Report - amelipourtous.fr/

Report Overview

Submitted URL
amelipourtous.fr/
IP
45.131.187.253
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED
Submitted
2022-08-30 21:51:46
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
142

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-06T05:09:34Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-06T05:10:30Z	401 B	5.8 kB	143.204.55.110
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-06T05:09:03Z	2.3 kB	6.2 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-06T05:09:43Z	321 B	229 B	34.117.237.239
amelipourtous.fr	unknown			22 kB	971 kB	45.131.187.253
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-06T06:00:56Z	329 B	737 B	93.184.220.29
bam.eu01.nr-data.net	9782	2018-05-17T14:36:00Z	2023-03-06T05:26:22Z	882 B	982 B	185.221.85.4
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-06T05:09:35Z	3.2 kB	60 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance
2022-08-30	medium	amelipourtous.fr/	French Health Insurance

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed
2022-08-30	medium	amelipourtous.fr	Sinkholed

JavaScript (13)

	URL	Size	First Seen	Last Seen
	amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js	194 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen72 Hash 7b75151624cf8d1f022d58514ce61f22 27111aaa4d9fb6a23659d8efb3cbdad61c2b18aa 3f148ab86f4664aaec3ef32c3529cd4b9968957fd74856a79bab264e70d37f53 Loading...

	amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12	1.0 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12 IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen77 Hash 6743f65284c1c03273872c2965940bda d6a603c3c5438606eaba9f2ac5fdee84c7f87874 31317a75136cf0812fcc98ada50fa0785accb01bcf9bddefd203e5dac3be15a9 Loading...

	amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12	961 B	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12 IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen74 Hash 779c599b746b19858bbb530581e2433f 5f9ef133d3d20060186d505ba63d1ede1e43fdc7 da61616ca4e51d55638c3c3ff0b94e77d27ad62d415f49fd84a3c5a9a17255c3 Loading...

	amelipourtous.fr/	67 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/ IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen52 Hash 76a19a88ada7830fe02a9cee511b78b9 f63c5faff3a19812b61dae28d3ae43ae4cf842d7 394d8990659fe0762643e03e06698dd5fd64e4274ff7135938ccdc50e9b8a5f8 Loading...

	amelipourtous.fr/	300 B	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/ IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen52 Hash 6822400e5dd29f66e28ce88cba97f8f6 138e63ea9d948875df682f83409d14a92279b994 2ae256335f8fd4ded9a62200f233086d785ff443e626f657cb9c69bd370e3fdd Loading...

	amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js	108 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen59 Hash 45aae2bf019dcfda62eac50ef782e5a2 6910bc2bc1166af2993df34bd717dfd0abd6388e 04bafe11986495786a314879ae430c191f7c04bbccd74a849be51f36809fc687 Loading...

	amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js	194 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen101 Hash ca6eaf923db0fada1640a12ac651540a 193f057ac7c33320ddb65fd992abca07e6034456 a11774aa67a87e1e30c2467f19ff83ec6c13bd815485b12a7ed5bba1038b7409 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 05:06:06 Times Seen37083725 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	amelipourtous.fr/	413 B	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/ IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen55 Hash 5de747dc080cfb3f9ba70704254d593e fdf12e3729e639b7609d8ba26e8dd2706873697f e03a0db99d78a252d489f9e7cab6c52a23624498bcae455a7909393c00b331f9 Loading...

	js-agent.newrelic.com/nr-1216.min.js	39 kB	2023-03-07	2023-12-02
Pretty URL js-agent.newrelic.com/nr-1216.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-12-02 09:02:29 Times Seen204 Hash 9f533d8cd24b2c5e3b4dc886ecbd43e8 4aaad79f222fbcf885679bb30ac0cb6c14ec06eb 6f973e7d75a7e6f6e59708f19631c8890034db5debb4d04f189deb53c114e708 Loading...

	amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js	64 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen20 Hash 51d670152f1d2de6bb845b3153d95c21 c7340f1ea520b6be0d578a51a5c056c58d995349 c9aaf20ce39ca94ff54fe27b14e84dca081fc9b0f82ac4c4d7b8d3319f526205 Loading...

	amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837	3.0 kB	2023-03-07	2024-01-26
Pretty URL amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837 IP 45.131.187.253 ASN #137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:21 Last Seen2024-01-26 16:03:51 Times Seen72 Hash 6ba690f7539b32933372078c5e4d1725 e0562f4c73aad39ef034b113794d040025b7a50f 56878a1f7cbacbdc705a420d5267be305c056df280650916168b37695db90a62 Loading...

	bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken IP 185.221.85.4 ASN #206998 New Relic International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

HTTP Transactions (66)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 30 Aug 2022 21:19:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aLcG3Cz8ON5eIPWp2XW4pFYtlVJqbG5zC1yKymOpWTS97Y90_aj6uA==
Age: 1935

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 29 Aug 2022 22:35:59 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vUQR740KoYVAiENAbbvT5MoAfRZwxzYaotRcUvex3aFa31TojAaIoA==
age: 83738
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2938
Expires: Tue, 30 Aug 2022 22:40:34 GMT
Date: Tue, 30 Aug 2022 21:51:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16962418c9afea34dd7526401a7149c3
f3abf5fc3f08c579e77037da29279b4b828e4745
027e853a6424528ae3cf2699c340dd21d212413e1d1dbbdc05c1c5bb977405b5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "027E853A6424528AE3CF2699C340DD21D212413E1D1DBBDC05C1C5BB977405B5"
Last-Modified: Sun, 28 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21505
Expires: Wed, 31 Aug 2022 03:50:01 GMT
Date: Tue, 30 Aug 2022 21:51:36 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:51:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/logo.svg

45.131.187.253

200 OK

23 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/logo.svg
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (22990), with no line terminators
Size
23 kB (22990 bytes)
Hash
309614868fce75b09d16465178bcb950
c206e69f3a7c3353d33dbc2a64ed2340b9648b7b
6fc88d127374d7fafc14c486675681cefacce89b7961fc1558b104368ad32db2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/logo.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 22990
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-59ce"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_1.png

45.131.187.253

200 OK

723 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_1.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
723 B (723 bytes)
Hash
1c3a691059e846736caef3d17a360519
453511e36db678b3a77124af4f697d82987393b1
97409f23aff1c1428275dff14a547f64c18b64ebb3cc3fbe0cf36f3117886d3e

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/telecommande_1.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 723
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2d3-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/mon-espace-sante.png

45.131.187.253

200 OK

608 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/mon-espace-sante.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
608 B (608 bytes)
Hash
8d39dfb4bdca7b65637fd3c860eda365
8a9f35c911a1d622d4dff40e90de7b7033fcf884
1d3d56b79295a4880f83fd3d2910d45a3b61e8090d1b55a4b8592f5b5531255b

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/mon-espace-sante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 608
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "260-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/contact.svg

45.131.187.253

200 OK

12 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/contact.svg
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
12 kB (12545 bytes)
Hash
85598c2d6e7ae18de80069db917d18a9
58aaf961633d0089cfd6ee5685865d303ae5dfd1
3c9b952c5f3f5fa966d9af774dc504462a198f4b75a4f9168100b08a22f1d8f6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/contact.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 12545
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-3101"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_3.png

45.131.187.253

200 OK

448 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_3.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
448 B (448 bytes)
Hash
858fe6e525a47c18c8dfd7f39e2a0ae5
fe34b1daa7f2c554cd3c08769acf674c945fe4d5
f134ef5eac4e75c5b04232a908e5820a7af17ccdf3336c730f3dbe6dc732620e

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/telecommande_3.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 448
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "1c0-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_5.png

45.131.187.253

200 OK

722 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_5.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
722 B (722 bytes)
Hash
219b6f9332d4271f3baa57f1518b9e88
2e9d66c614b05fe9459c263919ad7dce256eb1c5
08807b6dbb61fc5e066ca4f8e7a88c0932dc34d2cd12b0517c89f9ff33a9aec2

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/telecommande_5.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 722
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2d2-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_6.png

45.131.187.253

200 OK

706 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/telecommande/telecommande_6.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
706 B (706 bytes)
Hash
1802b81060e10dfbf321bf26cc5d0d25
39f7b1ceeffdae901e2cc2d8ca66404306bb30f5
1fa419dac7b93b687d68c8304e846dbed9fe6bd91f25597a117fbab2d30e0cdb

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/telecommande/telecommande_6.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 706
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2c2-5e6fded52f0dc"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/icone-alert-white.png

45.131.187.253

200 OK

712 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/icone-alert-white.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 64 x 57, 8-bit gray+alpha, non-interlaced\012- data
Size
712 B (712 bytes)
Hash
7b7ff036e18b23d0d34ba61fc7d53bc5
c4b3d8153aa6fef4cee6379bdd214150fa855ae2
216ad62585bd0260a9da24858ed58f5cbe32c2e4ad87e91d804d09717f40aad9

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/icone-alert-white.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 712
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "2c8-5e6fded52e13c"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sante-recosante.png

45.131.187.253

200 OK

11 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sante-recosante.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 439 x 322, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11203 bytes)
Hash
bcb257b6a124eb053c1cb1546b019cb5
26797075a23d425da3bc2a4a87c627c69ee910e6
020689c940f494cf0d063de0a04404b4b44d8d49194b650e93894679448748f4

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/outils-sante/outils-sante-recosante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 11203
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2bc3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/outils-sante/franceRecosante.png

45.131.187.253

200 OK

33 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/franceRecosante.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 242 x 208, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (32985 bytes)
Hash
63baa27fac9bd0ab121f4cc106f31747
b52907607a917838a85f49a44cbd94c1af70187d
d7bccd64dd7979627192319d9d2cfa7db03066ee99fb8752d0c2a7d0239fb096

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/outils-sante/franceRecosante.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 32985
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-80d9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire.png

45.131.187.253

200 OK

2.8 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 41 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2761 bytes)
Hash
303904aaf853a1aea4f1c257a83b2b5f
f5d05f8e5fa1c9a775b204d4c9dfc0e8e7d89457
33df36ed55cbd63831d64a18083dd1297a821cba56c7d8b8aa22d064f47e34c7

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/outils-sante/outils-annuaire.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 2761
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-ac9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire-image.png

45.131.187.253

200 OK

3.5 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-annuaire-image.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 58 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3499 bytes)
Hash
175282c10a79d665d68a5c3d09d99ed2
6f216cf0c8aac7c38a759b79dd248763432a6ad8
b9d5de52ff68278b6f0a13eb99bfdd4af84c9e2995ddb2a8504a1a4daba659bb

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/outils-sante/outils-annuaire-image.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 3499
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-dab"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sophia.png

45.131.187.253

200 OK

3.0 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/outils-sante/outils-sophia.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 60 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3023 bytes)
Hash
34c813ea8f458b7c4c3ef50529594c5c
16e28bb48015d359c506da759a06f344d968b293
4a8b8fdcde9cf27edd4f70795a3b1c3ced8e56950c24b74b84a416df693c8a1d

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/outils-sante/outils-sophia.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 3023
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-bcf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg

45.131.187.253

200 OK

26 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (26035)
Size
26 kB (26246 bytes)
Hash
381e33091e0774d59064b3b0cfd446a3
db6869462f5c72f11cfd427d01d72f11916e3478
97ae2ef28651fc17a197830e8bc6918bc9add749b2000d30ef4b5ebb21760d63

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/footer/logo-assurance-maladie-footer.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 26246
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-6686"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12

45.131.187.253

200 OK

440 B

URL HTTP/2
amelipourtous.fr/modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
ASCII text, with very long lines (661)
Size
440 B (440 bytes)
Hash
95ec5b5ce9cd27cbbff5dcffba0933fa
cb8437b504f4f94626bbce6973eab0bc34e1f6a1
7864fbd29749e47da978ce17fdb878790c6f1f03ca5885f8a74e1ad397ea8f3c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /modules/custom/ameli_menu/js/ameli_menu_update8f77.js?v=9.3.12 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
content-length: 440
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "3f7-5e6fded50aeaf-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12

45.131.187.253

200 OK

425 B

URL HTTP/2
amelipourtous.fr/modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
ASCII text, with very long lines (824)
Size
425 B (425 bytes)
Hash
bf86a3be803e5abd427f81f13ad59ffd
aa5d82402f4cb9e26137ef3976a8dfacc923ac40
08059f351f1370e0af1a2ca813e8fcc375a30d7c362434d165ddaef35df51e0c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /modules/custom/ameli_actualite/js/ameli_actualite_update8f77.js?v=9.3.12 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
content-length: 425
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "3c1-5e6fded50aeaf-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/footer/footer_lien_forum.png

45.131.187.253

200 OK

1.1 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/footer/footer_lien_forum.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 55 x 55, 8-bit gray+alpha, non-interlaced\012- data
Size
1.1 kB (1131 bytes)
Hash
9a524b412d0f399fa5575377765244a4
9973d9120adda8bfd264651914392a2270dec7ac
b70014ea02c995d069754f1263f2e362d8dc77788692090ded32afabdfe2fb9c

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/footer/footer_lien_forum.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 1131
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-46b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 30 Aug 2022 21:17:12 GMT
Expires: Tue, 30 Aug 2022 21:28:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gU_aIkJVTG0s_F9M0Epvq4JZvsXSVgzamYcdPpi4oYhCQjw8IdqV0g==
Age: 2064

amelipourtous.fr/themes/custom/ameli/images/footer/footer_logo_ss.svg

45.131.187.253

200 OK

402 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/footer/footer_logo_ss.svg
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8572)
Size
402 kB (402368 bytes)
Hash
f259af7e9e79d8aa7a8d8d188e1fd21f
c46455fbaee37802c25f5ccb0a205ce173cb8f8d
d1ead117c96b507d90c32b2f7b83a88ae9140d65be6cf0d5be14715dcb30447a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/footer/footer_logo_ss.svg HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/svg+xml
content-length: 402368
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-623c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css

45.131.187.253

200 OK

298 B

URL HTTP/2
amelipourtous.fr/sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
ASCII text, with very long lines (547), with no line terminators
Size
298 B (298 bytes)
Hash
841c80d9487a9ad068d33f29cd5519ca
17610d8b311556378a31d6b636672c86b3388cde
8d6e329ee15f2c2943e3f6959b18843a06adabdc5084e7a4b26663042b294e49

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/css/css_xmutLRkzUUx9Wpn-a6sViHjq2-_vLauUEtJ8IxcqHzw.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
content-length: 298
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "223-5e6fded51c7f5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/images/uk.png

45.131.187.253

200 OK

275 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/images/uk.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 32 x 16, 8-bit colormap, non-interlaced\012- data
Size
275 B (275 bytes)
Hash
84b72a42524b5670390adf73aaa074f5
c04077b4389a764b467860134d2e99410d0052d6
218f95b4c48d6cad016a6bf8e94101bab9651670f623997b0ee1bfdacec4d44b

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/images/uk.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 275
x-accel-version: 0.01
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "113-5e6fded52d19b"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff

45.131.187.253

200 OK

70 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format, TrueType, length 69880, version 1.0\012- data
Size
70 kB (69880 bytes)
Hash
023db09b1888a089c4729f183feb6e72
bc7017dfe5f08ae0a3456cdf5a17f0807263543a
6353b6bc05de7c03bbc2fd25408a160053748a5ad079ab2eae0239eb4ff9c97f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/roboto/roboto-Medium-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 69880
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-110f8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js

45.131.187.253

200 OK

39 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Unicode text, UTF-8 text, with very long lines (13594)
Size
39 kB (38866 bytes)
Hash
b20a6fd058d512c0fabb06aadb6a5eac
bdb546beb7836e17e88a9060abbcdcec530aa692
8d2ae1a34075fffb4f8c494c36eb186552a9827f2e8666ccdb5ce827915eb4a5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/js/js_Dyurn0ZL9fXM3LrHm1C3gxFZ1UMAiZ45i2tJf-SxksM.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-1ce6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff

45.131.187.253

200 OK

31 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format, TrueType, length 30716, version 1.0\012- data
Size
31 kB (30716 bytes)
Hash
7c8f834f4e70cb19b33082147bbf5088
3634a4709a8fe3968c972c879b0ad514218ae572
6c9c446322395751b8962ba1c108c2d828893c614dc99a9da85c264816ca188a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/raleway/raleway-bold-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 30716
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-77fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff

45.131.187.253

200 OK

25 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format, TrueType, length 25072, version 1.0\012- data
Size
25 kB (25072 bytes)
Hash
25fb08ceaba4191aed4e2555219c4810
e74dd870dc4262c1980bfd57a84935069d08f15f
d84d71e171c2c269ad160798c6301daf2009bf17783d700490973f85854f9b55

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/roboto/Roboto-Regular-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 25072
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-61f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff

45.131.187.253

200 OK

31 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format, TrueType, length 31396, version 1.0\012- data
Size
31 kB (31396 bytes)
Hash
912a578723e2b64ab98fba9662707550
dca6ae60c99a61a96f69a6fe170b6dc9f92690af
20449902bed689ac02f6efc038b1862c05ecc260843e89551c5389bd1af24081

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/raleway/raleway-medium-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 31396
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-7aa4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff

45.131.187.253

200 OK

25 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format, TrueType, length 24808, version 1.0\012- data
Size
25 kB (24808 bytes)
Hash
8b18d65d6824460ad37616723e493bcd
da4032f9e0a9753489a58f81bf02930ed6952e04
c94ac252c2a3319406032032154badff85d43db816667ea65f7c97d951a33cb7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/roboto/Roboto-Bold-webfont.woff HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff
content-length: 24808
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-60e8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js

45.131.187.253

200 OK

81 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
data
Size
81 kB (81262 bytes)
Hash
76a9e48d7165c2ddeed4edb2e42c0c59
c35e84a37b77fd8b24547c7dd4bf28cdb2a722a9
a3cab5c62b8e3b5936baa8adb96afcb6db7249368b268888d6a8beac3c235505

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/js/js_7un_sMNN5SHDSJ_QntvlE5gTK3fBCkorWiBPuRoAJc0.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2f50f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2

45.131.187.253

200 OK

10 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format (Version 2), TrueType, length 10328, version 1.6554\012- data
Size
10 kB (10328 bytes)
Hash
d8411d8bb1d6060de4fee4f3a20973cc
bda09aa58d916d532c9981c6e1c32215ab027742
417e156e282af4b7d146d16b8fc9505255de2d8d085d40e37afe5089b8fe9b77

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/opensans/opensans-semibold-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10328
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2858"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2

45.131.187.253

200 OK

10 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format (Version 2), TrueType, length 10352, version 1.6554\012- data
Size
10 kB (10352 bytes)
Hash
4124088fdd8c315a6d096b65b6cbf428
0477e48f455cbfe729f90389d3fd8aaca6cc483b
732d5765c33eff81c7825dcc5e8cd1eda32dc04f39da7cae66accf9580b1e3a7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/opensans/opensans-regular-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10352
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-2870"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2

45.131.187.253

200 OK

10 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format (Version 2), TrueType, length 10200, version 1.6554\012- data
Size
10 kB (10200 bytes)
Hash
98b6233d6ac91b3538d60fee0ce3393b
dc7dc7c6c7307a7e0bec5f14e98a8d8ee519e4df
a51690a59260fd30a04d20955e8e5432f7f05f90c13f04c953789d67548a66b8

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/opensans/opensans-light-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 10200
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-27d8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/thumbnails/image/twitter_logo_white.png

45.131.187.253

200 OK

5.3 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/thumbnails/image/twitter_logo_white.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
5.3 kB (5326 bytes)
Hash
cedcf74f0fea3299f59bb3c11ee5f303
1626dca6211236041dec59796f05042167c44f55
058a2aaae51543f61ebaa8bb12b0172982ec7b17217f58394588ac105e4083f5

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/thumbnails/image/twitter_logo_white.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 5326
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-14ce"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png

45.131.187.253

200 OK

2.3 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2322 bytes)
Hash
b8b6d31c81619407a95fd7b2c045b0a0
d2ab18854e0fa55fc30800af0bea5cae42255336
ab2d2a264e10dadd27653a6f41c87759af2c9064c110b467693f55e655f90e42

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/thumbnails/image/linkedin-f-logo_white_50.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 2322
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-912"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/thumbnails/image/fb-f-logo_white_50.png

45.131.187.253

200 OK

1.3 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/thumbnails/image/fb-f-logo_white_50.png
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1317 bytes)
Hash
ea167e1b8f3edba0206fe07e5a0e89a3
13d7c4dbc043f22fc7a178dae111192a59c3ff7e
504b4de8f04d4c0c0c52a1fa8f1a745cf955fc4eda7fbf3cf28750675845ede6

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/thumbnails/image/fb-f-logo_white_50.png HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/png
content-length: 1317
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-525"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/favicon.ico

45.131.187.253

200 OK

4.3 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/favicon.ico
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
64939ecaeec8810b850c53dfcc7a121c
197f072d1459ee0f93604536ed61afaf22a758bc
9eb7011b23171aec853d7ea040a50c61cde14fff5763b899ba937fea956626ff

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/favicon.ico HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: image/vnd.microsoft.icon
content-length: 4286
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-10be"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2

45.131.187.253

200 OK

28 kB

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
Web Open Font Format (Version 2), TrueType, length 28188, version 3.0\012- data
Size
28 kB (28188 bytes)
Hash
f5dd1b6aee7e582132f0707d6a392697
92ca02ed47b0e9296b0b36094926ac6d2ef8761f
35fa96ecaf1dec9b60fa590e153e173f3cc060e04c7108612f54ac46251cb935

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/fonts/raleway/raleway-lightitalic-webfont.woff2 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: font/woff2
content-length: 28188
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: "63063cce-6e1c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f67e41cdd7e5f2aa8f93d031979c9109
5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6
608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4581
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:51:37 GMT
Last-Modified: Tue, 30 Aug 2022 20:35:16 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

amelipourtous.fr/ameli-menu/footer/rubrique_assure/2?rbd837

45.131.187.253

404 Not Found

15 kB

URL HTTP/2
amelipourtous.fr/ameli-menu/footer/rubrique_assure/2?rbd837
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
15 kB (14761 bytes)
Hash
35db5053131680c7d3ad49addb60ebd5
9536e774719b2990daaf9c03f4c9cf6dd06e8e33
fee403c34885363bc56cb542a74a04e5a794e67c35818919a23845fcbd29922e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ameli-menu/footer/rubrique_assure/2?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js

45.131.187.253

200 OK

46 kB

URL HTTP/2
amelipourtous.fr/sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type
ASCII text
Size
46 kB (45959 bytes)
Hash
beddedc2f05f500c814c6e59db2d93cc
fdca38df9828d08e9fde7c994dbd753bfc38fb52
9f77805dbee13227309f465e8f871bf18a4c87cf7168aaf510295508143fb2da

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/js/js_4xNZJpfp2oDly0xk8Q_5DcDqWDiuvYr6_EokoeMIl_8.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2f53f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken

185.221.85.4

200 OK

77 B

URL HTTP/1.1
bam.eu01.nr-data.net/1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken
IP
185.221.85.4:0
ASN
#206998 New Relic International Limited

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef

HTTP Headers

GET /1/NRJS-edf8db728d00528ee3f?a=309613575&v=1216.487a282&to=MhBSZQoZWkdXBhFRCwtacVIMEVtaGRUEXwE6FlFSEB0%3D&rst=1358&ck=0&ref=https://amelipourtous.fr/&ap=27&be=585&fe=1220&dc=1060&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1661896295988,%22n%22:0,%22f%22:-8,%22dn%22:49,%22dne%22:50,%22c%22:50,%22s%22:94,%22ce%22:480,%22rq%22:480,%22rp%22:559,%22rpe%22:559,%22dl%22:571,%22di%22:1055,%22ds%22:1059,%22de%22:1147,%22dc%22:1219,%22l%22:1219,%22le%22:1223%7D,%22navigation%22:%7B%7D%7D&fcp=1004&at=HldRE0IDSUk%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.eu01.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 30 Aug 2022 21:51:37 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7430bfb1dc1e9938-ARN
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
cross-origin-resource-policy: cross-origin
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
x-envoy-upstream-service-time: 4
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JyvEFpth7vLpQ9Hx54JXKFgW8TSFWMP8fbUOmyrJjBhHLiEQJ4UATlZDwqKN0S3aWpHsdso2yktIDsMoOSBOvCU5K6OmG89fMH%2BrNqIfvlaK4RH%2Fi0Vli4ADh%2Fko%2FXKTw%2BskefLP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5594
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:51:38 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8478 bytes)
Hash
87425d52d274ccbc12298aa7a47395f2
b2866f84f93b73d97e9aecfa2293ff47131b6d67
2284c74b04493c7a67907b2477bac252832f3550c6a7e57c221abefc45a12549

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8478
x-amzn-requestid: 8ae5ce3f-0d58-412b-84f1-579c5cf21fd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTWIH5JoAMFh9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d328d-7bb707102a3acb0320585b52;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:41:33 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: G0y5MCu_U2IUMTrWxPmyUefwSkF5tcEWpPh7sZ-Bn_1lXZv12tlpgQ==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:58:58 GMT
age: 85960
etag: "b2866f84f93b73d97e9aecfa2293ff47131b6d67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9980 bytes)
Hash
82bc1c69018845280d29653d6b2d6f8d
0c122f15422cab7ee3461e8fa657183ae54adcc5
e221638eff281c27ef4656f76e64963718186285c57e50a8958bd3065e662674

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9980
x-amzn-requestid: b9f6b930-9c47-41b9-879d-ce239e39f033
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTMGHlNoAMFuoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d324d-72ea52c010dff34438bbca28;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:40:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fHSa3fGJD-E4daWDZyyKGaErPw9YBbAwJ2uQ2dxbxl2UJCXXDRykag==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:04 GMT
age: 394
etag: "0c122f15422cab7ee3461e8fa657183ae54adcc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8909 bytes)
Hash
feb433a0823cccb81dc4c5fa13ba4ed2
143f7bb98f57f8e6189e73e75a9fc93d29548962
09a5ddc32918b441b6d3ce3eed211d674d3844db6770e06bb3fecb86cc85771a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 2c4357d3-5c22-465a-a65a-e281d87c5305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTxZGYEIAMFeZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c666f-36b5010a793ab9c87182a895;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Y3cwsCGFKFQYWkxG96XsjTJMrCMccbdhjRvbB04PCNF2YupDcEcng==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:33:49 GMT
age: 51469
etag: "143f7bb98f57f8e6189e73e75a9fc93d29548962"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10056 bytes)
Hash
0502c5060f29d82fd10f9f79459e2ce0
110f2eecf72c6b89f250ebefeff5ef664dc2f3f6
f722656c432bbec2baa63b6edc4116c1996850462864456105d9fea9c3bc7ff4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10056
x-amzn-requestid: 2eb7bbf2-47ad-4f80-98e8-ecb45e98961b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xguh2H_woAMFXnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309c472-7dda060b4e7c81262aef3421;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1cunCq4Z1J-oQSmTlcAtgfXO0A4_XpHKl2UHpRCbf75--3eHEIgZGQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 11:39:46 GMT
age: 36712
etag: "110f2eecf72c6b89f250ebefeff5ef664dc2f3f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10672 bytes)
Hash
9f9132960db725a095b0db1773dc6f69
bf1d4347e1641da5aebe6ae438c0431232ae6242
0e0b84df674d48517a04819604deb555c904518f093784691de4914b6ddb9e9d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10672
x-amzn-requestid: 9044b578-ffc7-4890-a16f-bf6d5e242f46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWcEUnoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-4397932f1417f6ab2463c4b0;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uc8twk9uXve3wFxTvsZa_sg-aduiVBxXjTvOdqBc_BZmgw4BldMyHQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:15:20 GMT
age: 52578
etag: "bf1d4347e1641da5aebe6ae438c0431232ae6242"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5925 bytes)
Hash
91310bc1fb5ae0efa502a9bafe046399
ec2a4baf0a21c1738a541d89756cccd6f3bef5fd
5fe0511116c6bd2d6e668c69764905c3a5c93fa23a4dc207b0f4b1604783ceb6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5925
x-amzn-requestid: 15e5a8fd-8a14-486d-9e83-7da3dafd1713
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpSfZEEooAMFbeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d312f-05652d4e06746e8b4f4be29b;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:35:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bYTWcGb1-aWdEhGox1If7F0NpZ0JDobDMZK6l0J7a2tb9_ejGKDiDQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:09 GMT
age: 389
etag: "ec2a4baf0a21c1738a541d89756cccd6f3bef5fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/css/css_BUorv_JgaLLZ7H66Lg2Q9qkSmF-N60qmyitgZjsGMnk.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-78a33"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:10 GMT
content-type: text/html
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-2d68f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/css/css_WShWl_AdJMGy6G1jmegavaGETwAc3F4pC_5dJj4a7eo.css HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-6c92"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /sites/default/files/js/js_Jb8mdtEcLljPOjgccSLgZFP3pLoMKZH5lHNBAEzAze8.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-f8b1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509

45.131.187.253

404 Not Found

0 B

URL HTTP/2
amelipourtous.fr/libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /libraries/tarteaucitron/lang/tarteaucitron.en.js?v=20210509 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/ameli-menu/menu/rubrique_assure/3?rbd837

45.131.187.253

404 Not Found

0 B

URL HTTP/2
amelipourtous.fr/ameli-menu/menu/rubrique_assure/3?rbd837
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ameli-menu/menu/rubrique_assure/3?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/libraries/tarteaucitron/tarteaucitrona4f0.js
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /libraries/tarteaucitron/tarteaucitrona4f0.js HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-1a586"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/ameli-menu/menu_mobile/rubrique_assure/3?rbd837

45.131.187.253

404 Not Found

0 B

URL HTTP/2
amelipourtous.fr/ameli-menu/menu_mobile/rubrique_assure/3?rbd837
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	French Health Insurance
quad9	Sinkholed

HTTP Headers

GET /ameli-menu/menu_mobile/rubrique_assure/3?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837

45.131.187.253

200 OK

0 B

URL HTTP/2
amelipourtous.fr/themes/custom/ameli/js/menuce6f.js?rbd837
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /themes/custom/ameli/js/menuce6f.js?rbd837 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://amelipourtous.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 14:59:26 GMT
etag: W/"63063cce-ba5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

amelipourtous.fr/ameli-actualite/rubrique_assure/0/block_en_bref?1651679786

45.131.187.253

404 Not Found

0 B

URL HTTP/2
amelipourtous.fr/ameli-actualite/rubrique_assure/0/block_en_bref?1651679786
IP
45.131.187.253:0
ASN
#137523 HONGKONG CLOUD NETWORK TECHNOLOGY CO., LIMITED

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ameli-actualite/rubrique_assure/0/block_en_bref?1651679786 HTTP/1.1
Host: amelipourtous.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VgAGVVZUDBADVFhUBgICUVE=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://amelipourtous.fr/
Cookie: ameli_espace=rubrique_assure; ameli_localisation_counter=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Tue, 30 Aug 2022 21:52:11 GMT
content-type: text/html
last-modified: Tue, 09 Aug 2022 13:07:18 GMT
etag: W/"328-5e5ce9cb8714d"
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP