ergx.coastlinetrustplc.com/index.html
23.94.16.6200 OK 233 B URL HTTP/1.1 ergx.coastlinetrustplc.com/index.html
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 17ccf88330075f04034d001980c3067f
aa280a6c2dcd7baac22b099122a9cf4a6be7716b
50d3238e39a1ad75d5a35ad0a688408a1ce81c368c43892d478fce2ab23a501e
Analyzer Verdict Alert fortinet Phishing
GET /index.html HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Sun, 22 May 2022 14:31:59 GMT
Accept-Ranges: bytes
Content-Length: 233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7432
Expires: Sat, 04 Feb 2023 09:09:55 GMT
Date: Sat, 04 Feb 2023 07:06:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9603
Expires: Sat, 04 Feb 2023 09:46:06 GMT
Date: Sat, 04 Feb 2023 07:06:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 06:36:14 GMT
content-type: application/json
age: 1789
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9260
Expires: Sat, 04 Feb 2023 09:40:23 GMT
Date: Sat, 04 Feb 2023 07:06:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 33e1V+QaQ8digOwfyevs7A+/r6IfWM/aeTLRIM6fe+4aE/tS8kYwiASROoxruiO/rMhLJQEDB9vVjPKQos7gCg==
x-amz-request-id: YY9TRC8DVXN39M3X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 06:23:53 GMT
age: 2530
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 07:06:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ergx.coastlinetrustplc.com/login.php
23.94.16.6200 OK 14 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/login.php
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2397), with CRLF line terminators
Hash cc2e729d915b378eb1a479c999c1faa2
0b5ba5a7e5170da4e33e5a32815ac6d5332d5238
83327a8d1a814d62b4701406949ba84012f48e2fb94414c3afb7f765c65c8942
Analyzer Verdict Alert fortinet Phishing
GET /login.php HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3; path=/
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ergx.coastlinetrustplc.com/css/owl.transitions.css
23.94.16.6200 OK 4.5 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/owl.transitions.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash b1bdaeac4065bf67a7d7a06213192964
737bc8e18a55d93ee2d76c8d3cc0fd284f1ee5c0
711bc5b0b8c40e39b2560e65797d175e72a89b49ebbc266a7c7b581c4bec4b21
GET /css/owl.transitions.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 4476
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/normalize.css
23.94.16.6200 OK 7.7 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/normalize.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash 1e9c0f3b13da66012ea079bc1509fef2
e58275a588bb631a37a2988145eea231ed23176b
69fcf7682b771176634dc54deb0c412cf9ec40df931d56a0480ee51b47ed1598
GET /css/normalize.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 7708
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/owl.theme.css
23.94.16.6200 OK 1.7 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/owl.theme.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash f23cf727e4fcca9a5470658da5e755c9
98c420dadba613ae097236b8a54138d0a5fa94cf
91ee720f3c25ec6b209d88019c20e2592340ff1fe1c94f3d5431e5fd1e77e5dc
GET /css/owl.theme.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1665
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/js/bootstrap.min.js
23.94.16.6200 OK 37 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/bootstrap.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 36868
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 06:49:07 GMT
age: 1016
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ergx.coastlinetrustplc.com/css/bootstrap.min.css
23.94.16.6200 OK 121 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/bootstrap.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65371)
Size 121 kB (121260 bytes)
Hash 2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c
GET /css/bootstrap.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 121260
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/animate.css
23.94.16.6200 OK 74 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/animate.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 4b3c9a441c4cb4e544eec9342826eedc
574473bbff323cb9aa6c570e9d510456867376df
1e3b0b1b0ec443392b143405d5873b89bc7833a8e4b28a612f487362d0ab25a6
GET /css/animate.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 74096
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8188
Expires: Sat, 04 Feb 2023 09:22:32 GMT
Date: Sat, 04 Feb 2023 07:06:04 GMT
Connection: keep-alive
push.services.mozilla.com/
54.186.165.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.165.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FMsdS7OxqvYDFOYNjOsiaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iJYR3SA61Y9HiobHdJEVEma9qNc=
ergx.coastlinetrustplc.com/css/scrollbar/jquery.mCustomScrollbar.min.css
23.94.16.6200 OK 43 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/scrollbar/jquery.mCustomScrollbar.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (42839), with no line terminators
Hash f59e3f4c0087b4d8ddc27bdd9c9ab92b
fac9b521062feb5250c04d62128a8c3ddb312632
247184981eb6f698a94e431a83d68c6b0df623cce57b6e29dc5a6c11e23aa195
GET /css/scrollbar/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 42839
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/morrisjs/morris.css
23.94.16.6200 OK 531 B URL HTTP/1.1 ergx.coastlinetrustplc.com/css/morrisjs/morris.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 79d394b644db649937232710e7d661f4
5556ec4379840f5095afde2a30a778cd8628ad09
1f66bc5e534286f6915e114684fbc46cf7c554741eb40917ab8c85cd06a98d34
GET /css/morrisjs/morris.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 531
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/main.css
23.94.16.6200 OK 5.7 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/main.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash 7e7300a2de9600489b70901a7826a10d
4243d96f83960e58dd2e735a93f67d0fb9563299
1c6d04b587889d5c1d37444d1dea1e478590502ddf233b45333cd8f5e8487936
GET /css/main.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 5728
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/style.css
23.94.16.6200 OK 83 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/style.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (680), with CRLF line terminators
Hash 7bcd4d69bd99f48a2d2d2dab53707a29
d5fd90421a3ae89fdd488a53a5bbcda6e66cb1c8
42580a5ec9a35f073ffc1ba827dc2bce964239a079925f99bcf5155fb93199ad
GET /style.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:04 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 82753
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/metisMenu/metisMenu.min.css
23.94.16.6200 OK 2.6 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/metisMenu/metisMenu.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (2409), with CRLF line terminators
Hash 00f35c0299795ab1f9c3011c70fa5dc1
4a1a713e68c465fe0adc4a362154b8894d8d2785
b477071bb2c352b33ac8b5d0cb5a5008eb53df0f4c5373af7a85c1b0e326c6cf
GET /css/metisMenu/metisMenu.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:03 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2624
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/metisMenu/metisMenu-vertical.css
23.94.16.6200 OK 2.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/metisMenu/metisMenu-vertical.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 7477f8a6cd3db4972945c57cdcc7efb2
ff24a84083ac890cc25ddbd310293a9359c374e3
7db81005362af5d45084c476f48270542effdcd9c7a63fd68067ca20d0b59400
GET /css/metisMenu/metisMenu-vertical.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:04 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1955
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/responsive.css
23.94.16.6200 OK 5.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/responsive.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash eebf7a2ffe1e2fab37490c83655eec3f
fcaa54464617dd8f3a65fa5a279e43ba3622c79a
037bd0eae6d47a7a260eb636ea49034ef88cf0ef220715fa9530739db44e4dc7
GET /css/responsive.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 5024
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/calendar/fullcalendar.print.min.css
23.94.16.6200 OK 2.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/calendar/fullcalendar.print.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (1765), with CRLF line terminators
Hash ea7e52c169646c54d821d010f4359741
a6354e89c99342767aae85e8c498c9aa6aa23f0d
3781265c682429d0a4469414c1fcc32f994fd55b2b05e289397877cb736f3a02
GET /css/calendar/fullcalendar.print.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:04 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1979
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/css/calendar/fullcalendar.min.css
23.94.16.6200 OK 16 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/calendar/fullcalendar.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (15593), with CRLF line terminators
Hash 3fc770d4cfa88e05f0e00999140dc15d
aacc57ef92431d112cd3ded9aa40d466828be734
cf80d832b187c7ae998d32a7abfae2e6968046ad1a8b63ad4269899e364036ff
GET /css/calendar/fullcalendar.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:04 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 15690
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/js/vendor/modernizr-2.8.3.min.js
23.94.16.6200 OK 16 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/vendor/modernizr-2.8.3.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type HTML document, ASCII text, with very long lines (14856)
Hash da941a6e1e1df098744318f6d25ba13a
15f441d0df5a01efc674d62b88c0c95bf233656a
2b0f8526e7a1b0f1fb42e8acec3c1e7737a1a3065b773ebd13a492952f557967
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/modernizr-2.8.3.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 15514
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/library/spry/passwordvalidation/SpryValidationPassword.js
23.94.16.6200 OK 20 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/library/spry/passwordvalidation/SpryValidationPassword.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash 29564498d98a38bafad2c3d8f47d27e2
964862018aed909839ae4e02b7d74d8926070347
13ba894342b76563c80c26d7bbbde0fb9ff93786ed9c1468eedb563d044d1a8e
Analyzer Verdict Alert fortinet Phishing
GET /library/spry/passwordvalidation/SpryValidationPassword.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2019 18:27:18 GMT
Accept-Ranges: bytes
Content-Length: 20148
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/css/form/all-type-forms.css
23.94.16.6200 OK 58 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/form/all-type-forms.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash c926bc3e83129c26be7fca2fa2f06295
3844a29e31d80bbdf06eff9470c2707402542532
5f88718e91712b06156944a82e457ec8901088d3ef296debd4672780a7ad4772
GET /css/form/all-type-forms.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:04 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 57773
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/library/spry/passwordvalidation/SpryValidationPassword.css
23.94.16.6200 OK 2.3 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/library/spry/passwordvalidation/SpryValidationPassword.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash ac876980c2efd72b82ee9de0662cea20
7d339b59bad21ff5f63578ccf3b2a074af3c6fcd
65b41d9ab1c132bf89fe89ca464550b60019aebf5aa7d7c479b924921ccda07c
GET /library/spry/passwordvalidation/SpryValidationPassword.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2019 18:27:18 GMT
Accept-Ranges: bytes
Content-Length: 2342
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/library/spry/textfieldvalidation/SpryValidationTextField.css
23.94.16.6200 OK 3.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/library/spry/textfieldvalidation/SpryValidationTextField.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type assembler source, ASCII text
Hash 35b67efd7499b8cf69f5efcd8ca9a40b
191ddf4810aa01d5cb9c475772b68f8af0417502
775795810a39a9ca0d65c24b97ea33ca1a24f13036349e281a5fd0cbabdf9866
GET /library/spry/textfieldvalidation/SpryValidationTextField.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2019 18:27:18 GMT
Accept-Ranges: bytes
Content-Length: 3018
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ergx.coastlinetrustplc.com/library/spry/textfieldvalidation/SpryValidationTextField.js
23.94.16.6200 OK 75 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/library/spry/textfieldvalidation/SpryValidationTextField.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (430)
Hash a87a2350e9140f31402b5ab5a60e5d69
6326f908d6c2f69bd6bd22e0cb3d076a19d02397
7555b2cd6c16af7c07bf8f2fc42f98019f2ddd877c3a798e1f65caf689e448b2
Analyzer Verdict Alert fortinet Phishing
GET /library/spry/textfieldvalidation/SpryValidationTextField.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2019 18:27:18 GMT
Accept-Ranges: bytes
Content-Length: 75184
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Sat, 04 Feb 2023 09:33:41 GMT
Date: Sat, 04 Feb 2023 07:06:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Sat, 04 Feb 2023 09:33:41 GMT
Date: Sat, 04 Feb 2023 07:06:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Sat, 04 Feb 2023 09:33:41 GMT
Date: Sat, 04 Feb 2023 07:06:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Sat, 04 Feb 2023 09:33:41 GMT
Date: Sat, 04 Feb 2023 07:06:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Sat, 04 Feb 2023 09:33:41 GMT
Date: Sat, 04 Feb 2023 07:06:05 GMT
Connection: keep-alive
ergx.coastlinetrustplc.com/css/font-awesome.min.css
23.94.16.6200 OK 28 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/font-awesome.min.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /css/font-awesome.min.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 27466
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 2761
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 32421
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 32739
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ThTL_OlFd4yMELCmSzH4ziqxa8gdYgAAbxLY9VZPVaIldOUkvFVF_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:43 GMT
age: 32002
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28099f5ad8a27e5a49a0d1c842486329
d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd
1d798d35ceae594d86fa43aa0ef47b962c52bb1557e17dda9b294bd01f374b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8352
x-amzn-requestid: 80032cef-14cd-4f56-9830-8c74891ed00f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEqQFDJIAMFspQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8174-6d3310287fc74bb27e9b038a;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: byr2TaC2xnnUl56r2iGKZI0o8Ctsv0iy42h_F7-ezKpEijaH9rr5EQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:53 GMT
etag: "d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd"
content-type: image/jpeg
age: 31992
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 32998
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ergx.coastlinetrustplc.com/js/wow.min.js
23.94.16.6200 OK 8.4 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/wow.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (8396)
Hash 161ba788d7ca4d554b4a0c609ce2cd67
4ec798a81020992a75f08b37584fb5314ac8516f
167d7ca784f3d3948837ea87c90fae712a158e7f34d02fc8dcdc091aefa62c7f
Analyzer Verdict Alert fortinet Phishing
GET /js/wow.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 8426
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/owl.carousel.min.js
23.94.16.6200 OK 24 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/owl.carousel.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (635)
Hash 88d0fe722f04973e2888b58a63aa0570
f947512e51f8ef4b15bba3f701de64e53a7f7f9b
e0e2bc4e1d3ee5024c4e1aa58a6cad9aa42fc63a8c89ce18013a1c8f2b94875c
Analyzer Verdict Alert fortinet Phishing
GET /js/owl.carousel.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 23890
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/jquery-price-slider.js
23.94.16.6200 OK 24 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/jquery-price-slider.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (23835)
Hash 176ce03e4752c5f8a566448ece249c4a
252f6c481a357b41d770576d02edcc9cda33f619
c128349972449ae27a608bfd40ac04d7622740c282059768c5af075af3856cef
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-price-slider.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 24017
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/jquery.meanmenu.js
23.94.16.6200 OK 12 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/jquery.meanmenu.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 255a9e1744daab430b1ca4472ceb1a54
fddb7de79c13bf8fe7f1502f97f4c32b87e34b90
c40d1af355e70de1d76924b7a6ee44d1a1c69b6b9b96795d07eb447771043b8d
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.meanmenu.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 11750
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/css/owl.carousel.css
23.94.16.6200 OK 1.5 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/css/owl.carousel.css
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash 0371b5a2d50e985b09b7d337edc0dc9f
07ad383de4cd0e21c289e3c6695b4822d1a7ad1d
4dc77ee90dc2225b57b31d28fe06213cd6c491bdc7249a6e70ebd003b72c5702
GET /css/owl.carousel.css HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1476
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/play/v17/6aez4K2oVqwIvtU2Hw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17164, version 1.0\012- data
Hash c76806d1f447336b530232d9a7ecaa10
72f3c5f813c34a85df23c05a79e5125cd6096260
6cdceb438e41ee07d58b7214785e14651205d8cc4b158a9a3ab988515f66c1cc
GET /s/play/v17/6aez4K2oVqwIvtU2Hw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 18:06:36 GMT
expires: Sat, 03 Feb 2024 18:06:36 GMT
cache-control: public, max-age=31536000
age: 46769
last-modified: Wed, 27 Apr 2022 16:06:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ergx.coastlinetrustplc.com/js/scrollbar/mCustomScrollbar-active.js
23.94.16.6200 OK 1.6 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/scrollbar/mCustomScrollbar-active.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash f59ead0ae61f5d0db648d13ede143dfb
bfa234ed7f73a84d2ef89a23e5094e73622fd957
97d6bf93019cdbb055b975ffd908cfa88cbe87abf6734227abb325f539068feb
Analyzer Verdict Alert fortinet Phishing
GET /js/scrollbar/mCustomScrollbar-active.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 1576
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/scrollbar/jquery.mCustomScrollbar.concat.min.js
23.94.16.6200 OK 46 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/scrollbar/jquery.mCustomScrollbar.concat.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (32001), with CRLF line terminators
Hash 9df3cfdcc9b72f1aa24e2e114455ae7a
e6ac207cdb6c4591f2d39f2a645f6dbf42534f89
5ab5f19f9bd4a4ddcf14235fc1684eefe7cfbfbc33f0a1fce661b13de43092be
Analyzer Verdict Alert fortinet Phishing
GET /js/scrollbar/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 45483
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/jquery.sticky.js
23.94.16.6200 OK 10 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/jquery.sticky.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash a4263853abafee4fe7b3dcc5f3898b86
30989688f272e201b266186020da67c09aec84c8
633b67bbbf98d68217fd03322c434a01f088092a995a474fba69b81bde46a7b1
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.sticky.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 10273
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/jquery.scrollUp.min.js
23.94.16.6200 OK 2.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/jquery.scrollUp.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type Unicode text, UTF-8 text, with very long lines (1872)
Hash 63bbf26c1fd78c531513dd6a4a2e4f51
f349a84e4c1bf94aa3278bc578043b52a9ce33a2
b7662ba99a132eafd0b7ccc8c3404c8ae442d97e7e6b73bb3ce0d4f11c28c98c
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.scrollUp.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2035
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17216, version 1.0\012- data
Hash 136a643fb4e5f2ff8e2ee7bf990dc36b
049d9ab9dea3429bde3c5a1a401666ab766c4689
669ad8e27574eb5e9fcf9af7c0e103081d7e5be1ac28cd7c3d110591a8dfab88
GET /s/play/v17/6ae84K2oVqwItm4TCpAy2g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 06:42:20 GMT
expires: Wed, 31 Jan 2024 06:42:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:54:34 GMT
content-type: font/woff2
age: 347025
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css
142.250.74.3200 OK 4.3 kB URL HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css
IP 142.250.74.3:0
File type ASCII text, with very long lines (23413), with no line terminators
Hash c41e5d33c01691d96d76486b1544004b
20b040a572de3003c9977df33e2d631efb9cb68c
f063d4dbe944940b190b4da3716cc71fca549b9fd46d4b30ecf8e0c4a651593c
GET /_/translate_http/_/ss/k=translate_http.tr.iCxGNTE3Tqc.L.F4.O/d=0/rs=AN8SPfqhvHUlOSBSG-4xrkKOTAVZqlAYTA/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 18:28:28 GMT
expires: Fri, 02 Feb 2024 18:28:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 06:11:41 GMT
content-type: text/css; charset=UTF-8
age: 131857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ergx.coastlinetrustplc.com/js/metisMenu/metisMenu.min.js
23.94.16.6200 OK 5.5 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/metisMenu/metisMenu.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (5217), with CRLF line terminators
Hash 6b26257472a51fbd3a00a8d81b147c55
0fe5aff730e8c4f794f17277670de22235ce3929
c267959d16f5f8ca8f995f552e1312075e8cd9f21d14f9c19d6f21bd4c2235af
Analyzer Verdict Alert fortinet Phishing
GET /js/metisMenu/metisMenu.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 5471
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/vendor/jquery-1.11.3.min.js
23.94.16.6200 OK 96 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/vendor/jquery-1.11.3.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (32038)
Hash f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/jquery-1.11.3.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 95992
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/metisMenu/metisMenu-active.js
23.94.16.6200 OK 87 B URL HTTP/1.1 ergx.coastlinetrustplc.com/js/metisMenu/metisMenu-active.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 2cf83ee3bec5ffd79954129c8cafcff2
2501fcb0bd6a9dcb53b740fa9bf4327ff727ad55
5f02f72399b62b21b81d944a07125e83701654c6b1ba72f0d5739aac72619c80
Analyzer Verdict Alert fortinet Phishing
GET /js/metisMenu/metisMenu-active.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 87
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/tab.js
23.94.16.6200 OK 4.1 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/tab.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 30fa0424b34a467ac124fad3fbe4b7f6
d2151138bb2f9485aea9c0e7f81e9368c4847778
0a004e0c2cf432897f1140271ce318568cab13513ed580876fde385410efc303
Analyzer Verdict Alert fortinet Phishing
GET /js/tab.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 4058
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/main.js
23.94.16.6200 OK 2.8 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/main.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b15d52e4803a651bb9f3b32a77a17a55
673c47d4b824c473514ec80b351588303704fdb3
39d1bb63639547bac3c52b3ed6e0b33598fdeee6ea477575367d20c37dadb2ad
Analyzer Verdict Alert fortinet Phishing
GET /js/main.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2776
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/icheck/icheck-active.js
23.94.16.6200 OK 172 B URL HTTP/1.1 ergx.coastlinetrustplc.com/js/icheck/icheck-active.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF line terminators
Hash 7fb65df520f9743d9b51a8749c31d304
95bc8d192b76ccc172d620e5f13f919b201b5bb7
6afb15066867d2c31d6bba14b512b7138de75a712ac377b2c18766db8ca9d508
Analyzer Verdict Alert fortinet Phishing
GET /js/icheck/icheck-active.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 172
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/plugins.js
23.94.16.6200 OK 760 B URL HTTP/1.1 ergx.coastlinetrustplc.com/js/plugins.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
Hash 074c4c08f0730c4d4ca76f724355807c
09d6a93af6b87a67c5773163d35f40b993fca3d3
c6129bd3aeb079f5c310d2a9618478ba0d621992c1a5e5ef320917937dc2dbb7
Analyzer Verdict Alert fortinet Phishing
GET /js/plugins.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 760
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/js/icheck/icheck.min.js
23.94.16.6200 OK 5.0 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/js/icheck/icheck.min.js
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (531), with CRLF line terminators
Hash 3b691cb033ad762bed8db982fd1843eb
27660050134c62017c8bad4ebc2c1a230da88131
d4e07000aeb7d88bbb451529d044af47b3fc4e802bc687520261b69169402499
Analyzer Verdict Alert fortinet Phishing
GET /js/icheck/icheck.min.js HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 4996
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
ergx.coastlinetrustplc.com/img/logo-small.png
23.94.16.6200 OK 8.9 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/img/logo-small.png
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 177 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9061fb5cbb28f9d3bbf0847ab9386f10
eadf4ae1bf06f813b09d54e6498bbfc27087ab8c
6c8238aecc2bd8486d2894a4a2933008a83239fd1d81d1b29d43fb6fe8c7e938
GET /img/logo-small.png HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Sat, 21 May 2022 13:30:58 GMT
Accept-Ranges: bytes
Content-Length: 8860
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3ce1bc23c86ace6b4d4949b2224e9132
f851119c51f81bc066be434187579385fb01efa0
a557c7ae0ad294e00d85e6aa2b556ce3a64009127d159ebb9b98c83969ac39ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6441
Cache-Control: max-age=122795
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:06 GMT
Etag: "63dd2760-117"
Expires: Sun, 05 Feb 2023 17:12:41 GMT
Last-Modified: Fri, 03 Feb 2023 15:25:20 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ergx.coastlinetrustplc.com/img/green1.png
23.94.16.6200 OK 2.8 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/img/green1.png
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 218 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash fc9bbdb9dab0488de792808315756d93
bd81f17cf77aaed0cbdf6da0433a0244a8629caa
0acb804d6c83a84dd8f2d7eb9f20a76374e8f3f2d54ae2a2e9ea64572c5368b5
GET /img/green1.png HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/style.css
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:05 GMT
Server: Apache
Last-Modified: Mon, 15 Oct 2018 08:56:18 GMT
Accept-Ranges: bytes
Content-Length: 2803
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.k4EubO_g8sw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqso9EOrOP64PthfqJk228DmwkZLA/m=el_main
142.250.74.106200 OK 76 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.k4EubO_g8sw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqso9EOrOP64PthfqJk228DmwkZLA/m=el_main
IP 142.250.74.106:0
File type ASCII text, with very long lines (2057)
Hash 0e8adf0cb4a760f69a0cc7db3e06d42d
7b62952ff254f5eb934d9867f4929a5dc2bb54ce
978cada354ff18ed044c01a86bdfb44df71d474d026d587a5e6a9001138de7a2
GET /_/translate_http/_/js/k=translate_http.tr.no.k4EubO_g8sw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqso9EOrOP64PthfqJk228DmwkZLA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75962
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 20:43:43 GMT
expires: Fri, 02 Feb 2024 20:43:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 06:11:41 GMT
content-type: text/javascript; charset=UTF-8
age: 123743
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ergx.coastlinetrustplc.com/img/icon.png
23.94.16.6200 OK 39 kB URL HTTP/1.1 ergx.coastlinetrustplc.com/img/icon.png
IP 23.94.16.6:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 8be05cf6d00a5a0a26a613b72410bafd
53ee2390ea1ea467be8516e63bd63879b688d7ee
fbd32bd0233ef3825b33e0d152f5ab4a6866445a686a279ef1130efe47826c77
GET /img/icon.png HTTP/1.1
Host: ergx.coastlinetrustplc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/login.php
Cookie: PHPSESSID=chndgoiiogvj6idlf402lv5bs3
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 07:06:06 GMT
Server: Apache
Last-Modified: Thu, 01 Jul 2021 20:14:14 GMT
Accept-Ranges: bytes
Content-Length: 39215
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3ce1bc23c86ace6b4d4949b2224e9132
f851119c51f81bc066be434187579385fb01efa0
a557c7ae0ad294e00d85e6aa2b556ce3a64009127d159ebb9b98c83969ac39ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6441
Cache-Control: max-age=122795
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 07:06:06 GMT
Etag: "63dd2760-117"
Expires: Sun, 05 Feb 2023 17:12:41 GMT
Last-Modified: Fri, 03 Feb 2023 15:25:20 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.193.229200 OK 54 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (32014)
Hash ea53ffc3c20542881a2735a62c0426d7
365e24ffd4a54e4c019a47c94204ad90a8538eb5
e4f801f6cd7462489966e441ff53795823a607656497f9d0ce8cbfc08f6c7448
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 07:06:09 GMT
age: 27640725
x-served-by: cache-fra19156-FRA, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
104.22.24.131200 OK 20 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP 104.22.24.131:0
File type ASCII text, with no line terminators
Hash 639bfd60ac0974343e2c29669e64d0c4
3f76732530180fd442367b1c9ebebd88fc0e88dc
9fea072d135aa5a914f069321dcc3efa34d6174caf4ae00dc9f4f2f46471caa4
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:06 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcf5f26b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vsb111.tawk.to/s/?k=63de03e0bfcd937997705b57&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQiLCJ2aWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQtYTFaQ1FNU1lkbG1LWXE2SUlkblVvIiwic2lkIjoiNjNkZTAzZTBiZmNkOTM3OTk3NzA1YjU3IiwiaWF0IjoxNjc1NDk0MzY4LCJleHAiOjE2NzU0OTYxNjgsImp0aSI6Im4tZTNGUWtiWjcxTWdxeTRKNDRrUiJ9.WDGabna5sFWFrKmty7gs_vBDRkPmxf98SwR84nFRcpPKFsD9HOnPrqrtZaH9TVEHUmaVGqa3LcKapV7EfDUYeg&EIO=3&transport=websocket&__t=OORFwr0
104.22.25.131101 Switching Protocols 0 B URL HTTP/1.1 vsb111.tawk.to/s/?k=63de03e0bfcd937997705b57&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQiLCJ2aWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQtYTFaQ1FNU1lkbG1LWXE2SUlkblVvIiwic2lkIjoiNjNkZTAzZTBiZmNkOTM3OTk3NzA1YjU3IiwiaWF0IjoxNjc1NDk0MzY4LCJleHAiOjE2NzU0OTYxNjgsImp0aSI6Im4tZTNGUWtiWjcxTWdxeTRKNDRrUiJ9.WDGabna5sFWFrKmty7gs_vBDRkPmxf98SwR84nFRcpPKFsD9HOnPrqrtZaH9TVEHUmaVGqa3LcKapV7EfDUYeg&EIO=3&transport=websocket&__t=OORFwr0
IP 104.22.25.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=63de03e0bfcd937997705b57&cver=0&pop=false&asver=4&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQiLCJ2aWQiOiI2Mjg4ZWEyN2IwZDEwYjZmM2U3MzViNjQtYTFaQ1FNU1lkbG1LWXE2SUlkblVvIiwic2lkIjoiNjNkZTAzZTBiZmNkOTM3OTk3NzA1YjU3IiwiaWF0IjoxNjc1NDk0MzY4LCJleHAiOjE2NzU0OTYxNjgsImp0aSI6Im4tZTNGUWtiWjcxTWdxeTRKNDRrUiJ9.WDGabna5sFWFrKmty7gs_vBDRkPmxf98SwR84nFRcpPKFsD9HOnPrqrtZaH9TVEHUmaVGqa3LcKapV7EfDUYeg&EIO=3&transport=websocket&__t=OORFwr0 HTTP/1.1
Host: vsb111.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://ergx.coastlinetrustplc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HiJUMBJlHgKVR7EpvgjjAA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 04 Feb 2023 07:06:09 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: neiIid3yUAKQsGDKk6GDdt+mrwQ=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 79418fde3ae9b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.174200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.174:0
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 Feb 2023 07:06:03 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+721; expires=Mon, 03-Feb-2025 07:06:03 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:06 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcf4f19b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:07 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcf4f1bb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Play:400,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Play:400,700
IP 142.250.74.74:0
GET /css?family=Play:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 07:06:03 GMT
date: Sat, 04 Feb 2023 07:06:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/6288ea27b0d10b6f3e735b64/1g3jd5bdt
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/6288ea27b0d10b6f3e735b64/1g3jd5bdt
IP 104.22.24.131:0
GET /6288ea27b0d10b6f3e735b64/1g3jd5bdt HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:06 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcb9d06b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:06 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcf5f25b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ergx.coastlinetrustplc.com
Connection: keep-alive
Referer: http://ergx.coastlinetrustplc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:06:07 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79418fcf5f1eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2