd0019b2d72cf2aadef6caf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a14c22-5022-4263-af44-d51914a825ed.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a14c22-5022-4263-af44-d51914a825ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82729f01d4f9937407d14605a2b611f4
63ef739dbbcd1238da788c05909df21826d9f37b
4420ac61a207ef4d7899632123af2dd2c7421e6d16a494aea33383d37d603038
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5a14c22-5022-4263-af44-d51914a825ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5871
x-amzn-requestid: 0c5fa60d-81f3-4796-966d-cf91b6a28939
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDWefGstIAMF-zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63979df6-7234498f4094f61107741d1c;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 21:32:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f6d2A_b3AN_-g7QFNmtlMhjEitZ4fw9GX5w-xx1PxH-z_FdqjvabTQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 21:57:41 GMT
age: 6922
etag: "63ef739dbbcd1238da788c05909df21826d9f37b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e88e06c-7fb5-447c-ab5f-a3075c4318c1.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e88e06c-7fb5-447c-ab5f-a3075c4318c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a155e8441280437a2293c7838ee085c1
f70e9e62d07733784b37e050b163ee7fdc17ce99
8cfa8d89af71d36df36c480a5228d3822cc5b5a0c2d373997d30144b4a979618
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e88e06c-7fb5-447c-ab5f-a3075c4318c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4453
x-amzn-requestid: fe6af59f-8c78-40e6-bf15-2aeab0c1da0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6jXkEjZoAMFctw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639418fd-345602320306063952b95a35;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 05:28:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z07j2G00tK9aq33axqsJWvZ8EkyPtkvpZPmVhFfjYc2P6fKMKP05Rw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 12:14:53 GMT
age: 41890
etag: "f70e9e62d07733784b37e050b163ee7fdc17ce99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ddf7ef-9059-4300-b92b-6b64110b9f4b.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ddf7ef-9059-4300-b92b-6b64110b9f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03525c945d7fcd4de779966e9d277367
c75644ea5fab717e647c05c7c340fe2aa86b9d7f
0b08dfa33a04022a59c1c45c17bba376f70efa63a0e6d2eb144f8392546a837f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ddf7ef-9059-4300-b92b-6b64110b9f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5293
x-amzn-requestid: d9b060f7-f8b5-4805-9e2b-7a70f812aaf2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3fMoGSWoAMFhuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392df1d-6c70207260dac72c5ac3dceb;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:09:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2xXYeY_xNHogFC1E9gIXobGFdovRSl0yqOaVoh2L52j6xxT-78OD_A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 10:18:12 GMT
age: 48898
etag: "c75644ea5fab717e647c05c7c340fe2aa86b9d7f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2