Report - coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.

Report Overview

Submitted URL
coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.
IP
146.59.209.152
ASN
#16276 OVH SAS
Submitted
2022-09-23 10:39:29
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	23.36.76.226
coupdepouce.bzh	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	28 kB	487 kB	146.59.209.152
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.89.255.30
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	46 kB	23.36.76.122
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	43 kB	142.250.74.72
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	6.6 kB	142.250.74.106
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	746 B	142.250.74.10
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	482 B	390 B	23.36.76.122
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	467 B	17 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-23	medium	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.	Phishing
2022-09-23	medium	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/fonts/lqd-essentials.woff2	Phishing
2022-09-23	medium	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/hub-core/assets/css/landinghub-core.min.css?ver=6.0.2	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/css/js_composer.min.css?ver=6.6.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/intersection-observer.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fontfaceobserver.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/tinycolor-min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lity/lity.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/particles.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/js/fresco.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lazyload.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/themes/hub/assets/js/theme.min.js	Phishing
2022-09-23	medium	coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (44)

	URL	Size	First Seen	Last Seen
	coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15	129 kB	2023-03-07	2024-04-14
Pretty URL coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-14 17:47:59 Times Seen287 Hash 066a9b9002b3169aea77c1e8ce88bcc9 fa9c1343d254cc21e1aca1d0e0fc04828b7d8d7b 1619041e2f274c7f79e24049e0710c53b99804c7ba4aec758dba1eb6a7166bd9 Loading...

	coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2	34 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-25 16:04:44 Times Seen7245 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	371 B	2023-03-07	2023-03-07
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash ddf5dac2d987ca98819bd60b64ce6a50 012b5357f7b6031483169a8e1516f9ce186f0b3b 90ca11d68c8a83c80b195de04cb246aa01dd871cf00b5a815b5ccd14bb308058 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	201 B	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-02-23 02:28:38 Times Seen13 Hash 08def387460d00d83f209e167e39ad75 45f3ebdac127c9a0fbde8cc50ab824aa3dedf907 286df4f0c8afb68bd45b8baa37aa05d37114e887a5d0f75c4bbe346059c833ba Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	2.2 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-25 04:54:53 Times Seen2094 Hash cc6a0fa7152159e48d38e4d993f4c97d c9a88fa9cc00cedbc0d454a7875cb2503b7b9e24 5cad5dcc261bc6949e544662a54863753a9b7850c764e731da87e9845dbb0bbb Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js	108 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:54 Last Seen2024-02-23 02:28:39 Times Seen104 Hash 8171295b24c321079e6882a82c3e3384 cb80cbebeffc90a8528a9bf79f8dc00df2ab395f 0a7acbdd37b1004f9261c5b60f50848a7ce6107a3c96e8846f93a5256149024e Loading...

	coupdepouce.bzh/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 17:24:34 Times Seen68626 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	332 B	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 15:57:15 Times Seen9159 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	coupdepouce.bzh/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:13 Times Seen15497 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/intersection-observer.js	7.4 kB	2023-03-07	2024-04-05
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/intersection-observer.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-05 16:29:30 Times Seen302 Hash 5a75db2780aa2147fcd751af552271f9 a7c3030ce68f8c82c017c25f1862fe979c0f0675 b0e10ce1b1fa9facaa849e932da5a020688bd397e51bbf9755220092b55dbd38 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lazyload.min.js	8.8 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lazyload.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:54 Last Seen2024-02-23 02:28:39 Times Seen113 Hash 6aded55a45e2cfab8adef3803f5e861e 84c48b38555f16d3f8a626cd28c3ad992691c648 fb4b93a88613ff8c6d946cff82262a3dace626640fa88c23d1ac9baabc2ff4b0 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js	7.2 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-23 02:28:39 Times Seen137 Hash e9082481e5b874f10409cb9ed6168562 c3c5533226e5f8b64e9029257eb0e09e171ab02a 961b635c74efbbf66f8f583eb326a490c898e357dfa53c02e6ea4d261d572042 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/particles.min.js	23 kB	2023-03-07	2023-12-11
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/particles.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2023-12-11 06:09:29 Times Seen68 Hash 1d73844a5a47575bb8e828624bad7b63 5ad2a36cbe283489d1b0b028508170b8745383b4 114a972f5200cb90695e2e938032d5fa8270bbd3be0b8136c32a85bc3465a03e Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js	36 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:54 Last Seen2024-02-23 02:28:39 Times Seen161 Hash 77f357869a6f64c261fa009e45698c76 f140b16c1b2bf9fa551d933f4f84b8d414a1444b 1676beb913fbe56b0a1c4a4086b79b2bc0febc9465ca4d5707188254ce4e1458 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/js/fresco.js	74 kB	2023-03-07	2024-04-05
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/js/fresco.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-05 16:29:30 Times Seen179 Hash f847b8972709115cb32741e213c6d6fa b1e9b3ff6b1588030fa921156b65905ab100c812 0a26e8adcf0b57d2dc9695eb48801067839bdb8aa052b6c88e4b262cfac52472 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/js/theme.min.js	296 kB	2023-03-07	2023-10-28
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/js/theme.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2023-10-28 07:26:27 Times Seen12 Hash 382676d78a38e39f43a8569f408632ea 810979463870b5b2c428fe4c2bbcea3ba15082ab fd1f95d8ffea1423c7080701ad2c0b508dddb11ab39a0ab693478630a72c3b5f Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	472 B	2023-03-07	2023-03-07
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash e9dc461da00037bddf8e51fedce8aa5c 907d94e4f488ed9691c08f0dd811f5992c2ba09b 09c8ee7b13e5be83740650770e5ab21f4a10a177fa5c1ba8963bbbbda89e32f7 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js	2.1 kB	2023-03-07	2024-03-05
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-03-05 14:13:33 Times Seen144 Hash 65e367235ee1ac0ae78c41603e81c250 be3376d7b53fc8d5d7e966383b465855c9a39665 398c7a7954597f4c3e64ad72c8dc8216aa6449fb0eb02dde8e75c36b4b8902f0 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js	1.0 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-02-23 02:28:39 Times Seen81 Hash 223797d202840e505404a4195cfb6f88 90018cbdb51898c8ef1bb13ab94430202e76699f 3ec5f51f587f09bf099054ba11b387833414448750650034fad6a54bfbfdda45 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js	16 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-23 02:28:39 Times Seen165 Hash 628315dbf9135e5b88271574278e6eca ff70280e433a13f69f17aabb94ec3aed218a6e98 ac89245a42071f52d0706bd6d2e0c2459ef8cfc20430a2e7aad45be8ee80949d Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js	27 kB	2023-03-07	2024-02-19
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-19 00:29:07 Times Seen164 Hash fd76859d961d0e4da7f895b29869bc34 f1bc20138baf92750240914e0d379d91ce0dd87a 4159ec0892e3c7fbb681871f24bada7eb03b2fd39e355148e58a953ae968ff36 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fontfaceobserver.js	5.9 kB	2023-03-07	2024-04-05
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fontfaceobserver.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-05 16:29:30 Times Seen243 Hash 156041e62054ffdbcf4eebc1e67de808 ca479a7969c40452658048378e0537fde9b3f82a 12f2d6e9b3e71569378c369c36243eb26a38b2f41cf10e6a3b148a9548851471 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/tinycolor-min.js	15 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/tinycolor-min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-23 02:28:39 Times Seen166 Hash feea59344873ff7aebd159b503804116 04986e91415e34ef0706a2e2b1814c1c5b3f6307 55cc08a17a3dcb5106d45fc4408b8509d149d1795d0417ea545f479526b9c423 Loading...

	coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15	386 kB	2023-03-07	2024-04-14
Pretty URL coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-14 17:47:59 Times Seen285 Hash 2c60ddda25c8fb5d11d145d8a012c3ea f283d07939cac81eebb572128e3f8b2db79f8002 b8b9a9ff0a9f08569fa27b147ed48bb8cc37ef85d7abb6547ea32066865a61a0 Loading...

	coupdepouce.bzh/wp-content/plugins/hub-core/extensions/redux-typekit/liquid-typekit.js?ver=6.0.2	46 B	2023-03-07	2024-03-05
Pretty URL coupdepouce.bzh/wp-content/plugins/hub-core/extensions/redux-typekit/liquid-typekit.js?ver=6.0.2 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-03-05 14:13:33 Times Seen21 Hash 55b04ac73271842b818e1f6898648faf b8fbcebf9409c280e14cfbe6db8fe093e8e72289 b90fb2807fe2a4725b7396d6bf53e88fb4f17e1342c7471ea8d6ffa78b29cfcd Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js	4.2 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-02-23 02:28:39 Times Seen79 Hash 4008012e22b36bd70df26e0913848587 d6d38f5a713013b8ca3d8aed76214cb992161e59 f5a3bfbf5fb798c1be917eb160c5c039f7319c86b8ad6aa5b5170336bce5dd23 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js	3.7 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-02-23 02:28:39 Times Seen80 Hash 328bdb13d96052d63faa4871d3c7bfe4 02c53b3a47f22c2ac148e96e153c8c2beb161150 c77b185a5e41acd475d77b306d4d07d9633661babcd34f4de399d17198cbd7b3 Loading...

	coupdepouce.bzh/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:54:53 Times Seen31826 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lity/lity.min.js	5.2 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lity/lity.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-23 02:28:39 Times Seen118 Hash 016cf6657c3eec3e1600cbefd0fb93df 2d3b3356c84db6d4446e02d46b20c4fe2f8740a7 436b683776efec75ab4ae6b4791fc0f48ab56ba07526896e5711a82ab442ee55 Loading...

	coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js	65 kB	2023-03-07	2024-02-23
Pretty URL coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:54 Last Seen2024-02-23 02:28:39 Times Seen169 Hash 7f452cc6d4183061233146ee634baff9 9b1e5247b4f9cd17417537b2615cf888f2eb413a 785135182c79ee5b2c6df31ca256e0da616f056266ef432ba509ba4db4385753 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	142 B	2023-03-07	2023-03-07
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash e207ee17a7434991737e48ff5e7dbc34 9869e25026ff95e233a8ef4c78a94f973c317f13 b63363ccf5f931b832e2379152e03833b5affba54fa812736c69d538d337ef6b Loading...

	use.typekit.net/cwd5wcp.js	17 kB	2023-03-07	2023-03-07
Pretty URL use.typekit.net/cwd5wcp.js IP 23.36.76.122 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash c7fa44070937ef583df9315c525ebff4 d82da5c0b8c38643fb3e15f010dd59288293ab6d 2b4f4ac448a5dceeeb40bbbaa60b258f006a51ed0759dc2b9fe043d6aaea21c1 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	2.1 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-25 14:24:53 Times Seen6353 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	868 B	2023-03-07	2023-03-07
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash 1a52383f36dcca8e85ba6fbaea259398 6c29128c1ba84f2290c5069064b77f7bc0d46ec4 227947e71845d3767c2fcddbabd56087ff35da35980679ea0f7b0a1eb60ee8a4 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	93 B	2023-03-07	2024-04-05
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-05 16:29:30 Times Seen116 Hash 0838cde93255a21ee25b86afadd09044 07795a7f8c3113256cdefe1aa9cd268682784903 e30a4bd858e4cd533bb62e61c7fa9a4181c081931a89b4aa0d579084456a66c1 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js	13 kB	2023-03-07	2024-04-20
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:13 Last Seen2024-04-20 17:44:16 Times Seen732 Hash 316f3557abf074f917ff1f83d776338d 8fdfb015a94c6ee5a4276e2577665a27ccc8c1f3 a28396880470a28e0525bdc0ea326ffb811de7de13662d02f7530dbbe3f12d90 Loading...

	coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0	1.1 kB	2023-03-07	2024-02-11
Pretty URL coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-02-11 18:40:10 Times Seen58 Hash dcadd16080d41678c169e723188561d0 0facd97d8bab8ad4f8cb1394a52f132955da0f35 03f51be810e33258556383946f2d6bcc12f78a4b530f580c85d135e433836032 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 18:15:00 Times Seen37069197 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	coupdepouce.bzh/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 09:08:19 Times Seen30969 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	coupdepouce.bzh/wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0	1.6 kB	2023-03-07	2024-03-05
Pretty URL coupdepouce.bzh/wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:23 Last Seen2024-03-05 14:13:33 Times Seen64 Hash e47d9bba01efb5e7f142ab272366776b a10c561e0316bc2a2e995a2c2b00f3150809bd27 7148e7fac4024f312ef48d67d55b047796d98484b33426d1edd481442a5cdf5a Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	3.4 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-25 14:24:53 Times Seen6167 Hash a94b76e45c11675df9f26fd25a8e4359 1cd29363bb1b514e6f7ef031f1831008df181f17 4569f5c3704a88394335b0fabccd6460ba5e582c3058f9286f42cc589da02899 Loading...

	coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m	1.9 kB	2023-03-07	2023-03-07
Pretty URL coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2023-03-07 23:47:38 Times Seen1 Hash afe94a46e06c6cdb03f907bb1eac15d9 f298e557f0b15720f2a4390d7ee889375ee8e87d 833d274f591c91b96efcae1fac337ee73d7539df2c4d87d9c6a2ce877fa8ccf5 Loading...

	coupdepouce.bzh/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2	22 kB	2023-03-07	2024-04-25
Pretty URL coupdepouce.bzh/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-25 08:48:30 Times Seen1411 Hash ae0f40d4f21faa4c3ae5e3ec85853384 c94eb67feaf4d226d3e08ccd7e2d236d1a013c5d 32dd00604df8db3415240d450341558b6827b1e02dc0f211d8a6d9a4287c522e Loading...

	coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0	17 kB	2023-03-07	2024-03-05
Pretty URL coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 IP 146.59.209.152 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:47:38 Last Seen2024-03-05 14:13:33 Times Seen22 Hash 0e70aab61a787e990e6eafc2d7c9ded4 1ca4114c4093e7f8acd2661898e70260d1905f13 d9cecefdcef8e1c77b44546cae362ea5048c403df6e515f9b06ac59ed95a6c93 Loading...

HTTP Transactions (84)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16502
Expires: Fri, 23 Sep 2022 15:14:20 GMT
Date: Fri, 23 Sep 2022 10:39:18 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 10:14:07 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3aFKsNCXHf2EgDSfn30ZPWgSKnG07E3ddchWcnklHLyQnisQWwxGgg==
Age: 1511

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4e8zvg7iAnQagyqtf582dQwLcxsFc3SJkb-IZ71el3A9mF704cQ5vQ==
age: 21844
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 10:39:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 10:03:22 GMT
Expires: Fri, 23 Sep 2022 10:23:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aEQnw5TRstOny1syIC4JrgZ6-5soqQEkQ-5W0WHj6_QJexCH2vKklA==
Age: 2157

coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.

146.59.209.152

301 Moved Permanently

25 B

URL HTTP/1.1
coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
data
Size
25 B (25 bytes)
Hash
363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m. HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
date: Fri, 23 Sep 2022 10:39:19 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
vary: Accept-Encoding
location: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.
content-encoding: gzip
x-iplb-request-id: 5B5A2A9A:E6AC_923BD198:0050_632D8CD6_9B0B:51C3
x-iplb-instance: 41927

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4713
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:19 GMT
Last-Modified: Fri, 23 Sep 2022 09:20:46 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5d74d54f7e7d535c5d0f7562df5676aa
e586c309b23322bdc9fbded970ab85dcbe4695c2
8017759f6507fe5ad3d819542e53814e089f0d4ae8dc277e22aedc4a4138923c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8017759F6507FE5AD3D819542E53814E089F0D4AE8DC277E22AEDC4A4138923C"
Last-Modified: Fri, 23 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 23 Sep 2022 16:39:19 GMT
Date: Fri, 23 Sep 2022 10:39:19 GMT
Connection: keep-alive

push.services.mozilla.com/

52.89.255.30

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.255.30:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: weE7zONCRf663PTAvq1enw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q/5wYmPU23l8xtzH+Qno+U5Z2hk=

coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.

146.59.209.152

301 Moved Permanently

528 B

URL HTTP/2
coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m.
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
data
Size
528 B (528 bytes)
Hash
bf68867fa6d67e74f405167abf3699b7
b2e9f00caa22bf3e7529d58305192d1ab0f8a0dd
02f7c7eb7627a41b47188ea834df4ac8783a18767acb75814169d40c68331f10

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m. HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Fri, 23 Sep 2022 10:39:20 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
vary: Accept-Encoding
location: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6837
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 10:39:20 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea09a2e-db97-4846-b5c4-9bc0e69977bc.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea09a2e-db97-4846-b5c4-9bc0e69977bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13000 bytes)
Hash
634db5bfe2b27e608c3f3518b0c44ebb
06f5f63e681d711bd68626805c5dd2b902ebf9cf
935d3442ed37fe78df5fe40fac87ca00466a3e19ef3c72a80dae17ffbcacd45d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ea09a2e-db97-4846-b5c4-9bc0e69977bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13000
x-amzn-requestid: 7b2f1a90-cedc-403b-bdb0-f763b5bef824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2VOWGHXIAMFzXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c025b-74a08e472ef8b1227c0447e3;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 06:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l_CJpV9GPUzzbt8msOu-qQdwK9-vP5S-nHsgRPpwbue0Mf6FiBrEQA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
etag: "06f5f63e681d711bd68626805c5dd2b902ebf9cf"
content-type: image/jpeg
age: 54199
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10279 bytes)
Hash
8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6uqNnpll2kgC_0_t5e9yp0AgFAvprQq_GF_jgwj2sX2TE9S1l023Aw==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:58:47 GMT
age: 24033
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10127 bytes)
Hash
b877ead4a15221fdd278ef27f281a7ec
48c10714503e8dfdd3e3c3d39b919ef2792f0d15
f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KKYAef15NoI3It5UfVcqhPx50Fr6IK7O2VFasuAILVN9PP8CH1_7Ng==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:58:25 GMT
age: 45655
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8029 bytes)
Hash
02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5ur411n5hU7eWb68iExZCUrhpCybRyTBHCi72ra8dS2kd3UhW8sb1A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:59:00 GMT
age: 45620
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5340 bytes)
Hash
3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:04:45 GMT
age: 45275
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9481 bytes)
Hash
1eab8da8cc1495a0221efadddd1a0bcc
4156c37b612d5fb99c6b061187a3cb0b314ae4a8
2fc5dbd9216f775cd305de80d17db2e6c74abcb1e30bfa7065c4d763a7345026

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9481
x-amzn-requestid: d527d22a-6822-4b90-b9cb-034f58f73c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0IGl7oAMFSKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4e7-13a676d9596cbd20663d2d8f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8vtLV7n0bPpR5xQtqcH6WK7uBV4ObaMdy_9qN_TtISqAozEwPe0hA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:12:22 GMT
age: 44818
etag: "4156c37b612d5fb99c6b061187a3cb0b314ae4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/fonts/lqd-essentials.woff2

146.59.209.152

200 OK

6.0 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/fonts/lqd-essentials.woff2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Web Open Font Format (Version 2), TrueType, length 6024, version 1.0\012- data
Size
6.0 kB (6047 bytes)
Hash
39bcc0a06fc7819ab3c9c5fa0c1d5910
dca1a4a16fb5cc44a71d21155ce1b503170a9bf4
937279c31e9599bc4644f342a7746187200d9329e32ac39eeae4f2634ab60b93

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/fonts/lqd-essentials.woff2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-length: 6047
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 23 Oct 2022 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m

146.59.209.152

404 Not Found

20 kB

URL HTTP/2
coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size
20 kB (20336 bytes)
Hash
fe6aa5586722b4a21cbb576bc60d461d
db8afcde7b5084e1158edbd41744c8ebd1673a89
3242638a18ed8a7907a28233e7de7d7eee0e55d33ebcc2f7df4a85789fa48505

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 404 Not Found
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/html; charset=UTF-8
server: Apache
x-powered-by: PHP/7.4
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://coupdepouce.bzh/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2

146.59.209.152

200 OK

953 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
953 B (953 bytes)
Hash
c503abd9f9fe09d22b59cb1fb0a292a8
a75f1bde1d2da3a4696a8e027eeaae4e96d21fec
56ea4b514650d10a9c4756a2eb1e4d292d138725164eec8c8ef004ceda2fece7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 953
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 13:11:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

146.59.209.152

200 OK

12 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (43771)
Size
12 kB (11681 bytes)
Hash
e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 11681
server: Apache
vary: Accept-Encoding
last-modified: Tue, 12 Jul 2022 17:34:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/style.css

146.59.209.152

200 OK

1.1 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/style.css
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
1.1 kB (1103 bytes)
Hash
1da6f04a06bda18ea3ace0b92e824f2a
239bfefa23a0f7ae8bea1736e8b8af0807188ac2
8f4f6676d421882159c0632b0822bc4c58a6b6952426d6b4eac101d40029a12a

HTTP Headers

GET /wp-content/themes/hub/style.css HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 1103
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2

146.59.209.152

200 OK

4.4 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
4.4 kB (4395 bytes)
Hash
6ccc50d8058f37c03eea10782430638c
f9aced9bc0c8286be877fc48a10ae37fdcc2269c
534cd08c1ea0eaeebe1ba35b004f2a17d329a1d20c0b398785c4714458834b15

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 4395
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 13:11:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/css/bootstrap.min.css

146.59.209.152

200 OK

9.9 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/css/bootstrap.min.css
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (49610)
Size
9.9 kB (9922 bytes)
Hash
a7b12fc8dea60e87937b1db6b5270d24
63b611a61f573b24b5d08df3aba4fdfcb514a30c
dcb472707e447ef9913b20c88e7b1454c562a228a71ea727a0bdd35d3a690c04

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 9922
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/css/theme-responsive-min.min.css?ver=6.0.2

146.59.209.152

200 OK

4.0 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/css/theme-responsive-min.min.css?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (22089), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
f1e911b594b6455c9fbd6a783e23bea6
32d213384ceb6a983acafcf098a5a99e1cb3afb1
f8b77a14d86b0ea29aa9508ab2d092dac9f8dabce95fcb48cb24c725d0138635

HTTP Headers

GET /wp-content/themes/hub/assets/css/theme-responsive-min.min.css?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 3960
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/css/liquid-gdpr.min.css?ver=6.0.2

146.59.209.152

200 OK

610 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/css/liquid-gdpr.min.css?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (1463)
Size
610 B (610 bytes)
Hash
3ea14b8ed635c8cf5aea581971d271a4
9aaf8f9dcb0f4f74a62c993df7babc09cc1e4301
c7480d510ff7bd1ad9f3a3c746b1645d18a7d5a7120b2e952cfc9d19be16f5cc

HTTP Headers

GET /wp-content/plugins/liquid-gdpr/assets/css/liquid-gdpr.min.css?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 610
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

coupdepouce.bzh/wp-content/uploads/2022/03/coupde-pouce.png

146.59.209.152

200 OK

1.7 kB

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/2022/03/coupde-pouce.png
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
PNG image data, 192 x 106, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1650 bytes)
Hash
12eb349e426f594cb2dc2094949a71d5
23b504425cacdc2bc2df941c205800be267ba47e
1bc3f3b9cf9daf7d637a4fe43b6aabcea60b604356465fa16c75af4f563508f0

HTTP Headers

GET /wp-content/uploads/2022/03/coupde-pouce.png HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: image/png
content-length: 1650
server: Apache
vary: Accept-Encoding
last-modified: Fri, 01 Apr 2022 08:31:58 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Sat, 21 Jan 2023 10:39:21 GMT
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/uploads/liquid-styles/liquid-responsive-100.css?timestamp=1646388773&ver=6.0.2

146.59.209.152

200 OK

139 B

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/liquid-styles/liquid-responsive-100.css?timestamp=1646388773&ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
139 B (139 bytes)
Hash
d9ff4fdce2e0432d38046c8181b208e1
665d819c4bfc8165c3b66d1466f90eb442c671a7
c2ef18df1a59c55001ca47a0badbd5f20bd92e51384d9f74345f4da5895947ba

HTTP Headers

GET /wp-content/uploads/liquid-styles/liquid-responsive-100.css?timestamp=1646388773&ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 139
server: Apache
vary: Accept-Encoding
last-modified: Fri, 04 Mar 2022 10:12:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/uploads/liquid-styles/liquid-css-global.css?timestamp=1649147577&ver=6.0.2

146.59.209.152

200 OK

1.1 kB

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/liquid-styles/liquid-css-global.css?timestamp=1649147577&ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (4574), with CRLF, LF line terminators
Size
1.1 kB (1091 bytes)
Hash
f6a4854c753c6c713e9e786fcf845222
119ade740f9831af96e17a54792d7945b438652d
4d9ff0527d1aa215cb31580861c07d810f1339e4ab0ae67c7f7922430f666975

HTTP Headers

GET /wp-content/uploads/liquid-styles/liquid-css-global.css?timestamp=1649147577&ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 1091
server: Apache
vary: Accept-Encoding
last-modified: Tue, 05 Apr 2022 08:32:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/hub-core/assets/css/landinghub-core.min.css?ver=6.0.2

146.59.209.152

200 OK

233 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/hub-core/assets/css/landinghub-core.min.css?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (736)
Size
233 B (233 bytes)
Hash
8af8248d7ef157e88c3725902b3d8ed8
8c302fce82ee6ee66a5f62b9e3dba2c6867176ab
db8c553ff7b09764feec420c58a76b1d523498cc9ab8591fd882d6e0afe48cad

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/hub-core/assets/css/landinghub-core.min.css?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 233
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 16:56:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

146.59.209.152

200 OK

4.2 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 4169
server: Apache
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2

146.59.209.152

200 OK

7.5 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
7.5 kB (7526 bytes)
Hash
99b4ce14b33b03419e3809847af3fda7
aa0f15bb8b70726fd61c06e61faab08a6c758929
7994c287f4a7d3dfaa71f5eafdec1bd8341955b53b1ae2489772ac36e5f6a825

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 7526
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 13:11:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

146.59.209.152

200 OK

31 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 30908
server: Apache
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2

146.59.209.152

200 OK

1.7 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (401)
Size
1.7 kB (1731 bytes)
Hash
8d9b2928b6874e8da430585524784319
e3d99309ac812763f77759e258840f348357b607
adfab777821109a22e899673a3688fa30f9cfd2f8bc18aad62bd9fddb5c93a02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-table.css?ver=2.1.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 1731
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 13:11:16 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/lqd-essentials.min.css

146.59.209.152

200 OK

765 B

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/lqd-essentials.min.css
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (3158), with no line terminators
Size
765 B (765 bytes)
Hash
ae1e0ef6a3aef5532fa71a78968f9ae7
49cca093016d1eb4ae3959b4b951a94ef7cd5e1f
f58cefc5a87c61eb8bce172ebf21d2e3e596ccbf63bf650987eaf44dae1e2a5d

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/liquid-icon/lqd-essentials/lqd-essentials.min.css HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 765
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-159390811-103

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-159390811-103
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
42 kB (42261 bytes)
Hash
c2481f45b57f2f7ae798813201241396
825a7232a1cf82df04c9d5cd9d021463370ef0ce
ad642732750f810f76210eb0bade40d15057165286118efb3e7184516ffa2d13

HTTP Headers

GET /gtag/js?id=UA-159390811-103 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Sep 2022 10:39:21 GMT
expires: Fri, 23 Sep 2022 10:39:21 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/css/js_composer.min.css?ver=6.6.0

146.59.209.152

200 OK

41 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
41 kB (40569 bytes)
Hash
5f2a9baf25483007d617b31f90501999
65634bcf85aca5a2babcd914fdadfa4b94dc84cb
a32a86b6719e900bea59e7b339fbdf57d54924b80253056e40b70c5eefa23414

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/liquid_js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 40569
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0

146.59.209.152

200 OK

656 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
656 B (656 bytes)
Hash
3bff3876dc6f7560758038da45ce9bec
da1d460e6a13ce6e4f4ab86e3b5472f922c30e29
4ed3b9f6ec0a8524c4699bcb04fdb00357bc7fb434ecc42e21827b17e53ef3a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/hub-core/shortcodes/header-woo-search/header-woo-search.js?ver=1.0.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 656
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 16:56:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/css/fresco.css

146.59.209.152

200 OK

5.8 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/css/fresco.css
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
5.8 kB (5792 bytes)
Hash
364348532497274e79e5f445baffcdc2
b96f882564d89d5b915236bc8261544ad73e8272
5062be02a19036880c15eef6c91c7967c529c2ca0c77eca6752a52ca44ed69be

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/fresco/css/fresco.css HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 5792
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15

146.59.209.152

200 OK

12 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
12 kB (12293 bytes)
Hash
ff57c0b9e50087edbb526daf95a7cf9e
b72bd86e0bfa33358ad3480d1c59b59231a92bcd
f0ababac57af3467f9ce7e18ce545a70e952c59eeab3bdd88b148e131b684342

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.15 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
content-length: 12293
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

146.59.209.152

200 OK

2.5 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.5 kB (2457 bytes)
Hash
27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 2457
server: Apache
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 19:47:35 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

146.59.209.152

200 OK

7.1 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size
7.1 kB (7095 bytes)
Hash
2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 7095
server: Apache
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 19:47:35 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2

146.59.209.152

200 OK

6.6 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (21905), with no line terminators
Size
6.6 kB (6564 bytes)
Hash
38b247e8125da1a0dd504e02d8b6d2b7
2fbec20b65e15f0fa6355281036f00374dc9a1c2
52b2b12cee3c2999c8f2af3664c060144e0f8dba790602846584a1bd42442c82

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 6564
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:45:43 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/hub-core/extensions/redux-typekit/liquid-typekit.js?ver=6.0.2

146.59.209.152

200 OK

46 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/hub-core/extensions/redux-typekit/liquid-typekit.js?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
55b04ac73271842b818e1f6898648faf
b8fbcebf9409c280e14cfbe6db8fe093e8e72289
b90fb2807fe2a4725b7396d6bf53e88fb4f17e1342c7471ea8d6ffa78b29cfcd

HTTP Headers

GET /wp-content/plugins/hub-core/extensions/redux-typekit/liquid-typekit.js?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 46
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 16:56:18 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0

146.59.209.152

200 OK

480 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (1058), with no line terminators
Size
480 B (480 bytes)
Hash
1fb41de18d1904f985e2c281e039a997
433a83a0750cccf3487f2c8f0f2496ae3b1623ee
8ccb7fef5657803b3e9463cbca92d8fbd349cc44fb7d392e4f07d88578862e60

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/liquid-gdpr/assets/js/liquid-gdpr.min.js?ver=1.0.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 480
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js

146.59.209.152

200 OK

5.2 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (15207)
Size
5.2 kB (5243 bytes)
Hash
a0b23dd29bb93c9ece0bb87665011c29
57c7177633f81e28b4ceacdd537677a181d04ce9
ac1a1792e1b26626098c4ce64105b41020ccadc9c057d6461ea024e2055d104c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/gsap/utils/SplitText.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 5243
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0

146.59.209.152

200 OK

5.1 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (16718), with CRLF line terminators
Size
5.1 kB (5111 bytes)
Hash
a78295caea475948e4ce5f98e57c4fe9
7666975bdc698bc0c166ae8f253a33159a90015a
d5dbeb76edf82c056b357f1571d0f9f275307c1fe7f350677f29702738ca354e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/liquid_js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 5111
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js

146.59.209.152

200 OK

905 B

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (2086), with no line terminators
Size
905 B (905 bytes)
Hash
fe7f47942f02e36f33c011bc2fc31645
45bce0e4b47a0987d4ae4f1bcae6b0bd795b58b9
6a6e76f2952a5db43bbfa1003de067f46775398fa50f2daebbbe66588cf0f427

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/fastdom/fastdom.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 905
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-includes/js/imagesloaded.min.js?ver=4.1.4

146.59.209.152

200 OK

1.8 kB

URL HTTP/2
coupdepouce.bzh/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (5477)
Size
1.8 kB (1834 bytes)
Hash
951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 1834
server: Apache
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15

146.59.209.152

200 OK

49 kB

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (45108)
Size
49 kB (48780 bytes)
Hash
002803a95f84148b4b1d0ba26c282b2b
6ec77a19dc41f3b26aed3859a477958d7c6a4348
f598f55c8842c2d82f2adf5f1bbd5c8baff23d23a90fc8f84dda1dd34acb2d90

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.15 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 48780
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js

146.59.209.152

200 OK

7.3 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (27027)
Size
7.3 kB (7268 bytes)
Hash
63da1ce2fc636a42d42059f4afcb6928
d3f731213f015531584d367f142faadd0ac4c847
786feeb8f1052282136a374c640864402e7bb704feb4049fa54fd066b5a3037f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 7268
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/intersection-observer.js

146.59.209.152

200 OK

2.6 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/intersection-observer.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (6765)
Size
2.6 kB (2641 bytes)
Hash
3b5b72390b2ee4f25583c53ca4cfc91c
28050a0d22ec4d857182fd8c79bcffaaa0236473
db670df9389dffa7acc4a05cc3941874204dc4996f14aa2cbb1e06c0dc715e0f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/intersection-observer.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 2641
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fontfaceobserver.js

146.59.209.152

200 OK

2.2 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fontfaceobserver.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (1031)
Size
2.2 kB (2200 bytes)
Hash
6571b1c666b4a16227a30c90297202d2
8f0944bab38c3010140fae08923b594201908447
22e9cfa85e0c34d752c7168a80175f4c37c84fa92ebd95367715c4badddd390f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/fontfaceobserver.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 2200
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js

146.59.209.152

200 OK

3.7 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (6803)
Size
3.7 kB (3685 bytes)
Hash
329c410adbcf7185503c8b2f4e392d99
87373159e6ad125d9bdcbed58da8c7035dcdf2d3
922a1760a53603d5ba3e5feac4f04f9b7df883a8ee78c4d0f68a88e6044f2536

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/gsap/utils/CustomEase.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 3685
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/tinycolor-min.js

146.59.209.152

200 OK

5.3 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/tinycolor-min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (14680)
Size
5.3 kB (5250 bytes)
Hash
ea1bd89b103c64b117e80cde1e613d41
c21079f78a4ac84069f7460093a2fdbd4857c11c
f7195e06dcd1b63834dce57370038add295c84c6b085d47da0237166d50a4fe0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/tinycolor-min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 5250
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lity/lity.min.js

146.59.209.152

200 OK

2.3 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lity/lity.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (5050)
Size
2.3 kB (2325 bytes)
Hash
5cba6b34775cb69a78569784caffec07
97ef54279673480a12c614eb340af7fd23ec3712
c04a273cb1a612e06a03f228ff7f3edb6880c8a426c3a224572b45483cfcc01b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/lity/lity.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 2325
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js

146.59.209.152

200 OK

1.6 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (3723), with no line terminators
Size
1.6 kB (1578 bytes)
Hash
f221f74cb6044a3090763b4e30ed242c
de256fde0584ec1b8853573aff6f0fb180f57f90
01c4fa92149dd9c1d2f300a85bf9faf85e9a5cda75971ab1b424e97ead5a342b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/js/animated-blob/liquidAnimatedBlob.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 1578
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/particles.min.js

146.59.209.152

200 OK

5.9 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/particles.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (22904)
Size
5.9 kB (5946 bytes)
Hash
1c32c67cbc7abe93ba54d252b18b08d9
b4cba6b595687b144a4630edd44043a600575514
721287c64cd59a26e60994b492b20703892919b352a0d6d4d4c1c0d1e8b9fca5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/particles.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 5946
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js

146.59.209.152

200 OK

521 B

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (1032), with no line terminators
Size
521 B (521 bytes)
Hash
92eb06214e461207d7beb444dea639c3
c0e428abbc5c160956c2b727f470a7d4b896e10f
a0598bdcdaf266f1e1d07d3013821558103158b6eb4bd69586bf63589cc5ef42

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/js/draw-shape/liquidDrawShape.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 521
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js

146.59.209.152

200 OK

15 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (35477)
Size
15 kB (14887 bytes)
Hash
e322f917c8abc874722736065f8656f2
b625e569395c6b995ebe3b2898858d60670572bb
2684b33ff689c6959dcacd068a88bc233499dfe3fb6d9ee80e1b4b19cb9d32a9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/gsap/minified/ScrollTrigger.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 14887
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js

146.59.209.152

200 OK

2.1 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (3882)
Size
2.1 kB (2114 bytes)
Hash
604d9015df04ffed30b066d4e5833df5
af8760731366ad224bbe05b72cfb12b23de58107
e7e35d34cd721f7602c2da9441b7be6500bf70a56a28157516d991538f67da3e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/gsap/minified/DrawSVGPlugin.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 2114
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/js/fresco.js

146.59.209.152

200 OK

16 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/fresco/js/fresco.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (31993)
Size
16 kB (16333 bytes)
Hash
ff17d0410f61fd875885f5b377235045
5568279f6bcae67d56e25c07c617bd45d218b6a2
afb038cbbbe7f4d7e7ec0d26c5e7f430b8932b0938439c98241a420c704aa2e6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/fresco/js/fresco.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 16333
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js

146.59.209.152

200 OK

26 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (64964)
Size
26 kB (25651 bytes)
Hash
216db7cb42d02e6b096c9141d632926d
5bac1430612df50d3bc9923f2cf083f5dbff0a23
ba784c3f4ad821c9f8f99ae10c13c983072751fc454a32f94daf5328365ccd2a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/gsap/minified/gsap.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 25651
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lazyload.min.js

146.59.209.152

200 OK

3.1 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/lazyload.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (8771)
Size
3.1 kB (3054 bytes)
Hash
115cda6cfd193d90e0ca5ab01bc93d0e
948473a7d15ccc3aab2dd69bd815f21f297b7014
5300899e25b2eb32b841664013286ccadbf0c54cf86891016768819d6928f306

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/lazyload.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 3054
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js

146.59.209.152

200 OK

29 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (65028)
Size
29 kB (29395 bytes)
Hash
4596db032e9118d684e8562a6d1b7357
7f0abe175b78bf99c9b13ff356a27b1d015ae139
cfda799d32bff6d37f066e02616e0de9b318b279ccea9ab914eb907beb0e5a5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/vendors/jquery-ui/jquery-ui.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 29395
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/css/theme-responsive-max.min.css?ver=6.0.2

146.59.209.152

200 OK

834 B

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/css/theme-responsive-max.min.css?ver=6.0.2
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (2845), with no line terminators
Size
834 B (834 bytes)
Hash
10219455934274790902fe5097bea2a2
30935375328aa83b0eb0f099298bf6b95f8ab194
cdc775a489f0517ea2dda1fc88879afc561478e5cd2330785b2f5608eb21881a

HTTP Headers

GET /wp-content/themes/hub/assets/css/theme-responsive-max.min.css?ver=6.0.2 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:22 GMT
content-type: text/css; charset=utf-8
content-length: 834
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:22 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/uploads/2022/03/cropped-Groupe-211-300x300.png

146.59.209.152

200 OK

3.5 kB

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/2022/03/cropped-Groupe-211-300x300.png
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
PNG image data, 300 x 300, 4-bit colormap, non-interlaced\012- data
Size
3.5 kB (3549 bytes)
Hash
2c5be51ba924ab19257a6985edf4abc6
0bfc3cf7baf3e80897cd4a3e1dedd6510477fd5c
a8d94a5985796c6a97f40166c65a2e15cbcf006ed311b91ca44bb45c7d862751

HTTP Headers

GET /wp-content/uploads/2022/03/cropped-Groupe-211-300x300.png HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:22 GMT
content-type: image/png
content-length: 3549
server: Apache
vary: Accept-Encoding
last-modified: Fri, 01 Apr 2022 08:31:57 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Sat, 21 Jan 2023 10:39:22 GMT
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/uploads/2022/03/cropped-Groupe-211-150x150.png

146.59.209.152

200 OK

1.8 kB

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/2022/03/cropped-Groupe-211-150x150.png
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1804 bytes)
Hash
d108e47e99be03db8eceed075a08f9ce
ce2ae6a34e1d0f3398a772ec77e0ab33ee8997e4
8d390409aa1dbb1a36ce2699b6f93a3212b0ca2a8e83ca9f51d4780b4e8c09ee

HTTP Headers

GET /wp-content/uploads/2022/03/cropped-Groupe-211-150x150.png HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:22 GMT
content-type: image/png
content-length: 1804
server: Apache
vary: Accept-Encoding
last-modified: Fri, 01 Apr 2022 08:31:57 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Sat, 21 Jan 2023 10:39:22 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js

142.250.74.106

200 OK

5.5 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1.6.16/webfont.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2220)
Size
5.5 kB (5480 bytes)
Hash
f72713534a64bf9c9aaee850092e823e
3ab0bb192e219d115b92f5fd590b43698d44d717
044da58d8894bb8f8464c19e34d3f4c454c222618f0c8f98aa705549c0215d97

HTTP Headers

GET /ajax/libs/webfont/1.6.16/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 19:13:58 GMT
expires: Sun, 17 Sep 2023 19:13:58 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 487524
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/cwd5wcp.js

23.36.76.122

200 OK

6.7 kB

URL HTTP/2
use.typekit.net/cwd5wcp.js
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (2258)
Size
6.7 kB (6675 bytes)
Hash
043c5585b498ce40f9a60b9bd48f806b
a426d4ce7d48e7594cb0483dc58095c86cf1a69b
1028c82d0ff04f18e4a595d19d2c0fa164b9342225257a7145dee5bf751057a0

HTTP Headers

GET /cwd5wcp.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6675
date: Fri, 23 Sep 2022 10:39:22 GMT
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/uploads/2022/03/Ligne-3.png

146.59.209.152

200 OK

84 B

URL HTTP/2
coupdepouce.bzh/wp-content/uploads/2022/03/Ligne-3.png
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
PNG image data, 1 x 101, 1-bit colormap, non-interlaced\012- data
Size
84 B (84 bytes)
Hash
0e6069501b242136d902cea71111a090
43d41ee1b67fa27e2a944943cac9cd3f1bd89072
dff1a1b09e0cf99cbc4de056a661d2e4d66781771ca6a5cce6799f3691333109

HTTP Headers

GET /wp-content/uploads/2022/03/Ligne-3.png HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:22 GMT
content-type: image/png
content-length: 84
server: Apache
vary: Accept-Encoding
last-modified: Fri, 01 Apr 2022 08:31:06 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public
expires: Sat, 21 Jan 2023 10:39:22 GMT
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/themes/hub/assets/css/theme.min.css

146.59.209.152

200 OK

92 kB

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/css/theme.min.css
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type
data
Size
92 kB (92091 bytes)
Hash
83961574ab57e1991d541450fba188b8
5fa00800ea5e783edd784db709d5fb4fd16d43e1
8ef208627edccd563560d26c9cb22c70c70b346bdcd8659ea251100720516c7a

HTTP Headers

GET /wp-content/themes/hub/assets/css/theme.min.css HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: text/css; charset=utf-8
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

use.typekit.net/af/341355/000000000000000077359e98/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.122

200 OK

20 kB

URL HTTP/2
use.typekit.net/af/341355/000000000000000077359e98/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 19492, version 1.0\012- data
Size
20 kB (19492 bytes)
Hash
f5dee1c59acab830f05a1acf7a1faa40
7e1ea646f089007d5c3e78aea0c7c73a82a20c6d
365d62df2361f71d03c42759a078753c293ef35396d4b86dd46f1bdd311548b3

HTTP Headers

GET /af/341355/000000000000000077359e98/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coupdepouce.bzh
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19492
etag: "31a9ef1f7181193c266ba60d45b5dcfa7d946e2e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 23 Sep 2022 10:39:22 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/4a8a65/000000000000000077359e9c/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.122

200 OK

19 kB

URL HTTP/2
use.typekit.net/af/4a8a65/000000000000000077359e9c/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 19088, version 1.0\012- data
Size
19 kB (19088 bytes)
Hash
c52b5c6fca3ab064ec75627d8797dedc
d18f7f2da2ea5938b5d858fceb9ed0d4167389cf
1224ffd56d7c369fb81c27866dff663e5956f1ebe6c31d47902e3209e5c4abc9

HTTP Headers

GET /af/4a8a65/000000000000000077359e9c/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coupdepouce.bzh
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19088
etag: "1571544bef2f8837a6aeb1250eb60b01167a7b57"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 23 Sep 2022 10:39:22 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://coupdepouce.bzh
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 140714
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

p.typekit.net/p.gif?s=1&k=cwd5wcp&ht=tk&h=coupdepouce.bzh&f=12102.12103&a=1088800&js=1.21.0&app=typekit&e=js&_=1663929562030

23.36.76.122

200 OK

35 B

URL HTTP/2
p.typekit.net/p.gif?s=1&k=cwd5wcp&ht=tk&h=coupdepouce.bzh&f=12102.12103&a=1088800&js=1.21.0&app=typekit&e=js&_=1663929562030
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=1&k=cwd5wcp&ht=tk&h=coupdepouce.bzh&f=12102.12103&a=1088800&js=1.21.0&app=typekit&e=js&_=1663929562030 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Fri, 23 Sep 2022 10:39:22 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:39:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

coupdepouce.bzh/wp-content/themes/hub/assets/js/theme.min.js

146.59.209.152

200 OK

0 B

URL HTTP/2
coupdepouce.bzh/wp-content/themes/hub/assets/js/theme.min.js
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/hub/assets/js/theme.min.js HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
server: Apache
vary: Accept-Encoding
last-modified: Tue, 23 Aug 2022 11:34:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 10:39:22 GMT
date: Fri, 23 Sep 2022 10:39:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15

146.59.209.152

200 OK

0 B

URL HTTP/2
coupdepouce.bzh/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15
IP
146.59.209.152:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.15 HTTP/1.1
Host: coupdepouce.bzh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://coupdepouce.bzh/gb_internet_customer_response@manulife.com/1/8/19/2022%2011:32:52%20p.m
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:39:21 GMT
content-type: application/javascript; charset=utf-8
server: Apache
vary: Accept-Encoding
last-modified: Thu, 03 Mar 2022 08:18:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sat, 23 Sep 2023 10:39:21 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations