r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e051e6e01b12b9ad6e0014603f93431a
ada9efe77054d8593f2687fb3a7eada8908ef7e8
c41be8ffe176ca674efb0588164fdfd237754c6b5b461f8f46387b96ae7d6090
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41BE8FFE176CA674EFB0588164FDFD237754C6B5B461F8F46387B96AE7D6090"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6766
Expires: Sat, 04 Feb 2023 11:36:03 GMT
Date: Sat, 04 Feb 2023 09:43:17 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4996
Expires: Sat, 04 Feb 2023 11:06:33 GMT
Date: Sat, 04 Feb 2023 09:43:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 09:36:14 GMT
content-type: application/json
age: 423
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15857
Expires: Sat, 04 Feb 2023 14:07:35 GMT
Date: Sat, 04 Feb 2023 09:43:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: u/ny5diOaqwMyRrDwygqI76qoJHU+kHaZvj+7PqlD3G8kArQGWYmA0vfpeWt+Agn3fFEnoewRic=
x-amz-request-id: G4Q5KH2VQCH2WC9R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 08:52:46 GMT
age: 3032
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 09:43:18 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 08:49:07 GMT
age: 3251
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5105
Expires: Sat, 04 Feb 2023 11:08:23 GMT
Date: Sat, 04 Feb 2023 09:43:18 GMT
Connection: keep-alive
gprojet.com/appdemo/GestionRevisionPrix.rar
162.19.131.42301 Moved Permanently 0 B URL HTTP/1.1 gprojet.com/appdemo/GestionRevisionPrix.rar
IP 162.19.131.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /appdemo/GestionRevisionPrix.rar HTTP/1.1
Host: gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 09:43:18 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
x-powered-by: PHP/8.1.13
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
x-turbo-charged-by: LiteSpeed
push.services.mozilla.com/
52.34.56.119101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.56.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m6L2WeDFIwBuqbr5H/dC/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6CXTPzNIahpmS599EKvZw1A5QYI=
www.gprojet.com/appdemo/GestionRevisionPrix.rar
162.19.131.42404 Not Found 39 kB URL HTTP/1.1 www.gprojet.com/appdemo/GestionRevisionPrix.rar
IP 162.19.131.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 6cb7ce044bfe9fa25770e4db07524d2a
2372361ada76bab1996c2a3a8ff77142555819e6
3630d5250837c3eaddae688f53e2fd926cce4baf0ccd14d4acca2710ae0dd513
Analyzer Verdict Alert fortinet Phishing
GET /appdemo/GestionRevisionPrix.rar HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/8.1.13
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.gprojet.com/wp-json/>; rel="https://api.w.org/"
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-includes/css/classic-themes.min.css?ver=1
162.19.131.42200 OK 217 B URL HTTP/1.1 www.gprojet.com/gprojet/wp-includes/css/classic-themes.min.css?ver=1
IP 162.19.131.42:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /gprojet/wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:32:44 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
fonts.googleapis.com/css?family=Poppins%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
142.250.74.74200 OK 744 B URL HTTP/1.1 fonts.googleapis.com/css?family=Poppins%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
IP 142.250.74.74:0
Hash d67fff9e7c6fbbed4df2c5a0f40a5fd2
11fb35701b9262651da496e3ff8ed7fc5e46d639
a49d821dd5324f8a8d9c5e3341a15fd1f517432b405ceb5c0e7964b932fb850a
GET /css?family=Poppins%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 09:43:19 GMT
Date: Sat, 04 Feb 2023 09:43:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3
162.19.131.42200 OK 2.8 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3
IP 162.19.131.42:0
Hash 443a0083792b1ca61e8116184cb5901e
03c1b038741f1e9e75d3d7b006d6e3b2744e0b85
9a38595d63dfae35b88183515b69f8b742128b564b9ea4dbd79908c3aa73921a
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 2803
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:08:06 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.1.1
162.19.131.42200 OK 29 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (28900), with CRLF line terminators
Hash fea395db9a5c8eaba924d98161324597
3c1d63dd1176c77f9f4cdb1616fbb08c31b9822f
ed0f05101d480726c58bcd4956a1e7b02f12b538d02058f1b0ebfdabe8a7ef42
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 29067
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/editor-style.css?ver=6.1.1
162.19.131.42200 OK 4.3 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/editor-style.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 72ab3f230906550fb000f7f2a963d4d6
4dd0c031c9fdcfa8820bccde1c9949e324105e7d
f126156ea31c8be49fd89eb93cb724525c88abfb01ef148ccba97e827225d8b1
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/editor-style.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 4265
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
162.19.131.42200 OK 19 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /gprojet/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: application/javascript
Content-Length: 18617
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:32:26 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/widgets.css?ver=6.1.1
162.19.131.42200 OK 40 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/widgets.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash cd0bf0ed2e572305889faf81feb9f83d
39e2b5dc78b0ab18260d770f0498be7206895f81
6bcdfc9377eb4acf4f7e7adc35c094f5b172e7d00ef15be16b07debaad6b1839
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 39844
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
162.19.131.42200 OK 95 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 94889
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:32:46 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/theme.css?ver=6.1.1
162.19.131.42200 OK 34 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/theme.css?ver=6.1.1
IP 162.19.131.42:0
File type Unicode text, UTF-8 text, with very long lines (358), with CRLF line terminators
Hash 286c88164f69218c4246b18b12d7726b
ad4c4c0a6009402a94942617dea55b64bb02fe2d
6a0d65a661920e63220448a2e9d42d8b96ed61cad06301a7cbbae67d894e168a
GET /gprojet/wp-content/themes/avril/assets/css/theme.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 34388
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/responsive.css?ver=6.1.1
162.19.131.42200 OK 10 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/responsive.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 015c168f6ae12e50ab3037a6d204bb18
0dc3f93784058af8402ba0e2a5a07ceaae0064ac
d1486f4647911e2f4ae746609d29c41179197a45272a6485d72dd694c47fb1fe
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 10338
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/aviser/style.css?ver=6.1.1
162.19.131.42200 OK 6.7 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/aviser/style.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (337)
Hash 9f7b4e81a820e30e1f5c45e20c4caeb0
faff2edbcbb555b83a8fa2be39792bb255b59574
8ca06c87334570a209972bb1aa8aefbc952c68d7f2643b8a149a6b5cc8e34d89
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/aviser/style.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 6738
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:22:23 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/css/animate.css?ver=6.1.1
162.19.131.42200 OK 25 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/css/animate.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 1c7ad0a97d2dc2da70b8d855ae946cae
7f3596852663437b7f89231cc750628a0d86e403
cb09ab0572c6a6549a782e2843218c00285cb737ae50fe29a5061ca96aff0234
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/clever-fox//inc/assets/css/animate.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 25427
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:07:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/css/owl.carousel.min.css?ver=6.1.1
162.19.131.42200 OK 2.9 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/css/owl.carousel.min.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (2846), with CRLF line terminators
Hash 11f8f55299612003d16158106d01f2f0
78bead4cb5ce15f16b6554065404a01df5f67325
8608c63311f463ed5cb19febda4aaedc756eba9516c345375e5a7e56ec67a46e
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/clever-fox//inc/assets/css/owl.carousel.min.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 2941
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:07:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/menu.css?ver=6.1.1
162.19.131.42200 OK 51 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/menu.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 3eccb33cd225b9f4b9708e066863cb57
ca246a5d658b80769d19311711d8ad5e45531e1e
719c549a22d961ca4bdb412d47fb788685d540a5cca944025bc4277ed6de573b
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/menu.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 50824
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/aviser/assets/css/color/default.css?ver=6.1.1
162.19.131.42200 OK 1.6 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/aviser/assets/css/color/default.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash a506cde47fbd47573eb1b620d8ba92f6
db0e4a17bbaac961544383a12f324d03ac5bc594
0c0b6290e3673489339b1773190b45b967a57ae8653aa17acde192386c68f54b
GET /gprojet/wp-content/themes/aviser/assets/css/color/default.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 1646
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:22:23 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/aviser/assets/css/responsive.css?ver=6.1.1
162.19.131.42200 OK 12 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/aviser/assets/css/responsive.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 10df45749730d0b22cd335c6b7572d3c
5e28f8be1b61ac61e3638a09a1656a17d70a292a
6a58c538afe2cba7cccf1dc171e0d3154b6100d7643339e8c3aeed6be306362f
GET /gprojet/wp-content/themes/aviser/assets/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 11613
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:22:23 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/style.css?ver=6.1.1
162.19.131.42200 OK 1.1 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/style.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (337)
Hash 04da6182c5b39f36434c43d729f3ba21
d4b5a1b090583caea38b71ac1031bdb96611fcc1
51ad328fd13dfbd24fb81b640846225d8fb6f757e25eeb1cd051821542461197
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/style.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 1085
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/main.css?ver=6.1.1
162.19.131.42200 OK 57 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/main.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with CRLF line terminators
Hash 3f52c8c6119cabf4ce7d29eaa400a3b4
54debc34ad6a207b6e53eef762ff9db6753baa8e
a952f815776b23340af07663ec626ade5e7ff373358cbad89503143ae0963c2f
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/main.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: text/css
Content-Length: 56670
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.19.131.42200 OK 11 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.19.131.42:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 11224
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:32:30 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
162.19.131.42200 OK 90 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /gprojet/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:19 GMT
Content-Type: application/javascript
Content-Length: 89684
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:19 GMT
last-modified: Wed, 01 Feb 2023 18:32:30 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/owl.theme.default.min.css?ver=6.1.1
162.19.131.42200 OK 1.0 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/owl.theme.default.min.css?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (846)
Hash 594b81805a98b267e47c70a8fad30d9f
684d84ec40b305ca14efc88c91f12972cb6342b4
924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/owl.theme.default.min.css?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: text/css
Content-Length: 1013
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3
162.19.131.42200 OK 11 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3
IP 162.19.131.42:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7f0734e228d3f1a255a8b817a5005b8e
3dfca70a7a3e298fc392f2393ca60d350eebb5fd
23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 10565
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Wed, 01 Feb 2023 18:08:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3
162.19.131.42200 OK 13 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3
IP 162.19.131.42:0
File type HTML document, ASCII text, with very long lines (12761), with no line terminators
Hash c324038c8d6cd7e9990ff50520625008
a707f321bad9f20c442b776efa6812c8acadb8c0
af0f96462799a9eccfa6c5a30819ea991f9c0c4eddaa2984a638dc473c03ce2f
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 12761
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Wed, 01 Feb 2023 18:08:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/js/wow.min.js?ver=6.1.1
162.19.131.42200 OK 8.2 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/js/wow.min.js?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (8099), with CRLF line terminators
Hash e263d779149b46afc0884630bf3b3d3a
f04d338725852cd20e7da26b9a5b5ee4334c0ee7
3bf4c24fe7b2a3b36150a1e9026dc01e8ce3e1b83cf211f9a20c25bc1c1851de
GET /gprojet/wp-content/themes/avril/assets/js/wow.min.js?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 8184
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/js/jquery.counterup.min.js?ver=6.1.1
162.19.131.42200 OK 10 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/clever-fox//inc/assets/js/jquery.counterup.min.js?ver=6.1.1
IP 162.19.131.42:0
File type Unicode text, UTF-8 text, with very long lines (8668), with CRLF line terminators
Hash cfa49d85f5b82642670ec97fd143ac25
6fd20a4c8cfde0497ca51f82488dddaf3f19a49d
926a417c57aee60b85967b1f8ae863af661c68f1989352ad34ad57c4ae0a807f
GET /gprojet/wp-content/plugins/clever-fox//inc/assets/js/jquery.counterup.min.js?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 10401
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Wed, 01 Feb 2023 18:07:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/plugins/clever-fox/inc/assets/js/owl.carousel.min.js?ver=6.1.1
162.19.131.42200 OK 46 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/plugins/clever-fox/inc/assets/js/owl.carousel.min.js?ver=6.1.1
IP 162.19.131.42:0
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash df2f0f8db5aaef2a65244c75951f0e47
4a3da1d5aae20c7253b5a8ea2e8670a0cbceda5f
35bd34f327c975517340995bec67041cdd276e817835633b0f262a88fbac43f6
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/plugins/clever-fox/inc/assets/js/owl.carousel.min.js?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 46368
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Wed, 01 Feb 2023 18:07:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/js/custom.js?ver=6.1.1
162.19.131.42200 OK 503 B URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/js/custom.js?ver=6.1.1
IP 162.19.131.42:0
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/js/custom.js?ver=6.1.1 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript
Content-Length: 20414
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18885
Expires: Sat, 04 Feb 2023 14:58:05 GMT
Date: Sat, 04 Feb 2023 09:43:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18885
Expires: Sat, 04 Feb 2023 14:58:05 GMT
Date: Sat, 04 Feb 2023 09:43:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 41879
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18885
Expires: Sat, 04 Feb 2023 14:58:05 GMT
Date: Sat, 04 Feb 2023 09:43:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f926cd4f39b1a10b152e5959b28ae29e
2b1982d21321071394e363888e007598e968fb35
a51b246a9aa5a2583cae7fd4f0a3bdf73f0b318b7838828d36ea5674a5f26753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F651be34f-d4ea-4a24-987c-b006e5f9a876.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13309
x-amzn-requestid: f6a3f0f3-d91b-4f4d-8265-0f87742ba5d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyFeBFX4oAMFfpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd82bf-5808ceec265756c702d212dc;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:55:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WWjzs8W8GmSAM0-Uc8XBTxz67RJJCIzp3fBYhkoIWZ26UrobmZV8mw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:14:12 GMT
etag: "2b1982d21321071394e363888e007598e968fb35"
content-type: image/jpeg
age: 41348
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 41856
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45c6a062f8637e689819f505b019dc0e
61665688f1039c4fad848853a68e28d057718ad1
c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 41820
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:43:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 12196
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 41579
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gprojet.com/gprojet/wp-content/themes/avril/assets/images/bg/smile.svg
162.19.131.42200 OK 450 B URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/images/bg/smile.svg
IP 162.19.131.42:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (450), with no line terminators
Hash d818b962152edb6107b68ab063ea0d00
679373c056241c6d6c8d0498ab928698182a1b84
d68a142193285bc487da9195817d0ed0faf341ecad3384687f4ee5d744ee0bbd
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/images/bg/smile.svg HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: image/svg+xml
Content-Length: 450
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
fonts.googleapis.com/css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
142.250.74.74200 OK 1.9 kB URL HTTP/2 fonts.googleapis.com/css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP 142.250.74.74:0
Hash 56dfcf44653957b988938ebb085f6c75
cf55a5cdef7c6f4f8c610b76d07accda0debd398
144c1bbb597dd3cd1afa7480a4e03890a96281341447d03435fbd907d53e9edf
GET /css2?family=Fira+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gprojet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 09:43:20 GMT
date: Sat, 04 Feb 2023 09:43:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.statcounter.com/counter/counter.js
104.20.218.77200 OK 14 kB URL HTTP/1.1 www.statcounter.com/counter/counter.js
IP 104.20.218.77:0
File type ASCII text, with very long lines (43632), with no line terminators
Hash ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Feb 2023 17:02:50 GMT
ETag: W/"aa70-5f3cea6cef338"
Cache-Control: max-age=43200
Expires: Sat, 04 Feb 2023 11:58:04 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 35116
Server: cloudflare
CF-RAY: 7942761f8859b4f3-OSL
www.gprojet.com/gprojet/wp-content/themes/avril/assets/images/bg/breadcrumbg.jpg
162.19.131.42200 OK 41 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/images/bg/breadcrumbg.jpg
IP 162.19.131.42:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x300, components 3\012- data
Hash 92172af91b89dfd84851a81a32c1c048
479872aa9b011c3b4b49637034aaa42f92a2a5a3
f5c02d6ed49f34aff0aad8f58a3e74beaf7d6df3de2d62beba9032a9145a7cf9
GET /gprojet/wp-content/themes/avril/assets/images/bg/breadcrumbg.jpg HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gprojet.com/appdemo/GestionRevisionPrix.rar
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: image/jpeg
Content-Length: 41005
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:05 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
162.19.131.42200 OK 72 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 162.19.131.42:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Phishing
GET /gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.gprojet.com/gprojet/wp-content/themes/avril/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.1.1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: font/woff2
Content-Length: 71896
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Fri, 28 Oct 2022 10:23:03 GMT
accept-ranges: bytes
x-turbo-charged-by: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:43:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22592, version 1.0\012- data
Hash 4528524c7142b4e2d5c0438763223328
d439d881fd8c4f41e77c2fb07678e53fce3e331a
ea03bd5d723c75f6d0a9419d4f9651afd78ea2a4abfcee7f926cbde0681a2671
GET /s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gprojet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:52:40 GMT
expires: Fri, 02 Feb 2024 00:52:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:51:36 GMT
content-type: font/woff2
age: 204640
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:43:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22316, version 1.0\012- data
Hash d90c9f754a38229355a68e57d560ba62
f10075d6769df2ad5470c441eae3535c40d61acc
be8268fdf5d6791bc737102f1429ecd20a78d58e2a2cea7db1f614aecefc40fb
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnPKreRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gprojet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:06:17 GMT
expires: Fri, 02 Feb 2024 10:06:17 GMT
cache-control: public, max-age=31536000
age: 171423
last-modified: Thu, 21 Apr 2022 17:05:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:43:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23724, version 1.0\012- data
Hash 2ca1253c8e47277b38c02353cdf32102
3cd0373fd1ae7ad8cb62ff8f2200193a7e8977e7
51aa1f55f3d344d82ece24055a31012cf77d10cc4a2f9307f5dea293118d40f1
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gprojet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:14:05 GMT
expires: Fri, 02 Feb 2024 00:14:05 GMT
cache-control: public, max-age=31536000
age: 206955
last-modified: Thu, 21 Apr 2022 16:58:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22760, version 1.0\012- data
Hash d36cf1e01f039283292b186b9c85c883
569131c8375a808d1f6a1ad22786cc6b32ec9820
8a90f9c307d889844f7286c11a9e8596c9a41b2e91123ab49cca0fbaa4b48dc7
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gprojet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:07:30 GMT
expires: Fri, 02 Feb 2024 01:07:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:56:24 GMT
content-type: font/woff2
age: 203750
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 09:43:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 534081bdb8a5a755a6f17781be671463
b12a31429c4e9005ce13cecb636a0aac13aa96cf
05e725b9b5dc088a3d69a81730051bc17ddacf40640ca019e4158fff5aba80ca
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 18:34:09 GMT
Expires: Fri, 10 Feb 2023 18:34:08 GMT
Etag: "b12a31429c4e9005ce13cecb636a0aac13aa96cf"
Cache-Control: max-age=549647,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794276204f9f0b65-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0728a11ef858b9ca053911ca58cdce87
e37623000ae23bd580f05d7c5ab9088e526fb302
a7e796a386f5deae41771b0eda3479b406e8f0d194d6b769826a03bbd6f23b7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7E796A386F5DEAE41771B0EDA3479B406E8F0D194D6B769826A03BBD6F23B7E"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21525
Expires: Sat, 04 Feb 2023 15:42:05 GMT
Date: Sat, 04 Feb 2023 09:43:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0728a11ef858b9ca053911ca58cdce87
e37623000ae23bd580f05d7c5ab9088e526fb302
a7e796a386f5deae41771b0eda3479b406e8f0d194d6b769826a03bbd6f23b7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7E796A386F5DEAE41771B0EDA3479B406E8F0D194D6B769826A03BBD6F23B7E"
Last-Modified: Sat, 04 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21525
Expires: Sat, 04 Feb 2023 15:42:05 GMT
Date: Sat, 04 Feb 2023 09:43:20 GMT
Connection: keep-alive
www.gprojet.com/gprojet/wp-content/uploads/2022/06/Project_2010_23616.png
162.19.131.42200 OK 13 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/uploads/2022/06/Project_2010_23616.png
IP 162.19.131.42:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash a7d2cb4321e57bfca06544022c674f80
6a8b7f5060f341b51ff4ec7cfe92e612e6e82faa
f1ae9bd94d5440dff2184114f2c0fd6457c4418e5f2fe4ac23571a03f3def67c
GET /gprojet/wp-content/uploads/2022/06/Project_2010_23616.png HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gprojet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: image/png
Content-Length: 13403
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Thu, 16 Jun 2022 11:24:00 GMT
accept-ranges: bytes
alt-svc: h3=":444"; ma=2592000, h3-29=":444"; ma=2592000, h3-Q050=":444"; ma=2592000, h3-Q046=":444"; ma=2592000, h3-Q043=":444"; ma=2592000, quic=":444"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
www.gprojet.com/gprojet/wp-content/uploads/2022/06/Project_2010_23616-150x150.png
162.19.131.42200 OK 18 kB URL HTTP/1.1 www.gprojet.com/gprojet/wp-content/uploads/2022/06/Project_2010_23616-150x150.png
IP 162.19.131.42:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 43d419c69597ba15ab7e29929a01a370
6f5f92857813ed48933160827033aa291b1983bf
1a3ace6bd2de99d5f78cc7f152028e22fdfc3b27dd077295e774914eda8b2b31
GET /gprojet/wp-content/uploads/2022/06/Project_2010_23616-150x150.png HTTP/1.1
Host: www.gprojet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gprojet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 09:43:20 GMT
Content-Type: image/png
Content-Length: 18360
Connection: keep-alive
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 09:43:20 GMT
last-modified: Thu, 16 Jun 2022 11:24:01 GMT
accept-ranges: bytes
alt-svc: h3=":444"; ma=2592000, h3-29=":444"; ma=2592000, h3-Q050=":444"; ma=2592000, h3-Q046=":444"; ma=2592000, h3-Q043=":444"; ma=2592000, quic=":444"; ma=2592000; v="43,46"
x-turbo-charged-by: LiteSpeed
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bee4ee9542d0c7a9cc8402d60e7cca2
95b8debca975255d2a0a60c5c6dde74040bd2f88
a6c63af682c3d4b11e5af0aa6b72921b8acf72626fb765a60e96d491d2a04c70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: 6006bf4d-0aef-4eec-a73d-70cb8cad5abd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDraGO9oAMFscg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fe2-1df60a735b30e2d41fd3a435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tnqzIXXbcIjPhSnbzsVd2oN_qouQqZqlYGRNOAxlkQgnoI60PHY-CQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:09:44 GMT
age: 41623
etag: "95b8debca975255d2a0a60c5c6dde74040bd2f88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=11203827&u1=46F5626B00D14F0877890E82765819F4&java=1&security=613203e1&sc_snum=1&sess=a8f3c4&sc_rum_e_s=2593&sc_rum_e_e=2599&sc_rum_f_s=0&sc_rum_f_e=2563&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//www.gprojet.com/appdemo/GestionRevisionPrix.rar&t=Page%20non%20trouv%C3%A9e%20%E2%80%93%20GPROJET&get_config=true
104.20.219.77200 OK 0 B URL HTTP/2 c.statcounter.com/t.php?sc_project=11203827&u1=46F5626B00D14F0877890E82765819F4&java=1&security=613203e1&sc_snum=1&sess=a8f3c4&sc_rum_e_s=2593&sc_rum_e_e=2599&sc_rum_f_s=0&sc_rum_f_e=2563&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//www.gprojet.com/appdemo/GestionRevisionPrix.rar&t=Page%20non%20trouv%C3%A9e%20%E2%80%93%20GPROJET&get_config=true
IP 104.20.219.77:0
GET /t.php?sc_project=11203827&u1=46F5626B00D14F0877890E82765819F4&java=1&security=613203e1&sc_snum=1&sess=a8f3c4&sc_rum_e_s=2593&sc_rum_e_e=2599&sc_rum_f_s=0&sc_rum_f_e=2563&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//www.gprojet.com/appdemo/GestionRevisionPrix.rar&t=Page%20non%20trouv%C3%A9e%20%E2%80%93%20GPROJET&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.gprojet.com
Connection: keep-alive
Referer: http://www.gprojet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 09:43:20 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc11203827.1675503800.0; SameSite=None; Secure; Expires=Thursday, 03-Feb-2028 09:43:20 +00; Path=/; Domain=.statcounter.com
is_visitor_unique=1675503800414099905; SameSite=None; Secure; Expires=Monday, 03-Feb-2025 10:43:20 +01; Path=/; Domain=.statcounter.com
access-control-allow-origin: http://www.gprojet.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79427620be3ffac0-OSL
content-encoding: br
X-Firefox-Spdy: h2