www.ercuis.com/napkin-ring-9.html
163.172.51.87301 Moved Permanently 249 B URL HTTP/1.1 www.ercuis.com/napkin-ring-9.html
IP 163.172.51.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 15163babee209b624b67c77356babd75
378d2c0dcb4bda3b714964ae65db4a2ba1cc7e7e
7e9ce32c9cb6faffb01b21923a648def54b06423fa3a61185e72ae332d62f421
Analyzer Verdict Alert fortinet Phishing
GET /napkin-ring-9.html HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Sep 2022 11:54:30 GMT
Server: Apache
Location: https://www.ercuis.com/napkin-ring-9.html
Content-Length: 249
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 11:24:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uGLThVP300q4Heh6QTWgbohuyJIGgdK4D5F21u5zeaBnFOI70OMzzw==
Age: 1815
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3966
Expires: Sun, 04 Sep 2022 13:00:37 GMT
Date: Sun, 04 Sep 2022 11:54:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0TUXpz9WoPiHO01PRFjHnOflBx0R_-C_ils7UWVaZP9WQ75NRNEddA==
age: 38354
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 11:54:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9d14abb6abaf68711022fa8f89bf252
8b53bfab9a31eeff4a5454de6b856b9bca471bdb
964b566fe4059c4f70212527598a26191e72cac10a5952e150c17e3ce6b13c51
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "964B566FE4059C4F70212527598A26191E72CAC10A5952E150C17E3CE6B13C51"
Last-Modified: Sun, 04 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Sun, 04 Sep 2022 14:02:59 GMT
Date: Sun, 04 Sep 2022 11:54:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 04 Sep 2022 11:38:16 GMT
Cache-Control: max-age=3600
Expires: Sun, 04 Sep 2022 12:02:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 696-m8MbXirFs0wanxOFEhL_5Wnh0VYIVtxv4J8ytn0sZQeb5Gitow==
Age: 975
www.ercuis.com/napkin-ring-9.html
163.172.51.87200 OK 12 kB URL HTTP/2 www.ercuis.com/napkin-ring-9.html
IP 163.172.51.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7407), with CRLF, LF line terminators
Hash b44eda9c3c89a9ea82cf2a5cc0fe05f8
2ade194005d7621c3014e462c286cb3fa89f39e3
aeb0a27a0c9e356df5ad533ef7249707568b28c5b2698642a70d65df0f4fe818
Analyzer Verdict Alert fortinet Phishing
GET /napkin-ring-9.html HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-frame-options: SAMEORIGIN
set-cookie: frontend=kq8kfrmh1hccricoaprlndihe4; expires=Sun, 04-Sep-2022 12:54:31 GMT; Max-Age=3600; path=/
frontend_cid=pbyd9K1xEIBi7NKU; expires=Sun, 04-Sep-2022 12:54:31 GMT; Max-Age=3600; path=/; domain=www.ercuis.com; secure
vary: Accept-Encoding
content-encoding: gzip
content-length: 12208
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
www.ercuis.com/media/css_secure/dac0d3d1be6566f4a19a479bc48ad805.css
163.172.51.87200 OK 1.4 kB URL HTTP/2 www.ercuis.com/media/css_secure/dac0d3d1be6566f4a19a479bc48ad805.css
IP 163.172.51.87:0
Hash aa89873a5fc12fc14e2b25f6a0f93537
93bbeb433114a94953fd92d96328b85a8d359322
533d81773b44d0a2443f1c83f2f1c0697a0edf9fd03e4f08f0f2d80531fd6c34
GET /media/css_secure/dac0d3d1be6566f4a19a479bc48ad805.css HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Mon, 24 May 2021 09:54:49 GMT
etag: "1786-5c310667e4836-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1391
content-type: text/css
X-Firefox-Spdy: h2
www.ercuis.com/js/lib/ccard.js
163.172.51.87200 OK 437 B URL HTTP/2 www.ercuis.com/js/lib/ccard.js
IP 163.172.51.87:0
Hash 9edfcf66700306aa7667e5de6e15dcf9
72252a73d76c6120af38bf0c1957c7f4546f25ad
fda007ea78b0d46a8b8bfeb949269383f7557b8fb76e2c6d6a95ab428751d53e
Analyzer Verdict Alert fortinet Phishing
GET /js/lib/ccard.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 20 Sep 2020 15:49:07 GMT
etag: "2eb-5afc0ac9163f4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 437
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/scriptaculous/builder.js
163.172.51.87200 OK 1.8 kB URL HTTP/2 www.ercuis.com/js/scriptaculous/builder.js
IP 163.172.51.87:0
Hash 17c46bd491c5c54b17679c33e66cf546
92a0929557c3601927b5980c011b08c015140a35
ab54b4d1706a220ae210ef21ebd4ae25d0bbd487af385b21e5a3ac8e41ed21d0
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous/builder.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "1288-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1842
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/scriptaculous/slider.js
163.172.51.87200 OK 2.7 kB URL HTTP/2 www.ercuis.com/js/scriptaculous/slider.js
IP 163.172.51.87:0
Hash 07cba0b0e65a459b40791723a5473a03
a4b9e25c669273dabece1ea8988690d79f767724
61ac58ed4e10ac7a611277aaad5f1fe1bafa90b989c6f24d45148402516577a8
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous/slider.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "285b-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2707
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/prototype/validation.js
163.172.51.87200 OK 9.3 kB URL HTTP/2 www.ercuis.com/js/prototype/validation.js
IP 163.172.51.87:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (1257)
Hash 3651df3446e3679fcff475c87ec50606
b828c9dc9957d08a32c48d0373a95c2e2f888104
93acc708df9b82795896cbca1b9c6c8c1a0da40d7f033ea5f1faeaa4534be1b0
Analyzer Verdict Alert fortinet Phishing
GET /js/prototype/validation.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "a6b9-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9291
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/scriptaculous/effects.js
163.172.51.87200 OK 8.8 kB URL HTTP/2 www.ercuis.com/js/scriptaculous/effects.js
IP 163.172.51.87:0
Hash 0ed347d877593a82c13c33a95ff9a0df
20cf00fc9438ae281e78380acb69e9de13a4862d
f8a07ef851ac72dc5b6e2a4db1d5b75a3ba5f3c0d9e79c3b7928ad83a5d9f152
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous/effects.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "9759-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8782
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/scriptaculous/dragdrop.js
163.172.51.87200 OK 7.6 kB URL HTTP/2 www.ercuis.com/js/scriptaculous/dragdrop.js
IP 163.172.51.87:0
Hash 9f80f1c9a3304fe61fe2a74858ba813c
2a483821631644b9bd4540aadb7dadefe82df3d1
cf29b8e4cc3777dcdf3bdf15821e072de0f0f57526998e623f7f19646f0fc1e3
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous/dragdrop.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "795a-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7564
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/scriptaculous/controls.js
163.172.51.87200 OK 9.0 kB URL HTTP/2 www.ercuis.com/js/scriptaculous/controls.js
IP 163.172.51.87:0
Hash fba1c6412c72d1501bd2a10013ebefdc
c78a131ce1fdaa1baeb72a7121da533db3e1a3df
b70cc800ef2d63c25054b5af320b321ed7e45d01ba008aeebed3225d5c9403ac
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous/controls.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "87ed-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9049
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4728
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:31 GMT
Last-Modified: Sun, 04 Sep 2022 10:35:43 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.ercuis.com/js/prototype/prototype.js
163.172.51.87200 OK 37 kB URL HTTP/2 www.ercuis.com/js/prototype/prototype.js
IP 163.172.51.87:0
Hash 1f7bcf61514c13626d279977738c8ca4
889ffb94a9a243617f6af51910412787100ec974
88dcbad43d2f4755b444fdb62329378b825dd6f4962805b653164f4282027f16
Analyzer Verdict Alert fortinet Phishing
GET /js/prototype/prototype.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "27df1-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 37405
content-type: application/javascript
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ae802d8e8fd778efea137f4c47d9ee43
8a2594654f58868f597046d5460b4b8daa87baca
dff8c48d86c7dc83027af6cfdb5b059a4d11e36e1d4b91d1a4da865683a8289a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ercuis.com/js/mage/cookies.js
163.172.51.87200 OK 1.1 kB URL HTTP/2 www.ercuis.com/js/mage/cookies.js
IP 163.172.51.87:0
Hash 7a924255fb8b4d213f44ae8a1cc01521
42b122ca56c1d71d6ec03b2bd6f5bc302ec4ca50
542b2776078c4a8f305828b88ea61cbecd261320bab72a3bf24dd18fa95fbc1e
Analyzer Verdict Alert fortinet Phishing
GET /js/mage/cookies.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 20 Sep 2020 15:49:14 GMT
etag: "a25-5afc0acfbe5fd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1057
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/mage/translate.js
163.172.51.87200 OK 742 B URL HTTP/2 www.ercuis.com/js/mage/translate.js
IP 163.172.51.87:0
Hash ea26d5f31de0eb00ae0eb3523756834e
1d2e141315fed6dcfbb25351549dc37d38a1e066
9a693096eee2c67e505d5bb33977b9eb6836f68cc173475c8cba107215fd4b63
Analyzer Verdict Alert fortinet Phishing
GET /js/mage/translate.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 20 Sep 2020 15:49:14 GMT
etag: "62c-5afc0acfd0ede-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 742
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/varien/menu.js
163.172.51.87200 OK 1.5 kB URL HTTP/2 www.ercuis.com/js/varien/menu.js
IP 163.172.51.87:0
Hash ed24c5a0e90fb15e3b5c019febd3fc81
67b9bb6cac7bee2ab4ce93991c0294f7798b3b5f
e9b0f7e8788e0564beefb5b5d9e1608d02152592249f8e6675fb6662fe020c1f
Analyzer Verdict Alert fortinet Phishing
GET /js/varien/menu.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "114a-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1465
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/calendar/calendar-setup.js
163.172.51.87200 OK 1.7 kB URL HTTP/2 www.ercuis.com/js/calendar/calendar-setup.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (4014)
Hash 9a636ad8144fbefc02bc7ae3aa7a0715
59362dcfd35621d1aa92ad6e7bacee9f257c0a9f
bcdd831ecc19ddc8fb355697021ca5ab8d7f44827489138bf65143f76b8cae33
Analyzer Verdict Alert fortinet Phishing
GET /js/calendar/calendar-setup.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "137a-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1720
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/jquery.icheck.min.js
163.172.51.87200 OK 2.0 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jquery.icheck.min.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (513)
Hash a6ad67b849ceaa40c6af5facf22f9c20
857609db1932a5a3335f97be82e85b782faa9ad8
95d11560391a2b926148d560464eac87b504ac02fa50c6b4d8bf476488249a11
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jquery.icheck.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:19 GMT
etag: "fe1-560b096821ca1-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1982
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/varien/form.js
163.172.51.87200 OK 3.4 kB URL HTTP/2 www.ercuis.com/js/varien/form.js
IP 163.172.51.87:0
Hash b48d9f74f3ea23a96d27b1e95876b30b
0a6835fac5806e18af35355e694019959b7c610c
0671eb8fa010b19c53bab0ef514f96e47d7dbaf6c4467b1b1abf9c4d4128c6e6
Analyzer Verdict Alert fortinet Phishing
GET /js/varien/form.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "3acd-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3391
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/matchMedia.addListener.js
163.172.51.87200 OK 973 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/matchMedia.addListener.js
IP 163.172.51.87:0
Hash b80ad8cb8110c61db2ad5735bd4ac9b3
b5cc00d9a718098ae39e41d5a6eead3aae0ea7f2
9126c351f214af4798ff417d97e2b17806c73f000464589a5b34e054ba3a5640
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/matchMedia.addListener.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:14 GMT
etag: "b00-560b099d44647-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 973
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/noconflict.js
163.172.51.87200 OK 16 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/noconflict.js
IP 163.172.51.87:0
Hash 10bdc1b7f2effa529e5baae786007688
35b9c19f33879153b72e4acc4edec054b7d4ff65
d3a8fe32b23bc1cca7c8d2253e0957db0fd91fb4d0753d84e992a73d3637c343
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/noconflict.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:17 GMT
etag: "10-560b09661c357"
accept-ranges: bytes
content-length: 16
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/bootstrap_caroussel.js
163.172.51.87200 OK 2.5 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/bootstrap_caroussel.js
IP 163.172.51.87:0
Hash b96f9d41c11505a79fdadba5af702646
61ec1625f8084b520752661f0657da51273bf941
9d0a9b2d106009a47ee820f40f85bba670d096a035205197e4fc76db2921e6d4
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/bootstrap_caroussel.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:19 GMT
etag: "24d0-560b0968a0be3-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2519
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/varien/configurable.js
163.172.51.87200 OK 2.7 kB URL HTTP/2 www.ercuis.com/js/varien/configurable.js
IP 163.172.51.87:0
Hash 140db6169411c239ce97c63a90682cc4
c81ee6ea951a409d724049deaaf44f07fd1d4607
53bfcbfe90f917ce31c07fa9e5ed2b92ea30ce3e3c05802867116d2b84dd4223
Analyzer Verdict Alert fortinet Phishing
GET /js/varien/configurable.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "2bac-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2720
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/main.js
163.172.51.87200 OK 3.8 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/main.js
IP 163.172.51.87:0
Hash d3f114ab1f49d6ba0e148d806c8ab50e
590d26dd595fdbeb2f27f60efaddd6b14fed2964
f8863d28df92ca9579fe80f5af26a2e742e61b23c95d2b9ec48724cc970c165a
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/main.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:16 GMT
etag: "3c2f-560b0965743d4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3786
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/jquery.customSelect.js
163.172.51.87200 OK 4.6 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jquery.customSelect.js
IP 163.172.51.87:0
File type exported SGML document, ASCII text
Hash 136649686b06e1d80f9118f894f1dcea
6e6ca5ba4d12fbbc567d10322e2fd4242a523c1d
96ba2df71908dff76dbfe49f8753bd686b34519cfa66fb80e480fcf4323440f7
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jquery.customSelect.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:16 GMT
etag: "505e-560b0965fcf56-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4578
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/modernizr.custom.min.js
163.172.51.87200 OK 4.0 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/modernizr.custom.min.js
IP 163.172.51.87:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (8720)
Hash 7cbd983980a87c2387f35369afd18931
8b8bd688390a61a437cf40226e64557c4c919e02
2a957ff32af7b4d9576200d8bc2aa67e5e8b5fc7882c28b451520e1bd8aa04ef
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/modernizr.custom.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:14 GMT
etag: "22ac-560b099d08d26-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3954
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/matchMedia.js
163.172.51.87200 OK 709 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/matchMedia.js
IP 163.172.51.87:0
Hash fba7708d40858fd34a3092916087650e
fabb31f8b626cbbba3bfaaf3074b2a46e5e7d0e0
006bd715be0db2b25cf370c6fcae123d74148fa64ff315a005ca48edd2fbf447
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/matchMedia.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:14 GMT
etag: "6a4-560b099cca524-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 709
content-type: application/javascript
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash 202067c443611dc148225b75c0e3d556
9e6be316508f5c2a2e4b8cecc561b0e7415bd38c
5d9db864eb7c211f62d61436846b80db003b0102c903dda9bc15af29e5eefa39
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20362
date: Sun, 04 Sep 2022 11:54:31 GMT
expires: Sun, 04 Sep 2022 11:54:31 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4e7ea00abe8fbd80"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/presse_slide.js
163.172.51.87200 OK 799 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/presse_slide.js
IP 163.172.51.87:0
Hash 9ed8eb6429e89438d85f664b21a4e3bb
05a60ff2c83478544a842316995d4396c1444393
307d212ce249a91c4b1336c2f06c51ce7d5bee6fab6b36bf033a4778e5378bff
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/presse_slide.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:17 GMT
etag: "e11-560b096658c18-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 799
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/jquery.mousewheel.js
163.172.51.87200 OK 951 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jquery.mousewheel.js
IP 163.172.51.87:0
Hash ffde7a72ae512ce338b73fd1adc484a7
3050cc1169de902b6fe3abd3c8a42a7cb97b16cc
f9f7a78c4b6b3e0944f2db5829bfa53f0527ebf55d4b1e9ac2c887d001e26c0b
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jquery.mousewheel.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:16 GMT
etag: "960-560b0965a31d5-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 951
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/jquery.cycle2.swipe.min.js
163.172.51.87200 OK 556 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/jquery.cycle2.swipe.min.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (1253)
Hash ae1a73260994834ed5e2d4c306a99e5e
547223b90ea379dbb0969a6fab8a2ccbfc048ff4
c6acb84026862cf6c7a5d1a98dfeaa5197e05206411fd996795fe68bb3d93225
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/jquery.cycle2.swipe.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:14 GMT
etag: "52b-560b099c8bd23-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 556
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/history.js
163.172.51.87200 OK 1.0 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/history.js
IP 163.172.51.87:0
Hash e932d5622763faeca415dcbafc1e09db
1201477e7e441fd1552530b7de04e632f5fb6ef9
871c791c31aaef6320ff8433521fe3e79003299c584d6acdeb52050542671b84
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/history.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:17 GMT
etag: "11fe-560b096677079-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1003
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/contact.js
163.172.51.87200 OK 437 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/contact.js
IP 163.172.51.87:0
Hash a5dd2d8d780bc69062f258ff4c43d4d6
1e95ed4b1645e8250b4c9a8b9505b5d046040fb6
200069389c7274021347930c292e9a60556438d2c04b5717b3c12b32421a01ae
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/contact.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:19 GMT
etag: "48a-560b0968dc504-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 437
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/product.js
163.172.51.87200 OK 2.4 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/product.js
IP 163.172.51.87:0
Hash c0b75920235dfcc954c985b3f5988371
f86fb75e1af7c204f4bc3d3359c19b63be6a9112
fc55ee767a898b6bf1f3f9fb2f17cc244354a583826c574af3671807febe6e6b
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/product.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:17 GMT
etag: "30c4-560b096639817-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2435
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/varien/product.js
163.172.51.87200 OK 6.3 kB URL HTTP/2 www.ercuis.com/js/varien/product.js
IP 163.172.51.87:0
Hash 5addbadb5a99de8df3e2c06dbc2f7c42
0ba90a706b4cd2573fe3404279c00e3e7b6f16f0
e7d798c7ade4628d4ffaa9ecd673660f3da0f7f4e59fce9c2ee6aab425db625b
Analyzer Verdict Alert fortinet Phishing
GET /js/varien/product.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "7758-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6339
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/varien/js.js
163.172.51.87200 OK 6.4 kB URL HTTP/2 www.ercuis.com/js/varien/js.js
IP 163.172.51.87:0
Hash d065bb2576003d62c9b1db636dc7794f
0b11ed9caf56560da44f350c47f2a0c94dd41e84
3d52537684b65db5a7f7b19425b90c6bb3f7d3103e277d9bbe164a48a8096c90
Analyzer Verdict Alert fortinet Phishing
GET /js/varien/js.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "58d9-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6351
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/elevatezoom/jquery.elevateZoom-3.0.8.min.js
163.172.51.87200 OK 6.2 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/elevatezoom/jquery.elevateZoom-3.0.8.min.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (560)
Hash b48fe35b062226b98cc291af6cc26ca0
d75d548837813366196fc9aeb2e32db75d18b96e
f76977ddecc81a53008a44bcdb3b9dfeb0d93e42108a8aaad3a6dc861a43e19e
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/elevatezoom/jquery.elevateZoom-3.0.8.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:48 GMT
etag: "809b-560b09bdbfdc7-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6198
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/lib/selectivizr.js
163.172.51.87200 OK 6.5 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/selectivizr.js
IP 163.172.51.87:0
Hash 8c05dc73aef706632b5cea594815f710
cae96de51d0d93e95bd22107ba4912d7dee16190
844838de66e1fe36045775bb2240f2acd7ace6a278aa7442d6ee145590d1cca2
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/selectivizr.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:14 GMT
etag: "5b0d-560b099d167e6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6520
content-type: application/javascript
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2bdda0d658ce2b9e2eb013951b24fe56
10c6077e8e005025de40c06081090fd01a7729bd
8ec97ff4508ebda7482a9c9a928959820bbe1ab4a66b7841f43dc36e1f15f70b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EC97FF4508EBDA7482A9C9A928959820BBE1AB4A66B7841F43DC36E1F15F70B"
Last-Modified: Sun, 04 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15479
Expires: Sun, 04 Sep 2022 16:12:30 GMT
Date: Sun, 04 Sep 2022 11:54:31 GMT
Connection: keep-alive
www.ercuis.com/skin/frontend/commerce/default/js/lib/jquery.cycle2.min.js
163.172.51.87200 OK 6.9 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/lib/jquery.cycle2.min.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (9866)
Hash 5ca1dc514885d86ca4ab776651d1d400
55126fdfb7e6342ad7bc989b4448779953d01bd7
04f5cd3aff852e2e12e6678d8384476a155efb35fce30f22d907b5a7d1f0ab37
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/lib/jquery.cycle2.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:28:15 GMT
etag: "5767-560b099d61b07-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6912
content-type: application/javascript
X-Firefox-Spdy: h2
www.textilia.be/flash/accept.js
217.182.119.163301 Moved Permanently 246 B URL HTTP/1.1 www.textilia.be/flash/accept.js
IP 217.182.119.163:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2aa30918e6b20fe91fca9c32c4e31532
28fbe2eff88b507e7f714203853c3d0ff4301b6d
0a09cbaf3089f1fa40906a27f7f1312b3f62c51be9e2a325aac893e501821db3
Analyzer Verdict Alert fortinet Malware
GET /flash/accept.js HTTP/1.1
Host: www.textilia.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Sep 2022 11:54:32 GMT
Server: Apache
Location: https://assabban.shop//flash/accept.js
Content-Length: 246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ercuis.com/skin/frontend/commerce/default/js/jquery.mCustomScrollbar.js
163.172.51.87200 OK 8.5 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jquery.mCustomScrollbar.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (321)
Hash 9b1a9ce59639af8e97c30fbdf1241a58
e26976aa3290ef9a37601acddb27c5d4df2998ba
2d382e7325c53b745f740201babcca77d9955a9e58eac9d7f92cd699c7063bcf
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jquery.mCustomScrollbar.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:18 GMT
etag: "ae68-560b0967aaa5f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8529
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/app.js
163.172.51.87200 OK 11 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/app.js
IP 163.172.51.87:0
Hash dff98d4d2d8219a3fe91c552de82019d
12fe7012f256e67b9388b21cd6594297f518aa33
e71df06523e61cbc95a6518b5a507e49d5111af47691c0dc4fad1ca35e8d68f2
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/app.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:20 GMT
etag: "b54b-560b0969258e6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11159
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/slick.min.js
163.172.51.87200 OK 10 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/slick.min.js
IP 163.172.51.87:0
File type ASCII text, with very long lines (32076)
Hash 7a6b74fb1418a5e7a5518d5a9fe2bb06
aef7197c8eeedcb350e55e20d07d203cc1891ad9
30d505b8d798cdf8fc55db71deb5b5e51453a33868c362886942066d6e2ab33c
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/slick.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:18 GMT
etag: "a3e1-560b09674bebd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10170
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/js/calendar/calendar.js
163.172.51.87200 OK 15 kB URL HTTP/2 www.ercuis.com/js/calendar/calendar.js
IP 163.172.51.87:0
Hash c8caf9878f316fb098e14552fb8b5fc2
b5cacb1040e18483288818526796cbdb5aeb86ae
f878673e5d93dbd643b4bf0ec766e08fb9a06b2ce6475012d578667e33896287
Analyzer Verdict Alert fortinet Phishing
GET /js/calendar/calendar.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 17 Feb 2016 18:27:53 GMT
etag: "f47f-52bfb68777c40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14915
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/bootstrap.js
163.172.51.87200 OK 14 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/bootstrap.js
IP 163.172.51.87:0
Hash f5843c1051a768fad424a173407c6489
dfd7664f6478126983be2427dac8adf30f646c36
5d59dc33d0fd20e5eeedb0eb530d51b0639e1903b94e0196dde69b73013ed3c3
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/bootstrap.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:17 GMT
etag: "10d5a-560b0966f213b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14144
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/jssor.slider.mini.js
163.172.51.87200 OK 18 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jssor.slider.mini.js
IP 163.172.51.87:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (45351)
Hash 8294ea5feacd607453544bdcf4103d7d
5642e9e385356e529dca2d4c3fc6bbb8be54c0a7
c7a42d2737386ca49f07bc644cc151d1e82c81d579091e8148101cee907f893b
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jssor.slider.mini.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:19 GMT
etag: "b150-560b09687d963-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 18510
content-type: application/javascript
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/close-popin.png
163.172.51.87200 OK 1.2 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/close-popin.png
IP 163.172.51.87:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 83bc32ff72ca90b803dc109f41d9dc7c
0c95f7d71f2680b670627b3e088738737da52657
3cc9b8b66200b48bef6b58c5f055223b1c586405ab7d08e617fa14e645c78487
GET /skin/frontend/commerce/default/images/close-popin.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:37 GMT
etag: "4db-560b09403bdfc"
accept-ranges: bytes
content-length: 1243
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/product/cache/2/thumbnail/75x/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg
163.172.51.87200 OK 1.5 kB URL HTTP/2 www.ercuis.com/media/catalog/product/cache/2/thumbnail/75x/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg
IP 163.172.51.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 75x75, components 3\012- data
Hash 2f2bd08c93e862bf3ef4284574959000
e00bd3f6ecc73b755e0f6eaa9e1b892812721be8
41cdf52db23b22a6139deda564364efea63d60acb00b1d49ea3cabedcf4b992a
GET /media/catalog/product/cache/2/thumbnail/75x/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 14 Jan 2018 05:55:44 GMT
etag: "5b2-562b625fd458b"
accept-ranges: bytes
content-length: 1458
content-type: image/jpeg
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 51df98c169fb7de773301d014bcea4b8
9bdf9bdb9b5eee378e9ac4ec68ca07c665ae4819
c8336f3a2e16c9390b610c612ce9be7c19286f04a6328a29200cbf65db5801c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ercuis.com/skin/frontend/commerce/default/images/twitter.png
163.172.51.87200 OK 3.9 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/twitter.png
IP 163.172.51.87:0
File type PNG image data, 65 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash c0c19735f682eadb00cfdffc80a99ec6
d02eba70306ed25dea1211ec0c9f101afa3df20a
eb1140bdabb7a52c5252a6cf5317b4943dc64f0cfe450827261376afc94a0fdd
GET /skin/frontend/commerce/default/images/twitter.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:13 GMT
etag: "f12-560b096299c46"
accept-ranges: bytes
content-length: 3858
content-type: image/png
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.92.18101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.92.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 01QNeRjRcuSImF1VgHLG9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xEQFd7tb4SshK81pT0260A4HyOQ=
www.ercuis.com/skin/frontend/commerce/default/images/facebook.png
163.172.51.87200 OK 3.2 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/facebook.png
IP 163.172.51.87:0
File type PNG image data, 65 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 332a8a9981eb974e1610c86cbd7a0bde
da96aa47e637c8fe558947914b3f95bc808baf75
8c6af5d95c4b58ab8eb33e730aa7bdb184f03e0f705fba64fd41e8ab7bc9e9ae
GET /skin/frontend/commerce/default/images/facebook.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:02 GMT
etag: "c89-560b0958a3f35"
accept-ranges: bytes
content-length: 3209
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/pinterest.png
163.172.51.87200 OK 4.2 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/pinterest.png
IP 163.172.51.87:0
File type PNG image data, 64 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash eb18cf6141019a698f6cd6c10241e0ed
40ea480896db1944eac52580d57ee54cdb324484
e59062e084b382fc8a8e150c6743422b2cd1f56a4932df278fe065c3e9a3946d
GET /skin/frontend/commerce/default/images/pinterest.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:08 GMT
etag: "1046-560b095def6cf"
accept-ranges: bytes
content-length: 4166
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/poinconcarre.jpg
163.172.51.87200 OK 4.0 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/poinconcarre.jpg
IP 163.172.51.87:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 60x80, components 3\012- data
Hash c10b2bdc028bba81c36ad2c71f554b0f
bec997a0c3b3fca56c4285b382f631065fda8d0c
eefa94ea37b9b4068744b417a6cb994f01c1e034c8b1c981cefc59bd06f7b5f7
GET /skin/frontend/commerce/default/images/poinconcarre.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:04 GMT
etag: "fbb-560b0959f9bfb"
accept-ranges: bytes
content-length: 4027
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/mail.png
163.172.51.87200 OK 4.7 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/mail.png
IP 163.172.51.87:0
File type PNG image data, 64 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 43afac41657db6a9707b83ed876c371c
a448bbe1dc295222317739d4ff0776bc66014505
0e3337e506db21c4ed1af841a4d5aef28901a93ff437b35dcd966f5c594b81c6
GET /skin/frontend/commerce/default/images/mail.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:49 GMT
etag: "1272-560b094bb17b5"
accept-ranges: bytes
content-length: 4722
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/instagram.png
163.172.51.87200 OK 5.3 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/instagram.png
IP 163.172.51.87:0
File type PNG image data, 64 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f2b4415d85cf33957c04037c9c939e4
09793151d6615ef3ddd810052eb011715d911b67
73fb2eece6180f6fe6319115cfe77ffac64a2182d46274a7b179e29dd97c6460
GET /skin/frontend/commerce/default/images/instagram.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:57 GMT
etag: "14a1-560b0953c2ebd"
accept-ranges: bytes
content-length: 5281
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/phone.png
163.172.51.87200 OK 7.6 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/phone.png
IP 163.172.51.87:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a546580909e956d89db226c0a5d4020
190fad02a396e404a054843df283884f99f5e5b7
d0ad476232ddcaeceab88eaff0b9829a155201aa696549f09155fc71a25e1c7c
GET /skin/frontend/commerce/default/images/phone.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:58 GMT
etag: "1daa-560b0954016be"
accept-ranges: bytes
content-length: 7594
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/logo.png
163.172.51.87200 OK 9.0 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/logo.png
IP 163.172.51.87:0
File type PNG image data, 160 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash f80117701f08ae33c28638f690aec527
e2313f3736f997d620679084e8cfb8ae587139dc
eeb0274cd683586ff52639ea54f4f8b5bbc3f8f9289b3791578618c503097b1f
GET /skin/frontend/commerce/default/images/logo.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:48 GMT
etag: "2303-560b094a7418f"
accept-ranges: bytes
content-length: 8963
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/lock.png
163.172.51.87200 OK 8.5 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/lock.png
IP 163.172.51.87:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 32f8bb332ff9004b39684b41fa7cfef4
556304a71eeb6694045568de0c72b3452a544e83
1f260dc39561476ffd6fca30694bd910e2e55c83373ae1efc2ec5a0bef6f5434
GET /skin/frontend/commerce/default/images/lock.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:14 GMT
etag: "211c-560b096408f4d"
accept-ranges: bytes
content-length: 8476
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/arrow-menu-dropdown.png
163.172.51.87200 OK 10 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/arrow-menu-dropdown.png
IP 163.172.51.87:0
File type PNG image data, 25 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 9feb62eaaa761c02b3e045c5a8ab1081
02e424b78dbe725c80564c287b9ff932f611d8de
efa5fb4386406d64e841b0403215a8fdbddfd9f6667b9a18355c77b947badb57
GET /skin/frontend/commerce/default/images/arrow-menu-dropdown.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:01 GMT
etag: "27b9-560b095702f4c"
accept-ranges: bytes
content-length: 10169
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9611_1.jpg
163.172.51.87200 OK 9.8 kB URL HTTP/2 www.ercuis.com/media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9611_1.jpg
IP 163.172.51.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x260, components 3\012- data
Hash 48dd3783b86df0ebccd423ed34eeb8ea
9e58364ddf8122c977788631009dd14e2a70f5c9
aac260b943db7eff8a3a40eb597ae95d43b3eb27eb0ed0370a40d6ca59ad2fb8
GET /media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9611_1.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 13 Sep 2016 10:55:36 GMT
etag: "2658-53c6173cf1a00"
accept-ranges: bytes
content-length: 9816
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/map.png
163.172.51.87200 OK 11 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/map.png
IP 163.172.51.87:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash dbb0c148eb1f61ef4ca8816a7ed1c948
9a3caf6503adf0fa15c2b76f55d70655cdb424c2
c3704418f701f938288e7e6124785f37112c7666935af8bf2119d4108dff398b
GET /skin/frontend/commerce/default/images/map.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:45 GMT
etag: "2ae4-560b094794be0"
accept-ranges: bytes
content-length: 10980
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/product/cache/2/image/400x436/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg
163.172.51.87200 OK 12 kB URL HTTP/2 www.ercuis.com/media/catalog/product/cache/2/image/400x436/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg
IP 163.172.51.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 400x436, components 3\012- data
Hash e73195b2c622e0891188e08f8af52e28
1c1c6572a1a3590aba12d4bd86a91de9bdfce384
e949be75bcea237c785ba713b07f3be8b6ffecd2a18d61922bb23d7e416c3c82
GET /media/catalog/product/cache/2/image/400x436/9df78eab33525d08d6e5fb8d27136e95/f/5/f521246-01.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 14 Jan 2018 05:55:44 GMT
etag: "2da8-562b625f8926a"
accept-ranges: bytes
content-length: 11688
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9610.jpg
163.172.51.87200 OK 12 kB URL HTTP/2 www.ercuis.com/media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9610.jpg
IP 163.172.51.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x260, components 3\012- data
Hash 8acb072fdeee91cf9dfef2996431489a
c03b1d6bed3af4d76e14cf817fe920f85dd4d509
d05784c15020e2d8eacb085a220c65e9325b7267801863edbf790d8d9ed86dcc
GET /media/catalog/product/cache/2/thumbnail/320x260/9df78eab33525d08d6e5fb8d27136e95/9/6/9610.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 13 Sep 2016 10:55:36 GMT
etag: "2ed5-53c6173cf1a00"
accept-ranges: bytes
content-length: 11989
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/artvivre.png
163.172.51.87200 OK 15 kB URL HTTP/2 www.ercuis.com/media/catalog/category/artvivre.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash 317bb691996e4ad35c3d044b23b93652
5ee7babe319ccb085dfe92dc87e13b60a5af6a3c
97d278e1150c72f62e374fc2d138dc0ab865ac026a82e70a24652ed0d566d81e
GET /media/catalog/category/artvivre.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:40:22 GMT
etag: "3a59-4e9ded7f4d180"
accept-ranges: bytes
content-length: 14937
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/partenaire.png
163.172.51.87200 OK 16 kB URL HTTP/2 www.ercuis.com/media/catalog/category/partenaire.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash dbd2083a0f55388a398e9aecf090878f
5cdc287f02821d6cd7d61d60d7894a35ed14cf7d
d6f4943dfffdfb66af916b1b933c79ec10f101d4cbd60b68846afb1ad03e188e
GET /media/catalog/category/partenaire.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:40:14 GMT
etag: "3ce9-4e9ded77abf80"
accept-ranges: bytes
content-length: 15593
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/entretien.png
163.172.51.87200 OK 19 kB URL HTTP/2 www.ercuis.com/media/catalog/category/entretien.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash 83c6864a2865eb9580651a05e7504376
f47dc288a4245a55fdc7880fac9232ef3f9c699d
8f71773e65d0319a2d69f6aa098f3150e3dc954fe50cb8c5e0ffe5ed6c924084
GET /media/catalog/category/entretien.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:41:14 GMT
etag: "49cc-4e9dedb0e4680"
accept-ranges: bytes
content-length: 18892
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/perso.png
163.172.51.87200 OK 20 kB URL HTTP/2 www.ercuis.com/media/catalog/category/perso.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash 23285f60555575d3869788a052674693
edbc0082d2c689ccb71399dedd7bd5f04397fabb
4e8b5f06f842979a8505a8c97d756dbfdfd62c9aa061d123375f4071e242095d
GET /media/catalog/category/perso.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:46:24 GMT
etag: "4c89-4e9deed888000"
accept-ranges: bytes
content-length: 19593
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/creation.png
163.172.51.87200 OK 20 kB URL HTTP/2 www.ercuis.com/media/catalog/category/creation.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash cd3412ab8b50974b99d449af03531d23
32333b90002714e7139cb052fd2be587a5e51b00
d3deb0812261d6a05f2f4fbff770ba761dec0124a23aec5aa1ede1be9e689fae
GET /media/catalog/category/creation.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:46:36 GMT
etag: "4d6f-4e9deee3f9b00"
accept-ranges: bytes
content-length: 19823
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/4_1.png
163.172.51.87200 OK 24 kB URL HTTP/2 www.ercuis.com/media/catalog/category/4_1.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash add8ed284b4a1afa86567808a9ddec22
75088b6fdaafcb203a023dede7dca2e4e75a2dd2
1081ea3de69c29a4752013cef6aa69a29a7373c7cd43c6ed79d8118511ce1e1e
GET /media/catalog/category/4_1.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 12:35:06 GMT
etag: "5e7a-4e9e072465280"
accept-ranges: bytes
content-length: 24186
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/raynaud_logo.png
163.172.51.87200 OK 24 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/raynaud_logo.png
IP 163.172.51.87:0
File type PNG image data, 250 x 141, 8-bit/color RGBA, non-interlaced\012- data
Hash 709e83b057dffe80e3e6e744f5db899f
c99c120583f4d742da34853fd9ed655a3a66d95d
a31b49f5457488f047f1ee69a8c6c80a4536ea84dcd23955e8ceda9e5d7c9543
GET /skin/frontend/commerce/default/images/raynaud_logo.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Wed, 21 Feb 2018 15:48:08 GMT
etag: "5cf1-565bada899132"
accept-ranges: bytes
content-length: 23793
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/1.png
163.172.51.87200 OK 25 kB URL HTTP/2 www.ercuis.com/media/catalog/category/1.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash c4d72639901163e410200d877a452085
82e346900ce3b14e5743a20dae524085a7e9ca9d
ead41ecb839977a7053893311771529365d924581a41d91adeda2f8206b2b36e
GET /media/catalog/category/1.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 12:30:36 GMT
etag: "6138-4e9e0622e7300"
accept-ranges: bytes
content-length: 24888
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/savoir-faire.png
163.172.51.87200 OK 32 kB URL HTTP/2 www.ercuis.com/media/catalog/category/savoir-faire.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash cec4347e1923a84df28c3d7321918a3b
2d5349a743c263d2ccc75e099dc856d1d8d509e0
fb8551ce222caf9bbb6f1b0a883f5d913d3222aa54e34a26e5b73e463f305caf
GET /media/catalog/category/savoir-faire.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 10:41:00 GMT
etag: "7e8a-4e9deda38a700"
accept-ranges: bytes
content-length: 32394
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/3.png
163.172.51.87200 OK 34 kB URL HTTP/2 www.ercuis.com/media/catalog/category/3.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash ac8410889bc0c5ee3a29349e9b98fecf
12e86aeaf826dd5116df9d0e275fa58d16ca601e
416586c0771f177ca767835a968ec33bcfc2a7e60ea38f89076d5e6c77a0fc38
GET /media/catalog/category/3.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 12:31:02 GMT
etag: "834f-4e9e063bb2d80"
accept-ranges: bytes
content-length: 33615
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/2_2.png
163.172.51.87200 OK 45 kB URL HTTP/2 www.ercuis.com/media/catalog/category/2_2.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash 05f3fd4c966dae3b8a4780ba5d152de5
0e240d50843730031679d828e92d047f59a460a7
d39525d98bbcdacc42687bea3a5e373abffc082f808ae6db85858fbf91ca9fbf
GET /media/catalog/category/2_2.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 12:31:36 GMT
etag: "aeef-4e9e065c1fa00"
accept-ranges: bytes
content-length: 44783
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/category/2_1.png
163.172.51.87200 OK 45 kB URL HTTP/2 www.ercuis.com/media/catalog/category/2_1.png
IP 163.172.51.87:0
File type PNG image data, 166 x 113, 8-bit/color RGB, non-interlaced\012- data
Hash 05f3fd4c966dae3b8a4780ba5d152de5
0e240d50843730031679d828e92d047f59a460a7
d39525d98bbcdacc42687bea3a5e373abffc082f808ae6db85858fbf91ca9fbf
GET /media/catalog/category/2_1.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 29 Oct 2013 12:30:16 GMT
etag: "aeef-4e9e060fd4600"
accept-ranges: bytes
content-length: 44783
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/media/catalog/product/cache/2/image/1800x/040ec09b1e35df139433887a97daa66f/f/5/f521246-01.jpg
163.172.51.87200 OK 109 kB URL HTTP/2 www.ercuis.com/media/catalog/product/cache/2/image/1800x/040ec09b1e35df139433887a97daa66f/f/5/f521246-01.jpg
IP 163.172.51.87:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1800x1305, components 3\012- data
Size 109 kB (109198 bytes)
Hash 0b02f27249bdcb03e6af9a2c98664171
217967f32408d3192c3d148cdf721344284a580d
e6694ae8ce366e4a7a60f8ae52e83b39f89fc8c6203b2fb3a7ea235036e02193
GET /media/catalog/product/cache/2/image/1800x/040ec09b1e35df139433887a97daa66f/f/5/f521246-01.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Sun, 14 Jan 2018 05:55:44 GMT
etag: "1aa8e-562b625fc4b8b"
accept-ranges: bytes
content-length: 109198
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/media/css_secure/40c94e86de9d246d7452a01ea289bbcb.css
163.172.51.87200 OK 744 B URL HTTP/2 www.ercuis.com/media/css_secure/40c94e86de9d246d7452a01ea289bbcb.css
IP 163.172.51.87:0
File type ASCII text, with CRLF, LF line terminators
Hash c95e333e2c6d3066af667e98f79db4dc
63c0454f4f0004a07545061f98369b23ffb8679e
eb2068eb3992f5c15d755f069c0b0fbeeb3fb3c67a03ecc595b98b7cc22d04e5
GET /media/css_secure/40c94e86de9d246d7452a01ea289bbcb.css HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:32 GMT
server: Apache
last-modified: Fri, 21 May 2021 13:40:03 GMT
etag: "64a-5c2d7327555cd-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 744
content-type: text/css
X-Firefox-Spdy: h2
servair.com/js/tiny_mce/themes/themes.js
167.99.116.102200 OK 4.3 kB URL HTTP/1.1 servair.com/js/tiny_mce/themes/themes.js
IP 167.99.116.102:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (30607), with no line terminators
Hash 4f970580f12d40959ca9a1c3ca4603c4
01f97489054e2d19364c1861e9cd2539ee325674
e421fa0356f006d566972c6a857719a7ffb5b50c4fc2f8159c75faecf789a2f5
Analyzer Verdict Alert fortinet Phishing
GET /js/tiny_mce/themes/themes.js HTTP/1.1
Host: servair.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 11:54:32 GMT
Server: Apache/2.4.18 (Ubuntu)
Last-Modified: Wed, 08 Jul 2020 22:00:30 GMT
ETag: "778f-5a9f53c75fb80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4329
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash a403b62e06cdae08383bf811fe228a32
0e01ef18048d4ab0bbe650fe7e65b21e6eac2bec
5a7d1caa746f1031d033ffc9058a19fa7d92c4473dde57b025489a1d539b7687
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 04 Sep 2022 11:54:32 GMT
Server: ECS (dcb/7ECA)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9NHHBOQrY_HXP1u6lYsyExdfE2OQXOxP48V7xiDJUC1__9wsSl3llg==
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc3f6be485e757c1206ab7dd2bcb7b61
360e1b6a512ce713e4e04312a736b5e87bc57b76
5cd5ba84359a35cb3da542e1abeec83b80736ca24bc610682b529912af92530b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CD5BA84359A35CB3DA542E1ABEEC83B80736CA24BC610682B529912AF92530B"
Last-Modified: Fri, 02 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12322
Expires: Sun, 04 Sep 2022 15:19:54 GMT
Date: Sun, 04 Sep 2022 11:54:32 GMT
Connection: keep-alive
en.bro.kim/js/ercuis.com.js
193.3.19.36200 OK 0 B URL HTTP/1.1 en.bro.kim/js/ercuis.com.js
IP 193.3.19.36:0
ASN #50340 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/ercuis.com.js HTTP/1.1
Host: en.bro.kim
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 11:54:32 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.4.16
X-Powered-By: PHP/7.4.26
Strict-Transport-Security: max-age=31536000; preload
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.ercuis.com/skin/frontend/commerce/default/images/cursor-active.jpg
163.172.51.87200 OK 1.4 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/cursor-active.jpg
IP 163.172.51.87:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 76x4, components 3\012- data
Hash 8c3e97f394fbef880ce8c22daf921d8a
2a4e98ed2a2d9f9d4dd7d069ccc0c9bcbaeb048a
27dfd0fa91d6e97640b0ac17aac37c137d7a5d0ea6b6164aab359dbca4205d17
GET /skin/frontend/commerce/default/images/cursor-active.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:40 GMT
etag: "576-560b0942c8389"
accept-ranges: bytes
content-length: 1398
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/dot.jpg
163.172.51.87200 OK 12 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/dot.jpg
IP 163.172.51.87:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Macintosh, datetime=2013:08:30 14:21:39], baseline, precision 8, 6x2, components 3\012- data
Hash 654cac329bd7629cef9905f1c4647c33
12685e6ad34abc654579728d64a338e92f7b8d0f
ac6df0fc4459800ef4bda80137969f4c0034b24a32629d07a5da37efc98e2c0e
GET /skin/frontend/commerce/default/images/dot.jpg HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:06 GMT
etag: "2dd2-560b095bdd264"
accept-ranges: bytes
content-length: 11730
content-type: image/jpeg
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/images/collapse-arrow.png
163.172.51.87200 OK 2.9 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/images/collapse-arrow.png
IP 163.172.51.87:0
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 697e40d70f25c47e01c229bd273a7c9a
b5c970339c55ae4b508ba8744fc09b379ce4078d
ee19e002f4224391f383ba4ade2c8434e8a8241d1003df599313c7dbec891746
GET /skin/frontend/commerce/default/images/collapse-arrow.png HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:10 GMT
etag: "b69-560b096048fda"
accept-ranges: bytes
content-length: 2921
content-type: image/png
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/css/fonts/proximanova-regular-webfont.woff2
163.172.51.87200 OK 20 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/css/fonts/proximanova-regular-webfont.woff2
IP 163.172.51.87:0
File type Web Open Font Format (Version 2), TrueType, length 20340, version 2.197\012- data
Hash 915931b4a2c4156eef20899497587cca
b50718230e4d96b09b7669b06b5344a815f4e93a
a54ebca8902352368b9b22ff056fff91f2a651ac1b6f617eedd9ae35f326d60d
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/css/fonts/proximanova-regular-webfont.woff2 HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:32 GMT
etag: "4f74-560b09754bec2"
accept-ranges: bytes
content-length: 20340
content-type: font/woff2
X-Firefox-Spdy: h2
assabban.shop//flash/accept.js
54.230.111.13200 OK 21 kB URL HTTP/2 assabban.shop//flash/accept.js
IP 54.230.111.13:0
Hash 5fa70ee303c9da5836ee6518ef296f52
191090cc05de69272f96d3864ce36dcc57d7c19b
8c6612f072af4a571c6dc6773da818b11edb7c09360d8ce99dbfdcb975c2f1b8
GET //flash/accept.js HTTP/1.1
Host: assabban.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ercuis.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 29 Aug 2022 10:48:31 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: RUhuq4QoSCqrz6RzKD_zVDDn3tjoBz9k
server: AmazonS3
content-encoding: gzip
date: Sun, 04 Sep 2022 11:54:32 GMT
etag: W/"c1d4d8703c95595fc254e71d3f258d92"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cVnVSHdyUspOrNl-jcUVlrLVxr6KzYhKSml_Ib17pxhAU54yURDo0Q==
age: 58
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/css/fonts/fontawesome-webfont.woff?v=4.6.3
163.172.51.87200 OK 90 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/css/fonts/fontawesome-webfont.woff?v=4.6.3
IP 163.172.51.87:0
File type Web Open Font Format, TrueType, length 90412, version 1.0\012- data
Hash c8ddf1e5e5bf3682bc7bebf30f394148
6d7e6a5fc802b13694d8820fc0138037c0977d2e
adbc4f95eb6d7f2738959cf0ecbc374672fce47e856050a8e9791f457623ac2c
GET /skin/frontend/commerce/default/css/fonts/fontawesome-webfont.woff?v=4.6.3 HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:41 GMT
etag: "1612c-560b097da3acb"
accept-ranges: bytes
content-length: 90412
content-type: font/woff
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/css/fonts/proximanova-semibold-webfont.woff2
163.172.51.87200 OK 20 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/css/fonts/proximanova-semibold-webfont.woff2
IP 163.172.51.87:0
File type Web Open Font Format (Version 2), TrueType, length 20356, version 2.197\012- data
Hash cc9d643ed001f80282422a91faef39e7
6e51c9d0b47ebd7226eec921037d254ac737833d
5a3863a54423934032deb59acc6020ac813d8e5dade78fc7c00177f75a344aab
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/css/fonts/proximanova-semibold-webfont.woff2 HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:36 GMT
etag: "4f84-560b097879671"
accept-ranges: bytes
content-length: 20356
content-type: font/woff2
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1267
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sun, 04 Sep 2022 11:54:33 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 055236e09aa6809ee88afe366362a216
80f1097c0388681ab68f407460ca95ad9aa5d6cd
dc495a82248a0bc67d76a5a50b9fa34d29bdc6267534f82a648195479e83e027
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Last-Modified: Sun, 04 Sep 2022 11:22:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.ercuis.com/skin/frontend/commerce/default/favicon.ico
163.172.51.87200 OK 1.4 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/favicon.ico
IP 163.172.51.87:0
File type MS Windows icon resource - 1 icon, 16x16\012- data
Hash 46f7fdcbf4019fa24ee9953bbad8a070
15fc1487ea2ce0156a87cf867862d4ba5db080a1
3a0c45e11c34d3eb3241dc4fb121dbca9c704d8498a8db26b7f15898d4490384
GET /skin/frontend/commerce/default/favicon.ico HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:29 GMT
etag: "57e-560b09393603a"
accept-ranges: bytes
content-length: 1406
content-type: image/vnd.microsoft.icon
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 53e4933126779cbf269a5819d467ad4b
1c3c6b27a0660a44717be304d90834cf2f9cf3ce
ed5ad968f7d95b37c817e86b54062702bef60b1ffd3977248aad23072af06b87
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: HqJgAsF9uO9EZ9aPTE+DnjpRKDbsK/zDWAPwUSQzvtVjaXv0uGhRpuDc1rDkYoeYfTOsthIVIFEBop+7FA1fDg==
priority: u=3,i
content-length: 26752
x-fb-trip-id: 1904183273
date: Sun, 04 Sep 2022 11:54:33 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
142.250.74.8200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.8:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 04 Sep 2022 10:29:20 GMT
expires: Sun, 04 Sep 2022 12:29:20 GMT
cache-control: public, max-age=7200
age: 5113
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/css/ajax-loader.gif
163.172.51.87200 OK 4.2 kB URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/css/ajax-loader.gif
IP 163.172.51.87:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash c5cd7f5300576ab4c88202b42f6ded62
7a1aa43614396382bb15e5fde574d9cdcd21698f
e7b44c86b050fca766a96ddac2d0932af0126da6f2305280342d909168dcce6b
GET /skin/frontend/commerce/default/css/ajax-loader.gif HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU; external_no_cache=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:33 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:26:33 GMT
etag: "1052-560b093c9e16a"
accept-ranges: bytes
content-length: 4178
content-type: image/gif
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 055236e09aa6809ee88afe366362a216
80f1097c0388681ab68f407460ca95ad9aa5d6cd
dc495a82248a0bc67d76a5a50b9fa34d29bdc6267534f82a648195479e83e027
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Last-Modified: Sun, 04 Sep 2022 11:22:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3309
Expires: Sun, 04 Sep 2022 12:49:42 GMT
Date: Sun, 04 Sep 2022 11:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3309
Expires: Sun, 04 Sep 2022 12:49:42 GMT
Date: Sun, 04 Sep 2022 11:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3309
Expires: Sun, 04 Sep 2022 12:49:42 GMT
Date: Sun, 04 Sep 2022 11:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3309
Expires: Sun, 04 Sep 2022 12:49:42 GMT
Date: Sun, 04 Sep 2022 11:54:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.ercuis.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.ercuis.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.ercuis.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 313882
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 04 Sep 2022 11:54:33 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eecb70391b63b662d13355e32d95ea1
5d5c724e26af57967b9a132a77d3986ba8d6ed9c
2c7f2aa1c725a5d39daf44ee746bb24b5c15aab41c67cf160814f7f87d1aacdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: cfc0940f-ad6a-4535-91b7-70b200af68d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwGEVEoAMFriw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-5b6e6e5e3401eba533fb63df;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -ASFa6a22qh9wxe5u-hQxXe9R7JSyBVFLZb6291gbrUeftSsYDXAJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:31:42 GMT
etag: "5d5c724e26af57967b9a132a77d3986ba8d6ed9c"
content-type: image/jpeg
age: 48171
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
163.172.51.87200 OK 89 kB URL HTTP/2 www.ercuis.com/media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css
IP 163.172.51.87:0
Hash 586d10f3a0bb812bede726ff9baf628e
ecfca688afd4dc2f2abf19c121025d4973a634ba
d38e7deca66622e6179af79f50d015735f6559fae82284fe6a43f61f5cdd0470
GET /media/css_secure/0225f0f8a0ca0e15ef4e72475f7f7989.css HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Mon, 24 May 2021 09:54:50 GMT
etag: "7ec9d-5c310667e57d6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2
ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=451449799&utmhn=www.ercuis.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Rond%20de%20serviette&utmhid=168550073&utmr=-&utmp=%2Fnapkin-ring-9.html&utmht=1662292469910&utmac=UA-52673421-1&utmcc=__utma%3D189966847.2041492045.1662292470.1662292470.1662292470.1%3B%2B__utmz%3D189966847.1662292470.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=8547720&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.8302 Found 367 B URL HTTP/2 ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=451449799&utmhn=www.ercuis.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Rond%20de%20serviette&utmhid=168550073&utmr=-&utmp=%2Fnapkin-ring-9.html&utmht=1662292469910&utmac=UA-52673421-1&utmcc=__utma%3D189966847.2041492045.1662292470.1662292470.1662292470.1%3B%2B__utmz%3D189966847.1662292470.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=8547720&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.8:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash fe08906c0086b0d89fef42ee8ce48719
b61ea34d403f2818f9e51440a07aa1b59fe6222f
694a929e20d27e3c2d32ae0fd6c38ffe39e60a8a257f69cbd1713301445f5046
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=451449799&utmhn=www.ercuis.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Rond%20de%20serviette&utmhid=168550073&utmr=-&utmp=%2Fnapkin-ring-9.html&utmht=1662292469910&utmac=UA-52673421-1&utmcc=__utma%3D189966847.2041492045.1662292470.1662292470.1662292470.1%3B%2B__utmz%3D189966847.1662292470.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=8547720&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-52673421-1&cid=2041492045.1662292470&jid=8547720&_v=5.7.2&z=451449799
access-control-allow-origin: *
date: Sun, 04 Sep 2022 11:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7602d55b1969744668194d6433ad2490
c9e50dd6d25825a3fff305261dc8f85a7113150a
9ab721edb038aad74dabe751f7790fe21915884893ea9f471e407ae526495701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4615
x-amzn-requestid: a28cc354-9caf-45e8-805e-a9d076f4c55d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wxXFsZIAMFbVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c808-118caff17f74408d6ba251b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -lSmGdhagYg_JEI3Q5xybMrcddHCBhA_yGmuvYWQcoUqJdM3jJ_mrA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
age: 50786
etag: "c9e50dd6d25825a3fff305261dc8f85a7113150a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: e408351e-ba6c-4e55-815d-449af808282f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5yMEFBLoAMFtqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313ca4d-13831d8572a3b3cf54a0e747;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:42:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GFM9jerDkTPdhlUTm99E7Lpksw2ZGnV81bNVaZLvWSAiRNDNtkZi4g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
age: 50786
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc4ceb10dd9fcaab21ae58dcf10c401f
6ce530af682094dc5413db9de02565691fab4da7
84ad58e126cce2ab6b1568ffe89a116bc1de0310bb72d4530eead2fb8191572c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11380
x-amzn-requestid: 61f37e21-33a8-49e6-b384-4ca1fcfbffa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8TLFA3oAMFQjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117414-42de5c4128eb9e011d848356;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sywGj-wLtW091vZYhx1AbRAgljYQWe6LuffDjwTDhEebqVzxpQuzEQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:48:58 GMT
age: 29135
etag: "6ce530af682094dc5413db9de02565691fab4da7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f5b4e778429d4ba70b497cc9fbb1127
db17f774a14f160caa77eb0222152767a364bba7
64da763bf84ec2d6284a112f50392f15a8b11122f3875317c52bd6c5e8e8d894
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-52673421-1&cid=2041492045.1662292470&jid=8547720&_v=5.7.2&z=451449799
142.251.1.157200 OK 35 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-52673421-1&cid=2041492045.1662292470&jid=8547720&_v=5.7.2&z=451449799
IP 142.251.1.157:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-52673421-1&cid=2041492045.1662292470&jid=8547720&_v=5.7.2&z=451449799 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ercuis.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 04 Sep 2022 11:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ed39510bc1f4019dbafd850d8b81ba92
741ab1d5f2c3a235461d67872ddd904d9c7f018a
36e2d4feda3ffaeb6e35ff060a15ecce3384c2fccb32d981e73899828e1c4144
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2475
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Last-Modified: Sun, 04 Sep 2022 11:13:19 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313
www.facebook.com/tr/?id=259012342384131&ev=PageView&dl=https%3A%2F%2Fwww.ercuis.com%2Fnapkin-ring-9.html&rl=&if=false&ts=1662292470108&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662292470107.1357816307&it=1662292469917&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=259012342384131&ev=PageView&dl=https%3A%2F%2Fwww.ercuis.com%2Fnapkin-ring-9.html&rl=&if=false&ts=1662292470108&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662292470107.1357816307&it=1662292469917&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=259012342384131&ev=PageView&dl=https%3A%2F%2Fwww.ercuis.com%2Fnapkin-ring-9.html&rl=&if=false&ts=1662292470108&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662292470107.1357816307&it=1662292469917&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Sun, 04 Sep 2022 11:54:33 GMT
expires: Sun, 04 Sep 2022 11:54:33 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f5b4e778429d4ba70b497cc9fbb1127
db17f774a14f160caa77eb0222152767a364bba7
64da763bf84ec2d6284a112f50392f15a8b11122f3875317c52bd6c5e8e8d894
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 11:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.twitter.com/settings?session_id=b6c50498c8bc03ecc92e3a0ec76f393b8eafd72d
104.244.42.8200 OK 308 B URL HTTP/2 syndication.twitter.com/settings?session_id=b6c50498c8bc03ecc92e3a0ec76f393b8eafd72d
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (709), with no line terminators
Hash d8e2887342b363c09cd19d9b36199dbe
47c62bf9e3e60b6ab0b61eae608db43c04f7bea4
c38e646e125827b7520415ecaf228031c848266838cd894fa44a41686fedc553
GET /settings?session_id=b6c50498c8bc03ecc92e3a0ec76f393b8eafd72d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:32 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 04 Sep 2022 11:54:33 GMT
content-length: 308
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: cdb058661bd84cf37ef92415d1a3e6fbaedc21ca952142bfe1803737e9c03741
X-Firefox-Spdy: h2
www.ercuis.com/skin/frontend/commerce/default/js/jQuery-2.0.3.min.js
163.172.51.87200 OK 0 B URL HTTP/2 www.ercuis.com/skin/frontend/commerce/default/js/jQuery-2.0.3.min.js
IP 163.172.51.87:0
Analyzer Verdict Alert fortinet Phishing
GET /skin/frontend/commerce/default/js/jQuery-2.0.3.min.js HTTP/1.1
Host: www.ercuis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ercuis.com/napkin-ring-9.html
Cookie: frontend=kq8kfrmh1hccricoaprlndihe4; frontend_cid=pbyd9K1xEIBi7NKU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 11:54:31 GMT
server: Apache
last-modified: Tue, 19 Dec 2017 12:27:19 GMT
etag: "5c867-560b0968623e2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
X-Firefox-Spdy: h2