firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 30 Aug 2022 21:19:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aLcG3Cz8ON5eIPWp2XW4pFYtlVJqbG5zC1yKymOpWTS97Y90_aj6uA==
Age: 1935
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 29 Aug 2022 22:35:59 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vUQR740KoYVAiENAbbvT5MoAfRZwxzYaotRcUvex3aFa31TojAaIoA==
age: 83738
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2938
Expires: Tue, 30 Aug 2022 22:40:34 GMT
Date: Tue, 30 Aug 2022 21:51:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16962418c9afea34dd7526401a7149c3
f3abf5fc3f08c579e77037da29279b4b828e4745
027e853a6424528ae3cf2699c340dd21d212413e1d1dbbdc05c1c5bb977405b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "027E853A6424528AE3CF2699C340DD21D212413E1D1DBBDC05C1C5BB977405B5"
Last-Modified: Sun, 28 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21505
Expires: Wed, 31 Aug 2022 03:50:01 GMT
Date: Tue, 30 Aug 2022 21:51:36 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:51:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/logo.svg
45.131.187.253200 OK 23 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/logo.svg
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (22990), with no line terminators
Hash 309614868fce75b09d16465178bcb950
c206e69f3a7c3353d33dbc2a64ed2340b9648b7b
6fc88d127374d7fafc14c486675681cefacce89b7961fc1558b104368ad32db2
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/images/logo.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 22990
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-59ce"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_1.png
45.131.187.253200 OK 723 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_1.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c3a691059e846736caef3d17a360519
453511e36db678b3a77124af4f697d82987393b1
97409f23aff1c1428275dff14a547f64c18b64ebb3cc3fbe0cf36f3117886d3e
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/telecommande_1.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 723
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2d3-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/mon-espace-sante.png
45.131.187.253200 OK 608 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/mon-espace-sante.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d39dfb4bdca7b65637fd3c860eda365
8a9f35c911a1d622d4dff40e90de7b7033fcf884
1d3d56b79295a4880f83fd3d2910d45a3b61e8090d1b55a4b8592f5b5531255b
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/mon-espace-sante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 608
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "260-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/contact.svg
45.131.187.253200 OK 12 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/contact.svg
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 85598c2d6e7ae18de80069db917d18a9
58aaf961633d0089cfd6ee5685865d303ae5dfd1
3c9b952c5f3f5fa966d9af774dc504462a198f4b75a4f9168100b08a22f1d8f6
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/contact.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 12545
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-3101"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_3.png
45.131.187.253200 OK 448 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_3.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 858fe6e525a47c18c8dfd7f39e2a0ae5
fe34b1daa7f2c554cd3c08769acf674c945fe4d5
f134ef5eac4e75c5b04232a908e5820a7af17ccdf3336c730f3dbe6dc732620e
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/telecommande_3.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 448
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "1c0-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_5.png
45.131.187.253200 OK 722 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_5.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 219b6f9332d4271f3baa57f1518b9e88
2e9d66c614b05fe9459c263919ad7dce256eb1c5
08807b6dbb61fc5e066ca4f8e7a88c0932dc34d2cd12b0517c89f9ff33a9aec2
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/telecommande_5.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 722
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2d2-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_6.png
45.131.187.253200 OK 706 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_6.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 1802b81060e10dfbf321bf26cc5d0d25
39f7b1ceeffdae901e2cc2d8ca66404306bb30f5
1fa419dac7b93b687d68c8304e846dbed9fe6bd91f25597a117fbab2d30e0cdb
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/telecommande/telecommande_6.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 706
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2c2-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/icone-alert-white.png
45.131.187.253200 OK 712 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/icone-alert-white.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 64 x 57, 8-bit gray+alpha, non-interlaced\012- data
Hash 7b7ff036e18b23d0d34ba61fc7d53bc5
c4b3d8153aa6fef4cee6379bdd214150fa855ae2
216ad62585bd0260a9da24858ed58f5cbe32c2e4ad87e91d804d09717f40aad9
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/icone-alert-white.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 712
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2c8-5e6fded52e13c"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sante-recosante.png
45.131.187.253200 OK 11 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sante-recosante.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 439 x 322, 8-bit/color RGBA, non-interlaced\012- data
Hash bcb257b6a124eb053c1cb1546b019cb5
26797075a23d425da3bc2a4a87c627c69ee910e6
020689c940f494cf0d063de0a04404b4b44d8d49194b650e93894679448748f4
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/outils-sante/outils-sante-recosante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 11203
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2bc3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/franceRecosante.png
45.131.187.253200 OK 33 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/outils-sante/franceRecosante.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 242 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash 63baa27fac9bd0ab121f4cc106f31747
b52907607a917838a85f49a44cbd94c1af70187d
d7bccd64dd7979627192319d9d2cfa7db03066ee99fb8752d0c2a7d0239fb096
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/outils-sante/franceRecosante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 32985
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-80d9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire.png
45.131.187.253200 OK 2.8 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 41 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 303904aaf853a1aea4f1c257a83b2b5f
f5d05f8e5fa1c9a775b204d4c9dfc0e8e7d89457
33df36ed55cbd63831d64a18083dd1297a821cba56c7d8b8aa22d064f47e34c7
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/outils-sante/outils-annuaire.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 2761
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-ac9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire-image.png
45.131.187.253200 OK 3.5 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire-image.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 58 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 175282c10a79d665d68a5c3d09d99ed2
6f216cf0c8aac7c38a759b79dd248763432a6ad8
b9d5de52ff68278b6f0a13eb99bfdd4af84c9e2995ddb2a8504a1a4daba659bb
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/outils-sante/outils-annuaire-image.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 3499
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-dab"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sophia.png
45.131.187.253200 OK 3.0 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sophia.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 60 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 34c813ea8f458b7c4c3ef50529594c5c
16e28bb48015d359c506da759a06f344d968b293
4a8b8fdcde9cf27edd4f70795a3b1c3ced8e56950c24b74b84a416df693c8a1d
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/outils-sante/outils-sophia.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 3023
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-bcf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg
45.131.187.253200 OK 26 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (26035)
Hash 381e33091e0774d59064b3b0cfd446a3
db6869462f5c72f11cfd427d01d72f11916e3478
97ae2ef28651fc17a197830e8bc6918bc9add749b2000d30ef4b5ebb21760d63
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 26246
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-6686"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12
45.131.187.253200 OK 440 B URL HTTP/2 amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type ASCII text, with very long lines (661)
Hash 95ec5b5ce9cd27cbbff5dcffba0933fa
cb8437b504f4f94626bbce6973eab0bc34e1f6a1
7864fbd29749e47da978ce17fdb878790c6f1f03ca5885f8a74e1ad397ea8f3c
Analyzer Verdict Alert quad9 Sinkholed
GET /modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
content-length: 440
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "3f7-5e6fded50aeaf-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12
45.131.187.253200 OK 425 B URL HTTP/2 amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type ASCII text, with very long lines (824)
Hash bf86a3be803e5abd427f81f13ad59ffd
aa5d82402f4cb9e26137ef3976a8dfacc923ac40
08059f351f1370e0af1a2ca813e8fcc375a30d7c362434d165ddaef35df51e0c
Analyzer Verdict Alert quad9 Sinkholed
GET /modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
content-length: 425
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "3c1-5e6fded50aeaf-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/footer/footer_lien_forum.png
45.131.187.253200 OK 1.1 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/footer/footer_lien_forum.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 55 x 55, 8-bit gray+alpha, non-interlaced\012- data
Hash 9a524b412d0f399fa5575377765244a4
9973d9120adda8bfd264651914392a2270dec7ac
b70014ea02c995d069754f1263f2e362d8dc77788692090ded32afabdfe2fb9c
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/footer/footer_lien_forum.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 1131
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-46b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 30 Aug 2022 21:17:12 GMT
Expires: Tue, 30 Aug 2022 21:28:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gU_aIkJVTG0s_F9M0Epvq4JZvsXSVgzamYcdPpi4oYhCQjw8IdqV0g==
Age: 2064
amelipourtous.fr/themes/custom/ameli/images/footer/footer_logo_ss.svg
45.131.187.253200 OK 402 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/footer/footer_logo_ss.svg
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8572)
Size 402 kB (402368 bytes)
Hash f259af7e9e79d8aa7a8d8d188e1fd21f
c46455fbaee37802c25f5ccb0a205ce173cb8f8d
d1ead117c96b507d90c32b2f7b83a88ae9140d65be6cf0d5be14715dcb30447a
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/images/footer/footer_logo_ss.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 402368
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-623c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css
45.131.187.253200 OK 298 B URL HTTP/2 amelipourtous.fr/sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type ASCII text, with very long lines (547), with no line terminators
Hash 841c80d9487a9ad068d33f29cd5519ca
17610d8b311556378a31d6b636672c86b3388cde
8d6e329ee15f2c2943e3f6959b18843a06adabdc5084e7a4b26663042b294e49
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
content-length: 298
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "223-5e6fded51c7f5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/images/uk.png
45.131.187.253200 OK 275 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/images/uk.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 32 x 16, 8-bit colormap, non-interlaced\012- data
Hash 84b72a42524b5670390adf73aaa074f5
c04077b4389a764b467860134d2e99410d0052d6
218f95b4c48d6cad016a6bf8e94101bab9651670f623997b0ee1bfdacec4d44b
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/images/uk.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 275
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "113-5e6fded52d19b"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff
45.131.187.253200 OK 70 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format, TrueType, length 69880, version 1.0\012- data
Hash 023db09b1888a089c4729f183feb6e72
bc7017dfe5f08ae0a3456cdf5a17f0807263543a
6353b6bc05de7c03bbc2fd25408a160053748a5ad079ab2eae0239eb4ff9c97f
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 69880
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-110f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js
45.131.187.253200 OK 39 kB URL HTTP/2 amelipourtous.fr/sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Unicode text, UTF-8 text, with very long lines (13594)
Hash b20a6fd058d512c0fabb06aadb6a5eac
bdb546beb7836e17e88a9060abbcdcec530aa692
8d2ae1a34075fffb4f8c494c36eb186552a9827f2e8666ccdb5ce827915eb4a5
Analyzer Verdict Alert quad9 Sinkholed
GET /sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-1ce6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff
45.131.187.253200 OK 31 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format, TrueType, length 30716, version 1.0\012- data
Hash 7c8f834f4e70cb19b33082147bbf5088
3634a4709a8fe3968c972c879b0ad514218ae572
6c9c446322395751b8962ba1c108c2d828893c614dc99a9da85c264816ca188a
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 30716
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-77fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff
45.131.187.253200 OK 25 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format, TrueType, length 25072, version 1.0\012- data
Hash 25fb08ceaba4191aed4e2555219c4810
e74dd870dc4262c1980bfd57a84935069d08f15f
d84d71e171c2c269ad160798c6301daf2009bf17783d700490973f85854f9b55
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 25072
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-61f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff
45.131.187.253200 OK 31 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format, TrueType, length 31396, version 1.0\012- data
Hash 912a578723e2b64ab98fba9662707550
dca6ae60c99a61a96f69a6fe170b6dc9f92690af
20449902bed689ac02f6efc038b1862c05ecc260843e89551c5389bd1af24081
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 31396
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-7aa4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff
45.131.187.253200 OK 25 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format, TrueType, length 24808, version 1.0\012- data
Hash 8b18d65d6824460ad37616723e493bcd
da4032f9e0a9753489a58f81bf02930ed6952e04
c94ac252c2a3319406032032154badff85d43db816667ea65f7c97d951a33cb7
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 24808
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-60e8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js
45.131.187.253200 OK 81 kB URL HTTP/2 amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Hash 76a9e48d7165c2ddeed4edb2e42c0c59
c35e84a37b77fd8b24547c7dd4bf28cdb2a722a9
a3cab5c62b8e3b5936baa8adb96afcb6db7249368b268888d6a8beac3c235505
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2f50f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2
45.131.187.253200 OK 10 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format (Version 2), TrueType, length 10328, version 1.6554\012- data
Hash d8411d8bb1d6060de4fee4f3a20973cc
bda09aa58d916d532c9981c6e1c32215ab027742
417e156e282af4b7d146d16b8fc9505255de2d8d085d40e37afe5089b8fe9b77
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10328
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2858"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2
45.131.187.253200 OK 10 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format (Version 2), TrueType, length 10352, version 1.6554\012- data
Hash 4124088fdd8c315a6d096b65b6cbf428
0477e48f455cbfe729f90389d3fd8aaca6cc483b
732d5765c33eff81c7825dcc5e8cd1eda32dc04f39da7cae66accf9580b1e3a7
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10352
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2870"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2
45.131.187.253200 OK 10 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format (Version 2), TrueType, length 10200, version 1.6554\012- data
Hash 98b6233d6ac91b3538d60fee0ce3393b
dc7dc7c6c7307a7e0bec5f14e98a8d8ee519e4df
a51690a59260fd30a04d20955e8e5432f7f05f90c13f04c953789d67548a66b8
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10200
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-27d8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/thumbnails/image/twitter_logo_white.png
45.131.187.253200 OK 5.3 kB URL HTTP/2 amelipourtous.fr/sites/default/files/thumbnails/image/twitter_logo_white.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash cedcf74f0fea3299f59bb3c11ee5f303
1626dca6211236041dec59796f05042167c44f55
058a2aaae51543f61ebaa8bb12b0172982ec7b17217f58394588ac105e4083f5
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/thumbnails/image/twitter_logo_white.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 5326
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-14ce"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png
45.131.187.253200 OK 2.3 kB URL HTTP/2 amelipourtous.fr/sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash b8b6d31c81619407a95fd7b2c045b0a0
d2ab18854e0fa55fc30800af0bea5cae42255336
ab2d2a264e10dadd27653a6f41c87759af2c9064c110b467693f55e655f90e42
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 2322
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-912"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/thumbnails/image/fb-f-logo_white_50.png
45.131.187.253200 OK 1.3 kB URL HTTP/2 amelipourtous.fr/sites/default/files/thumbnails/image/fb-f-logo_white_50.png
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ea167e1b8f3edba0206fe07e5a0e89a3
13d7c4dbc043f22fc7a178dae111192a59c3ff7e
504b4de8f04d4c0c0c52a1fa8f1a745cf955fc4eda7fbf3cf28750675845ede6
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/thumbnails/image/fb-f-logo_white_50.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 1317
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-525"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/favicon.ico
45.131.187.253200 OK 4.3 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/favicon.ico
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 64939ecaeec8810b850c53dfcc7a121c
197f072d1459ee0f93604536ed61afaf22a758bc
9eb7011b23171aec853d7ea040a50c61cde14fff5763b899ba937fea956626ff
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /themes/custom/ameli/favicon.ico HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/vnd.microsoft.icon
content-length: 4286
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-10be"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2
45.131.187.253200 OK 28 kB URL HTTP/2 amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type Web Open Font Format (Version 2), TrueType, length 28188, version 3.0\012- data
Hash f5dd1b6aee7e582132f0707d6a392697
92ca02ed47b0e9296b0b36094926ac6d2ef8761f
35fa96ecaf1dec9b60fa590e153e173f3cc060e04c7108612f54ac46251cb935
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 28188
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-6e1c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f67e41cdd7e5f2aa8f93d031979c9109
5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6
608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4581
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:51:37 GMT
Last-Modified: Tue, 30 Aug 2022 20:35:16 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
amelipourtous.fr/ameli-menu/footer/rubrique_assure/2?rbd837
45.131.187.253404 Not Found 15 kB URL HTTP/2 amelipourtous.fr/ameli-menu/footer/rubrique_assure/2?rbd837
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 35db5053131680c7d3ad49addb60ebd5
9536e774719b2990daaf9c03f4c9cf6dd06e8e33
fee403c34885363bc56cb542a74a04e5a794e67c35818919a23845fcbd29922e
Analyzer Verdict Alert quad9 Sinkholed
GET /ameli-menu/footer/rubrique_assure/2?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js
45.131.187.253200 OK 46 kB URL HTTP/2 amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Hash beddedc2f05f500c814c6e59db2d93cc
fdca38df9828d08e9fde7c994dbd753bfc38fb52
9f77805dbee13227309f465e8f871bf18a4c87cf7168aaf510295508143fb2da
Analyzer Verdict Alert quad9 Sinkholed
GET /sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2f53f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken
185.221.85.4200 OK 77 B URL HTTP/1.1 bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken
IP 185.221.85.4:0
ASN #206998 New Relic International Limited
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.eu01.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 30 Aug 2022 21:51:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7430bfb1dc1e9938-ARN
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
cross-origin-resource-policy: cross-origin
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-envoy-upstream-service-time: 4
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JyvEFpth7vLpQ9Hx54JXKFgW8TSFWMP8fbUOmyrJjBhHLiEQJ4UATlZDwqKN0S3aWpHsdso2yktIDsMoOSBOvCU5K6OmG89fMH%2BrNqIfvlaK4RH%2Fi0Vli4ADh%2Fko%2FXKTw%2BskefLP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87425d52d274ccbc12298aa7a47395f2
b2866f84f93b73d97e9aecfa2293ff47131b6d67
2284c74b04493c7a67907b2477bac252832f3550c6a7e57c221abefc45a12549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8478
x-amzn-requestid: 8ae5ce3f-0d58-412b-84f1-579c5cf21fd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTWIH5JoAMFh9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d328d-7bb707102a3acb0320585b52;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:41:33 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: G0y5MCu_U2IUMTrWxPmyUefwSkF5tcEWpPh7sZ-Bn_1lXZv12tlpgQ==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:58:58 GMT
age: 85960
etag: "b2866f84f93b73d97e9aecfa2293ff47131b6d67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82bc1c69018845280d29653d6b2d6f8d
0c122f15422cab7ee3461e8fa657183ae54adcc5
e221638eff281c27ef4656f76e64963718186285c57e50a8958bd3065e662674
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9980
x-amzn-requestid: b9f6b930-9c47-41b9-879d-ce239e39f033
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTMGHlNoAMFuoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d324d-72ea52c010dff34438bbca28;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:40:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fHSa3fGJD-E4daWDZyyKGaErPw9YBbAwJ2uQ2dxbxl2UJCXXDRykag==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:04 GMT
age: 394
etag: "0c122f15422cab7ee3461e8fa657183ae54adcc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash feb433a0823cccb81dc4c5fa13ba4ed2
143f7bb98f57f8e6189e73e75a9fc93d29548962
09a5ddc32918b441b6d3ce3eed211d674d3844db6770e06bb3fecb86cc85771a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 2c4357d3-5c22-465a-a65a-e281d87c5305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTxZGYEIAMFeZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c666f-36b5010a793ab9c87182a895;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Y3cwsCGFKFQYWkxG96XsjTJMrCMccbdhjRvbB04PCNF2YupDcEcng==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:33:49 GMT
age: 51469
etag: "143f7bb98f57f8e6189e73e75a9fc93d29548962"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0502c5060f29d82fd10f9f79459e2ce0
110f2eecf72c6b89f250ebefeff5ef664dc2f3f6
f722656c432bbec2baa63b6edc4116c1996850462864456105d9fea9c3bc7ff4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10056
x-amzn-requestid: 2eb7bbf2-47ad-4f80-98e8-ecb45e98961b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xguh2H_woAMFXnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309c472-7dda060b4e7c81262aef3421;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1cunCq4Z1J-oQSmTlcAtgfXO0A4_XpHKl2UHpRCbf75--3eHEIgZGQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 11:39:46 GMT
age: 36712
etag: "110f2eecf72c6b89f250ebefeff5ef664dc2f3f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9f9132960db725a095b0db1773dc6f69
bf1d4347e1641da5aebe6ae438c0431232ae6242
0e0b84df674d48517a04819604deb555c904518f093784691de4914b6ddb9e9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10672
x-amzn-requestid: 9044b578-ffc7-4890-a16f-bf6d5e242f46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWcEUnoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-4397932f1417f6ab2463c4b0;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uc8twk9uXve3wFxTvsZa_sg-aduiVBxXjTvOdqBc_BZmgw4BldMyHQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:15:20 GMT
age: 52578
etag: "bf1d4347e1641da5aebe6ae438c0431232ae6242"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91310bc1fb5ae0efa502a9bafe046399
ec2a4baf0a21c1738a541d89756cccd6f3bef5fd
5fe0511116c6bd2d6e668c69764905c3a5c93fa23a4dc207b0f4b1604783ceb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5925
x-amzn-requestid: 15e5a8fd-8a14-486d-9e83-7da3dafd1713
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpSfZEEooAMFbeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d312f-05652d4e06746e8b4f4be29b;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:35:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bYTWcGb1-aWdEhGox1If7F0NpZ0JDobDMZK6l0J7a2tb9_ejGKDiDQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:09 GMT
age: 389
etag: "ec2a4baf0a21c1738a541d89756cccd6f3bef5fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
45.131.187.253200 OK 0 B URL HTTP/2 amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-78a33"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/
45.131.187.253200 OK 0 B IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:10 GMT
content-type: text/html
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2d68f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css
45.131.187.253200 OK 0 B URL HTTP/2 amelipourtous.fr/sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-6c92"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js
45.131.187.253200 OK 0 B URL HTTP/2 amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-f8b1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509
45.131.187.253404 Not Found 0 B URL HTTP/2 amelipourtous.fr/libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET /libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/ameli-menu/menu/rubrique_assure/3?rbd837
45.131.187.253404 Not Found 0 B URL HTTP/2 amelipourtous.fr/ameli-menu/menu/rubrique_assure/3?rbd837
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET /ameli-menu/menu/rubrique_assure/3?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js
45.131.187.253200 OK 0 B URL HTTP/2 amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET /libraries/tarteaucitron/tarteaucitrona4f0.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-1a586"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/ameli-menu/menu_mobile/rubrique_assure/3?rbd837
45.131.187.253404 Not Found 0 B URL HTTP/2 amelipourtous.fr/ameli-menu/menu_mobile/rubrique_assure/3?rbd837
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert openphish French Health Insurance
quad9 Sinkholed
GET /ameli-menu/menu_mobile/rubrique_assure/3?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837
45.131.187.253200 OK 0 B URL HTTP/2 amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET /themes/custom/ameli/js/menuce6f.js?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-ba5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
amelipourtous.fr/ameli-actualite/rubrique_assure/0/block_en_bref?1651679786
45.131.187.253404 Not Found 0 B URL HTTP/2 amelipourtous.fr/ameli-actualite/rubrique_assure/0/block_en_bref?1651679786
IP 45.131.187.253:0
ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Analyzer Verdict Alert quad9 Sinkholed
GET /ameli-actualite/rubrique_assure/0/block_en_bref?1651679786 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2