Report - enernatural.com/routes/cb/ewd0i7rdcczorrb978x265mi.php

Report Overview

Submitted URL
enernatural.com/routes/cb/ewd0i7rdcczorrb978x265mi.php
IP
185.46.121.87
ASN
#62134 IHNetworks, LLC
Submitted
2022-09-29 03:04:01
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	3.3 kB	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	20 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	47 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	20 kB	104.17.24.14
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	463 B	24 kB	142.250.74.163
enernatural.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	40 kB	2.5 MB	185.46.121.87
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	43 kB	142.250.74.72
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.191.210.155
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	31 kB	69.16.175.42
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	76 kB	104.18.10.207
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	591 B	707 B	64.233.165.156
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	746 B	216.58.211.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-29	medium	enernatural.com/routes/cb/ewd0i7rdcczorrb978x265mi.php	Malware
2022-09-29	medium	enernatural.com/403.shtml	Malware
2022-09-29	medium	enernatural.com/	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/js/tether.min.js	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/js/slick.min.js	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/js/en.js	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/images/cd-icons-cart-close.svg	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/fonts/ionicons28b5.ttf?v=2.0.0	Malware
2022-09-29	medium	enernatural.com/public/assets_frontend/images/cd-icon-arrow-next.svg	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=UA-137708041-1	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-137708041-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:54 Last Seen2023-03-08 03:18:54 Times Seen1 Hash c94933c6d717e718bfab98076feac4c5 b6f069e6ddd68d85ca93bc5a7af20c58d61b0310 5008d1c7406ba3da4c84437cfa2c62a3ba1f01c32aabefc204794205a053c0f0 Loading...

	enernatural.com/	6.7 kB	2023-03-08	2023-03-08
Pretty URL enernatural.com/ IP 185.46.121.87 ASN #62134 IHNetworks, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:54 Last Seen2023-03-08 03:18:54 Times Seen1 Hash 8f1190d30dba204cef8c54b018907252 e4e40bc614c95fd296d9072871584e28187a5ac9 42b015c3cb3ecbf6accd117fec9b49cb4facb0652ed911144fe943b115ac84d7 Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js	37 kB	2023-03-07	2024-04-23
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-23 18:56:37 Times Seen54504 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-04-23
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-23 18:29:05 Times Seen61659 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	enernatural.com/public/assets_frontend/js/tether.min.js	23 kB	2023-03-07	2024-04-10
Pretty URL enernatural.com/public/assets_frontend/js/tether.min.js IP 185.46.121.87 ASN #62134 IHNetworks, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:12 Last Seen2024-04-10 15:07:01 Times Seen230 Hash df4c4d96cf342bbc4f37123f25d72fde 614e3f2ccf3b6a811b35566583f19d5000ca1a69 7a208a14587694c3607e6a9421063aec6495232c103d872a1d3e750379d83c28 Loading...

	enernatural.com/public/assets_frontend/js/slick.min.js	43 kB	2023-03-07	2024-04-23
Pretty URL enernatural.com/public/assets_frontend/js/slick.min.js IP 185.46.121.87 ASN #62134 IHNetworks, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-04-23 17:30:20 Times Seen34306 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	enernatural.com/public/assets_frontend/js/en.js	10 kB	2023-03-08	2023-03-08
Pretty URL enernatural.com/public/assets_frontend/js/en.js IP 185.46.121.87 ASN #62134 IHNetworks, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:54 Last Seen2023-03-08 03:18:54 Times Seen1 Hash 497aef592dba90095d5cb8a48ac64af5 bbc13aa87608e7ce9c55518da70e0a1dafffa901 1be51056a27ce949a977103e10844fcc03cbbafb505717b17dbe68ba6d1a198b Loading...

	enernatural.com/	155 B	2023-03-08	2023-03-08
Pretty URL enernatural.com/ IP 185.46.121.87 ASN #62134 IHNetworks, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:18:54 Last Seen2023-03-08 03:18:54 Times Seen1 Hash 624f8fcbf61dc548d603fc3f0a6548dc f67001e312ad9dc34443777c5fd66d0db07a68c9 b9f915a09c3c0bc04d668c9ec1a53329cbfc6f6613e16908d596d3a85010cd95 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.js	5.5 kB	2023-03-07	2024-04-21
Pretty URL cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:39 Last Seen2024-04-21 22:27:07 Times Seen1509 Hash b36f28de584845317de40a7219c82b1c 6de8657c8782561bc023478ab708179ed846db1a ddb96c25de07962ffbc0243e6e68177ce74aee9fd950cb4f5d8d3c8e6c524a09 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.0/jquery.validate.js	51 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.0/jquery.validate.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:07 Last Seen2024-04-19 12:31:55 Times Seen77 Hash 39f269417ff5b840986d3b410e3aa139 104470bdc520cb86cd99ac80f9c7dd9dca7e5626 be18bc4f0ddf05cf8bf13e96bf167fae6741d00c01a950edc5cf2b90afd5ba17 Loading...

HTTP Transactions (87)

URL IP Response Size

enernatural.com/routes/cb/ewd0i7rdcczorrb978x265mi.php

185.46.121.87

301 Moved Permanently

241 B

URL HTTP/1.1
enernatural.com/routes/cb/ewd0i7rdcczorrb978x265mi.php
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
241 B (241 bytes)
Hash
ed66a0fa560fdb1f63e2a5e5ceb6ee1c
bc9e05633a72499313d98b419c5ff481d8aaf822
1a5b32e84db5cf42478254ed28e4d02b8b0b25b5ad688561e4d5166ba946fbc2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /routes/cb/ewd0i7rdcczorrb978x265mi.php HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Location: https://enernatural.com/403.shtml
Content-Length: 241
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6dd4587c98aef98ad0939030a6976a7f
92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e
a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14596
Expires: Thu, 29 Sep 2022 07:07:06 GMT
Date: Thu, 29 Sep 2022 03:03:50 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 02:15:49 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ikaROPURqgTPOIwr2Za8AEZlo6PiHtEH83EvLL0wA26MRVJ0dJDNYA==
Age: 2881

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _msSmbZHRxswC2m5LtaDd0GVBsH4r0n1Qfka0TJLdktkvOjdxXacZA==
age: 77724
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 03:03:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

enernatural.com/403.shtml

185.46.121.87

302 Found

336 B

URL HTTP/1.1
enernatural.com/403.shtml
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
336 B (336 bytes)
Hash
d15134b20ea15debcc9d76a1b8d2c6ba
4df6eda904e8f757633430d0bdd749b442924762
5ec287045c2f4a9ac1eb7cb9cb08b1193976f59db4098ee1b7340b295ff37706

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /403.shtml HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Imk2NFU5UU1yWFwvUzBHZ1hzNmhBMVJRPT0iLCJ2YWx1ZSI6Ik0zT3lrUXpMN1Zsc24wRlhSZEh5SW8xTHpUQWptWURvS0s3VnljQjhrZUtSMWw5UkcxOXpWVWlIMkd2U1NwREkiLCJtYWMiOiIzMmI3NzVjZjNhNTBmZjkxYjUwMDFmYmIwYzMwMmY0NWJkZjhlYzQwMmRmNTc1ZWNjYTYxYmQ2YTY4NWYyNzUwIn0%3D; expires=Thu, 29-Sep-2022 05:03:50 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IkRFWFhRYzdPK3BQVmUzd042WXZ6RXc9PSIsInZhbHVlIjoiVlRTWTR0SUUzcVdLRVljd2lWQVo1V09zQkVQdUtXNEhQQTB3cmk0N2lDc0gzN1I5M2pRV2FyWHJiM2RXa1BsbSIsIm1hYyI6ImQ3Mjk4MWU3N2QxMmE0NjZmOTA0M2E2NDljYzI0Y2ZkZGFkZWNhZGJiOWM3ZDI0ZDlmNzIxYmI5ZTUxODAwMjUifQ%3D%3D; expires=Thu, 29-Sep-2022 05:03:50 GMT; Max-Age=7200; path=/; httponly
Location: https://enernatural.com
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

enernatural.com/

185.46.121.87

200 OK

55 kB

URL HTTP/1.1
enernatural.com/
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (629), with CRLF, LF line terminators
Size
55 kB (54687 bytes)
Hash
a7ea2a02cf6c6c0776fbcc826f668919
dabae7d4884df5e2156805328d0a68177b14149a
444da80064123405f888349eb510da0a557a5b5e225e5b12a55ac68dc9dbcbe4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Imk2NFU5UU1yWFwvUzBHZ1hzNmhBMVJRPT0iLCJ2YWx1ZSI6Ik0zT3lrUXpMN1Zsc24wRlhSZEh5SW8xTHpUQWptWURvS0s3VnljQjhrZUtSMWw5UkcxOXpWVWlIMkd2U1NwREkiLCJtYWMiOiIzMmI3NzVjZjNhNTBmZjkxYjUwMDFmYmIwYzMwMmY0NWJkZjhlYzQwMmRmNTc1ZWNjYTYxYmQ2YTY4NWYyNzUwIn0%3D; laravel_session=eyJpdiI6IkRFWFhRYzdPK3BQVmUzd042WXZ6RXc9PSIsInZhbHVlIjoiVlRTWTR0SUUzcVdLRVljd2lWQVo1V09zQkVQdUtXNEhQQTB3cmk0N2lDc0gzN1I5M2pRV2FyWHJiM2RXa1BsbSIsIm1hYyI6ImQ3Mjk4MWU3N2QxMmE0NjZmOTA0M2E2NDljYzI0Y2ZkZGFkZWNhZGJiOWM3ZDI0ZDlmNzIxYmI5ZTUxODAwMjUifQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; expires=Thu, 29-Sep-2022 05:03:50 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D; expires=Thu, 29-Sep-2022 05:03:50 GMT; Max-Age=7200; path=/; httponly
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5308
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 01:35:23 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5746
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 01:28:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2b52ad405720d7d4665f40f842db9e99
c7e9646a8f2d2d8e932b26d231a518647230e308
c1d5aef26522bc5412943bef33f64ed3491d51283b1f740765d775b0ded71330

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 02:06:23 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2b52ad405720d7d4665f40f842db9e99
c7e9646a8f2d2d8e932b26d231a518647230e308
c1d5aef26522bc5412943bef33f64ed3491d51283b1f740765d775b0ded71330

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 02:06:23 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.js

104.17.24.14

200 OK

1.9 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5215)
Size
1.9 kB (1885 bytes)
Hash
b3cd1197cd16cf84e2e4313f2ba15142
5b83415c62121e0967d874ad7b12b93e059cee18
ed2fb5b46a4b7e540ddbe08f457d1c2bce74880a8a4298c8b2799039c3297328

HTTP Headers

GET /ajax/libs/toastr.js/latest/toastr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 1885
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffe-15a1"
last-modified: Mon, 04 May 2020 16:17:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2150080
expires: Tue, 19 Sep 2023 03:03:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r7TrxIbfDmHnj4j2UOYcFjHlYRmYiMxA%2B6EHU0yhwY%2BK6kQvpdKP%2Foy9ECV23yrTanXi2lMmjUdfrAOYpnj6yjrTJ5VaMYorUmlqkrjxVUVTXCxtqrPcu8h62pe%2FWYvFVnk%2BHkpf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75217cf13e7a0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.0/jquery.validate.js

104.17.24.14

200 OK

12 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.0/jquery.validate.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (511)
Size
12 kB (11611 bytes)
Hash
680a11e4fc93414585b33c65c4ee1c0f
0779b98713ca9de5acaa250d431ad77e9d779ac6
4d0c0fb0e26f305c9ee43f8bb7ff7d51f9eaea1ff40fa77be592ef9c71060ad3

HTTP Headers

GET /ajax/libs/jquery-validate/1.19.0/jquery.validate.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 11611
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-c5e3"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9861056
expires: Tue, 19 Sep 2023 03:03:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l0w1KkSK4WCGgpokP23MZP6ovXvHzxav%2FeQbkmwC%2FJuF%2FY46yyul3CfVGxlw48rdHh6H278o9iUyIam1DRBgVxy4G3dG0dUU4vmAjyDw7LU1%2BWLF3cKUvNPiJsfq0TuV9cJGZh2l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75217cf13e7c0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

enernatural.com/public/assets_frontend/css/ionicons.min.css

185.46.121.87

200 OK

51 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/css/ionicons.min.css
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
Unicode text, UTF-8 text, with very long lines (50826)
Size
51 kB (51304 bytes)
Hash
70f5c971d00f360accd97e1c4b60a99d
43bbac1c8009ee6b5c56862e5bf8858a767f4c1f
3debd85f04a1dcc0474e0a8df4ce512283e1e29900f0a54d3e25188bed85f3d6

HTTP Headers

GET /public/assets_frontend/css/ionicons.min.css HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:08 GMT
Accept-Ranges: bytes
Content-Length: 51304
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.css

104.17.24.14

200 OK

2.8 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (821)
Size
2.8 kB (2810 bytes)
Hash
71fa98465ba14e44c3eb91ffff94eb07
7cc019e386651bf5305d8e2169ed96e6fdd24d9e
a1bb2d57703607c617d4b0140107a7f92f12d6e8afc49fc8b9779b3064ca683e

HTTP Headers

GET /ajax/libs/toastr.js/latest/toastr.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: text/css; charset=utf-8
content-length: 2810
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffe-1eb5"
last-modified: Mon, 04 May 2020 16:17:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9864175
expires: Tue, 19 Sep 2023 03:03:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NjqfOkyYkfZHOtT7X7cd2J8GZbyBerA2jim5sMEaveINKXO13M9m8C4IjtZrroH%2FMzUGINOaY4Inu%2Fqjl3NMhg%2BOYKwO6EnHjOXGFY1EE9nrHuCHf9r4CsFg%2BO90tvsIbA7Y%2BHHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75217cf14e830b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

enernatural.com/public/assets_frontend/css/custom.css

185.46.121.87

200 OK

4.2 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/css/custom.css
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
ASCII text, with CRLF line terminators
Size
4.2 kB (4212 bytes)
Hash
614987416209f61cb56aa6f5d26fa4fc
1c8fbe4bf93776e75303bde30c7d7592cb96c38c
92dd4402b96bfaa7acb27f95fa10199b611938d7fe7140fdf063bf5e37a68f3a

HTTP Headers

GET /public/assets_frontend/css/custom.css HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Last-Modified: Sun, 17 Mar 2019 02:57:18 GMT
Accept-Ranges: bytes
Content-Length: 4212
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

enernatural.com/public/assets_frontend/js/tether.min.js

185.46.121.87

200 OK

23 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/js/tether.min.js
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
ASCII text, with very long lines (23383), with no line terminators
Size
23 kB (23383 bytes)
Hash
df4c4d96cf342bbc4f37123f25d72fde
614e3f2ccf3b6a811b35566583f19d5000ca1a69
7a208a14587694c3607e6a9421063aec6495232c103d872a1d3e750379d83c28

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/js/tether.min.js HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:00 GMT
Accept-Ranges: bytes
Content-Length: 23383
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

enernatural.com/public/assets_frontend/js/slick.min.js

185.46.121.87

200 OK

43 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/js/slick.min.js
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
ASCII text, with very long lines (42862)
Size
43 kB (42863 bytes)
Hash
d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/js/slick.min.js HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:00 GMT
Accept-Ranges: bytes
Content-Length: 42863
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

enernatural.com/public/assets_frontend/js/en.js

185.46.121.87

200 OK

10 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/js/en.js
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
ASCII text, with very long lines (824)
Size
10 kB (10412 bytes)
Hash
497aef592dba90095d5cb8a48ac64af5
bbc13aa87608e7ce9c55518da70e0a1dafffa901
1be51056a27ce949a977103e10844fcc03cbbafb505717b17dbe68ba6d1a198b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/js/en.js HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 21 Mar 2019 03:40:48 GMT
Accept-Ranges: bytes
Content-Length: 10412
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 01:17:30 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

enernatural.com/public/assets_frontend/css/style.css

185.46.121.87

200 OK

110 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/css/style.css
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
assembler source, ASCII text, with very long lines (615)
Size
110 kB (110408 bytes)
Hash
b02d8fd4cee038e808d95845e0490950
fb4bfb1abd6ad241c690c6dc7c1ff8aedce80ec8
75045c102b6986f2c5760da6071e5ac94376267617b1e0edbbc024d61e7e232d

HTTP Headers

GET /public/assets_frontend/css/style.css HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:50 GMT
Server: Apache
Last-Modified: Thu, 21 Mar 2019 03:50:46 GMT
Accept-Ranges: bytes
Content-Length: 110408
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-3.2.1.min.js

69.16.175.42

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664420631.dop018.sk1.t,1664420631.cds237.sk1.hn,1664420631.cds222.sk1.c
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 02:29:34 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 29 Sep 2022 02:32:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Wvj7IQAgFtrcRTZYy9njiev6u9o4fqbLC-ZCRjzbNo8bkFYJJEsFkw==
Age: 2058

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2b52ad405720d7d4665f40f842db9e99
c7e9646a8f2d2d8e932b26d231a518647230e308
c1d5aef26522bc5412943bef33f64ed3491d51283b1f740765d775b0ded71330

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Last-Modified: Thu, 29 Sep 2022 02:06:23 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css

104.18.10.207

200 OK

21 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65371)
Size
21 kB (20717 bytes)
Hash
685a7574255a6305cbf1c6d2f8e1fcc9
d1cac4e3af5ddd5372243765e9426aea035258fe
8d1b472ad8bb0e6fa6779d9060fac86e47d180e761a3f24500c4d694f26887d2

HTTP Headers

GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 08/20/2022 02:31:16
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 99d5c19a5984756a3ed25c03a0c9d667
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75217cf128e50b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-137708041-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-137708041-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2039)
Size
42 kB (42405 bytes)
Hash
3e0bffb62e78297614ec8650cfd65917
a239d11be5a61d4c6f377353b4b64d97c85e9e83
479a9bd2ba35395f0e0365668a9da3a4d5a51b5e78aed036c9c353e95de01a4e

HTTP Headers

GET /gtag/js?id=UA-137708041-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 29 Sep 2022 03:03:51 GMT
expires: Thu, 29 Sep 2022 03:03:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42405
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2

104.18.10.207

200 OK

18 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 08/20/2022 02:30:41
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 449f2e674f722e655f7c259f36a63757
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75217cf2a9750b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

enernatural.com/filemanager/photos/1/Opt%20version/5e37b460a880f.png

185.46.121.87

200 OK

4.3 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b460a880f.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4346 bytes)
Hash
9d89b2c28a4125991662c955b3c811c1
ccf8cc9bb74da1570bd12ac2e941ffce31d40e2a
449535913ea186d846857b5472125b233cbffbebf9904318ca80bad6d69db3e3

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b460a880f.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

142.250.74.163

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 122010
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

104.18.10.207

200 OK

33 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32033)
Size
33 kB (33295 bytes)
Hash
5b8197ddc405228e63a9d158f6e58b62
93cc649c5ff84d861c81c6cfaa73f8358e517dc8
a94d1ee8cac4f41044337a84c80925360d1928a155354a463a4b6dad85a8057b

HTTP Headers

GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 08/20/2022 02:31:21
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 0643a91f19e7a3368d68f170da39df48
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75217cf148ed0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

enernatural.com/filemanager/photos/1/banners/5e65ff599a378.jpg

185.46.121.87

200 OK

184 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/banners/5e65ff599a378.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x720, components 3\012- data
Size
184 kB (184015 bytes)
Hash
58bb5c55aff2eb5d69f0ebd023593ad4
3a2cdfd3e29c9d043ba8ef17fb0d456088701e07
b321a21d3dfa7d6f4db22589e6a41bb50a163d0aea8b8552e47bc338604e3aac

HTTP Headers

GET /filemanager/photos/1/banners/5e65ff599a378.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

enernatural.com/filemanager/photos/1/Opt%20version/5e37b10dea203.png

185.46.121.87

200 OK

5.8 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b10dea203.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5809 bytes)
Hash
0212f056693c2d058fe1fea352653124
8a470c8b61b996531165efefc71ca81bd7dbf5ea
a05c8e971c3d041f9f10c90eb564c01d9f9f9a3e5978159297d9a64de5aabc5b

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b10dea203.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37ad7204431.jpg

185.46.121.87

200 OK

143 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37ad7204431.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x720, components 3\012- data
Size
143 kB (143428 bytes)
Hash
39e5fac5d7dfd04511a23ec33a6cb69f
bb7891d25de0b238a2ae25c962a7181f3bb7906e
d9526f63d5d21917621b8a27c8827d62bdfad70a7ab3193577da5f25e5bfe39e

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37ad7204431.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/public/assets_frontend/images/arrow-big-g.png

185.46.121.87

200 OK

19 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/images/arrow-big-g.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 170 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18679 bytes)
Hash
0d230a6594c91c3619af7cd4fd251565
cf295e07bf7f9064eb819833c428dfa5098678a6
29821050d7e237c4189425873e3343a766ddeca1e285aed1a999b798223226d5

HTTP Headers

GET /public/assets_frontend/images/arrow-big-g.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:04 GMT
Accept-Ranges: bytes
Content-Length: 18679
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

enernatural.com/public/assets_frontend/images/screenshots/phone.png

185.46.121.87

200 OK

3.5 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/images/screenshots/phone.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 282 x 540, 8-bit colormap, non-interlaced\012- data
Size
3.5 kB (3490 bytes)
Hash
85e55096adf7c42dda5e559aa00b3e81
2a70d691e43b0ec123b3cda0a3c37aa7fd137ee8
06d385b4268033dfc698c746fb51c40efa8709a34ff710f69f32057f40872f33

HTTP Headers

GET /public/assets_frontend/images/screenshots/phone.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:06 GMT
Accept-Ranges: bytes
Content-Length: 3490
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

enernatural.com/public/assets_frontend/images/cd-icons-cart-close.svg

185.46.121.87

200 OK

1.5 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/images/cd-icons-cart-close.svg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
1.5 kB (1512 bytes)
Hash
3bc30759763c250332ff0cd0e9cc254e
5d033f6497dcfe0b6d359e77786fae0b97ae6579
263633565f03e2895d33b300bb24922161fc609f66a4284880c6be1914622e55

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/images/cd-icons-cart-close.svg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:04 GMT
Accept-Ranges: bytes
Content-Length: 1512
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

enernatural.com/filemanager/photos/1/how_to_work/5c8baa5565121.png

185.46.121.87

200 OK

5.9 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/how_to_work/5c8baa5565121.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 130 x 130, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5914 bytes)
Hash
1f03815ffdac29c54d851179c7da7805
e94774ca1d8ae995325d8a3d969995b368f0e2a2
948deffd7f8a5a52c526342861bf96021e1be45b73fd700e3420c16e281daba0

HTTP Headers

GET /filemanager/photos/1/how_to_work/5c8baa5565121.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

push.services.mozilla.com/

54.191.210.155

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.191.210.155:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HkXKF1mqZru7FjmGeo3VGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i3sBK6PvHc3FjGFf4pmIeL7pItg=

enernatural.com/filemanager/photos/1/Opt%20version/5e37ae60021b8.jpg

185.46.121.87

200 OK

142 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37ae60021b8.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x720, components 3\012- data
Size
142 kB (142408 bytes)
Hash
7781a7f159f120a5536f5555886a3cc6
c49f95d3a0c7d87c7c39c49d94b4fc17f56d17b7
6ba036c76b55d9cd0aa1cd9f4a7ba01d83da2b0a2efa7a26c8dbd4482a8ceb2e

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37ae60021b8.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/public/assets_frontend/fonts/ionicons28b5.ttf?v=2.0.0

185.46.121.87

200 OK

188 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/fonts/ionicons28b5.ttf?v=2.0.0
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
188 kB (188508 bytes)
Hash
24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/fonts/ionicons28b5.ttf?v=2.0.0 HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/ionicons.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:02 GMT
Accept-Ranges: bytes
Content-Length: 188508
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/ttf

enernatural.com/filemanager/photos/1/5c8a131f79e2e.png

185.46.121.87

200 OK

9.8 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/5c8a131f79e2e.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 234 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
9.8 kB (9759 bytes)
Hash
6e9b717ab37076edda0ab7033bc4e4ee
d9a9df3ad2300944a0c61d83b74c00b05b0bb250
59b877ed77fdb8bbb7d23ed227a525f03cb55676398e3eb8c8b2e9270d7376d3

HTTP Headers

GET /filemanager/photos/1/5c8a131f79e2e.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/5e37b8f087468.png

185.46.121.87

200 OK

46 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/5e37b8f087468.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 449 x 336, 8-bit/color RGBA, non-interlaced\012- data
Size
46 kB (46175 bytes)
Hash
baa8240895b426c0da4cd05c88208759
6dd4d12c271fb27d883be8e88a9697fa62db8fb2
8b4dc3cf9e21f0b0654bfe8d745241316066871038fe47d56e48492550ddaadc

HTTP Headers

GET /filemanager/photos/1/5e37b8f087468.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37ae060857d.png

185.46.121.87

200 OK

55 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37ae060857d.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 404 x 392, 8-bit/color RGBA, non-interlaced\012- data
Size
55 kB (55357 bytes)
Hash
b0d7eebd9d9430f18041cf6f178b865c
1a973671ab01462f5bf024ff8990882377a6fa50
39bc5d952f1cae8ced42d4b9679bdbc505892eafa1d5688940bd0e644d5dfca1

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37ae060857d.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37b520d1ffd.png

185.46.121.87

200 OK

4.8 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b520d1ffd.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4808 bytes)
Hash
8199ab7fb47372d34e4bd619aaff8a56
356f8894192ca0833b2666cd69515de875ab2ce0
5bbb1ebc6f951d47aa95fd8cae9eef976a2c66e4af233d2a74c845126f27f1e4

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b520d1ffd.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/featur/5c8c9ed2583a1.jpg

185.46.121.87

200 OK

22 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/featur/5c8c9ed2583a1.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
22 kB (22215 bytes)
Hash
b7a66a561f808c50a94b83756e2c4883
a3241e85bf35f74da44a4378a6c07aa749398656
51aff60b565be5845995facb2dcad10e9ad52797151ab2be86aec9e7d03d6ae6

HTTP Headers

GET /filemanager/photos/1/featur/5c8c9ed2583a1.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37b4f1827a0.png

185.46.121.87

200 OK

4.3 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b4f1827a0.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4334 bytes)
Hash
c694363315380776aafc51fc89071f89
38f6081a4da0ff5d52f1f06fd46355b3050ff1e9
dd46cbe2694de72f9f4a0215cf34e23fd63225c68697e91b128fa92842b6585e

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b4f1827a0.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37b5739b0af.png

185.46.121.87

200 OK

2.2 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b5739b0af.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2172 bytes)
Hash
a42089ca887dbd52ee8b152fb0341db8
fdc074e15477bbe377bf41c520eb5c14681232ee
832eb8f625ca1707db6da71c074b857ca498e60d5212d9868d38b192ae37ff16

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b5739b0af.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/public/assets_frontend/images/cd-icon-arrow-next.svg

185.46.121.87

200 OK

783 B

URL HTTP/1.1
enernatural.com/public/assets_frontend/images/cd-icon-arrow-next.svg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
783 B (783 bytes)
Hash
c7ae7de35e463e54797682c39c31a75e
8057af274322290aecd45e680d7cd0a51bf2ff14
c316f180c381e6b3364c5a4e22f24cde3de1b542c029915d22e07645efbe9598

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /public/assets_frontend/images/cd-icon-arrow-next.svg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:02 GMT
Accept-Ranges: bytes
Content-Length: 783
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml

enernatural.com/public/assets_frontend/images/section-image.jpg

185.46.121.87

200 OK

312 kB

URL HTTP/1.1
enernatural.com/public/assets_frontend/images/section-image.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=560, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1920x560, components 3\012- data
Size
312 kB (312423 bytes)
Hash
91df83b884b0d81f604d02ab17abc497
3b68e42fab70cde9516b9f61e1892ef8b61b6009
35519782c121238b62378cf1a8a5ba3c84bec50e75b4f89d60b461ef35f828c7

HTTP Headers

GET /public/assets_frontend/images/section-image.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/public/assets_frontend/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 16:10:04 GMT
Accept-Ranges: bytes
Content-Length: 312423
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37aebea6187.png

185.46.121.87

200 OK

4.7 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37aebea6187.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4738 bytes)
Hash
ce3575252251bcf50453c725730b10de
8ba0245a8708ed3257b7f971df629dd7af2bf69a
94daa11611293a0754cb85f6f48541bb3f7f48af7b2664cda3be4c04de27b308

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37aebea6187.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37b1e964e9e.png

185.46.121.87

200 OK

4.3 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b1e964e9e.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4312 bytes)
Hash
6ca99e8f3ecfbf85ee46f6e25553e386
58f2e33584accc4233abedcd5599d0b7e9068337
830d18a1033585ad3de670b13019c0473deda581827926aa5165e677b47e3b0a

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b1e964e9e.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37aced57ca9.png

185.46.121.87

200 OK

126 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37aced57ca9.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 774 x 707, 8-bit/color RGBA, non-interlaced\012- data
Size
126 kB (125956 bytes)
Hash
cd0657bd77864eee7514cc19e77d82f4
992bd34f6b66e6ab310919400452b5e4fcf052f2
b5f3af2089ea0be611d9d5c5079a9ef539e8d13d353a87c79beb56f877fd6c48

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37aced57ca9.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37b039791e5.jpg

185.46.121.87

200 OK

28 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b039791e5.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
28 kB (28108 bytes)
Hash
75dbd2d74ab92b08e0e91a63acfae091
2e7d83b0d9fc9d0392b0fb37543dd4f3d63a3f7b
b4ae3eef96f45a8524820c83ab90d5f45ade6b68e3f737f06e58040d2cdcf09c

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b039791e5.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37ad9c50d8a.jpg

185.46.121.87

200 OK

225 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37ad9c50d8a.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x720, components 3\012- data
Size
225 kB (225390 bytes)
Hash
041038a1e1e3f08f7937e170b7c9cf6a
b966cec764333c98a8109fb1c8f7fa68abb88537
4a7cf13be1829f03db78e44f4221822f431036d6653b428836cc3acb403b896f

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37ad9c50d8a.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37b2a17dc9b.jpg

185.46.121.87

200 OK

24 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b2a17dc9b.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
24 kB (23704 bytes)
Hash
215437064f860b579a9500843840ebde
8df3463bebc3f021355258bf52e9248e98aaf324
1952b81cb26877022f89636997cb1851720bfebdfc3624e23a192ee04ecef9f9

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b2a17dc9b.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37af3c1e6c1.jpg

185.46.121.87

200 OK

35 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37af3c1e6c1.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
35 kB (35232 bytes)
Hash
e8a6f255b78899d3bbeeafc336a90339
1e216098cd3ca22b74386e5c24b05d4ef126721f
f154350998070f7000e4fc65c43324d5f6ac1ca97726e4ea4e97b237a81c4c0f

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37af3c1e6c1.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37afedbf7c0.jpg

185.46.121.87

200 OK

23 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37afedbf7c0.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
23 kB (22684 bytes)
Hash
d6e355a9c9ffcc3361c421b9cac92f6e
d6d05e981619bf39fbf9117f133c5760434ee0a3
0504bf20f02a8d573bc8adde0c714178d23621112236b6b2f13366aeac8163a4

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37afedbf7c0.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/Opt%20version/5e37b155b3e1c.jpg

185.46.121.87

200 OK

25 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37b155b3e1c.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 280x475, components 3\012- data
Size
25 kB (24746 bytes)
Hash
a5db70480235a00f24e60747c7a4670e
f025552bcfab829debd893c740eed1a102cb932c
dda7b9cf8552b12aaf5503617c3cbd6b2c7e211fe50e3276bdea60c2a9608609

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37b155b3e1c.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:51 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/slides/5d734ede61053.png

185.46.121.87

200 OK

114 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/slides/5d734ede61053.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 674 x 616, 8-bit/color RGBA, non-interlaced\012- data
Size
114 kB (114146 bytes)
Hash
ca7444a7569229a09afd124b456c40d6
f1b4fb7dddeda9ceea34542a045893d797091a38
adb2a2f0a23c4bf5d81b8cb001f61e591f5cf0acec7026247ea9befce049f6b7

HTTP Headers

GET /filemanager/photos/1/slides/5d734ede61053.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/filemanager/photos/1/Opt%20version/5e37ad370d0ad.jpg

185.46.121.87

200 OK

193 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/Opt%20version/5e37ad370d0ad.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x720, components 3\012- data
Size
193 kB (192952 bytes)
Hash
2b2c1b1122605a24e3115dd99e250e61
fcb7b7568b8d2b6f918a90cf0c035355e78bf69f
ea8c9d2a1dcde287b4003f45d48237b7d41bb92bdb387a9ae3a6a9bf19863596

HTTP Headers

GET /filemanager/photos/1/Opt%20version/5e37ad370d0ad.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

enernatural.com/filemanager/photos/1/slides/5c8cc9c5a74c0.png

185.46.121.87

200 OK

157 kB

URL HTTP/1.1
enernatural.com/filemanager/photos/1/slides/5c8cc9c5a74c0.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 774 x 707, 8-bit/color RGBA, non-interlaced\012- data
Size
157 kB (157123 bytes)
Hash
004eb4254c085e89b4d23ab5c61a7b3f
b0f94a3bad5001860cb9a265f57686ca9c7b96d1
f4937a4fbcd3a2157171cfe5ca7a126f60f70b5facbf40733a563446ed095b26

HTTP Headers

GET /filemanager/photos/1/slides/5c8cc9c5a74c0.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png

enernatural.com/images/products/img-01.jpg

185.46.121.87

404 Not Found

25 kB

URL HTTP/1.1
enernatural.com/images/products/img-01.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (629), with CRLF, LF line terminators
Size
25 kB (24965 bytes)
Hash
e00b880d32ced1443db06caa117f313b
f493f9df6c2400d5d2a6efc0d7a1878aa24aa10a
a33e88af942623a4b550ec5e589bbf0bbf3115d47ebd77495b7f0a754b3aaf07

HTTP Headers

GET /images/products/img-01.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

enernatural.com/images/products/img-02.jpg

185.46.121.87

404 Not Found

25 kB

URL HTTP/1.1
enernatural.com/images/products/img-02.jpg
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (629), with CRLF, LF line terminators
Size
25 kB (24965 bytes)
Hash
e00b880d32ced1443db06caa117f313b
f493f9df6c2400d5d2a6efc0d7a1878aa24aa10a
a33e88af942623a4b550ec5e589bbf0bbf3115d47ebd77495b7f0a754b3aaf07

HTTP Headers

GET /images/products/img-02.jpg HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

enernatural.com/public/assets_frontend/fav.png

185.46.121.87

200 OK

925 B

URL HTTP/1.1
enernatural.com/public/assets_frontend/fav.png
IP
185.46.121.87:0
ASN
#62134 IHNetworks, LLC

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
925 B (925 bytes)
Hash
72d42a3d31c99380c7ab80f729bc69c9
1a70188ee7b68c46afb3e12e11cd26288b7c6b19
bc6ba5340cf74b37fcfc55b0f1a73ec9599553bdcef7499dc6fc21dd510d8a04

HTTP Headers

GET /public/assets_frontend/fav.png HTTP/1.1
Host: enernatural.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkNFc2FGT3dHdmdLcGlQN0Nma2c0SEE9PSIsInZhbHVlIjoiTGtGbzhHQyt6QUpNUnJ6a0dnUlcyOUd0Y3RIcVZLT3J3Nkg2N3Q2aWN2ODZ4SVVCOVlJVkYraGU1eWlVYkxmdyIsIm1hYyI6ImM5ZjZmNjQyYjIwZjc4NGQ1YTFiNzc2N2MzYTJmODFjZWEyZjlhNWJhOTg4OTZhYzdlZjZkY2IxYzc5NDM3OGMifQ%3D%3D; laravel_session=eyJpdiI6IlJhemlSSG4wajM5TTNNWHJKQVhjSUE9PSIsInZhbHVlIjoiTkpXYVN4cFR5K0dhK2crWE9XWklzSVg3N0lUNEFjS2tpVk9yeDh6T1diR2docGdrOUFLZ2c3Vm9xS1hjc0g1diIsIm1hYyI6IjlmMGIyMDZmZmYzZTRjOWZiYmNmMWJhNDhhNWJmMDlmOGEzMDI3YjllZWZmMWE4NmQ2ZjM0YjU2MjE0MDljZWUifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 03:03:52 GMT
Server: Apache
Last-Modified: Fri, 05 Apr 2019 08:25:56 GMT
Accept-Ranges: bytes
Content-Length: 925
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (19826 bytes)
Hash
cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 29 Sep 2022 02:41:09 GMT
expires: Thu, 29 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 1363
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
253e735983d6b98808235295de508f8b
e47aa9e4c679c5215cd2d20cd3dcd7ce58fde86d
c4e13af46f6ab54af9a8d5a68fe5c12d8a5c41ed829568380bdeca8c729f1da5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-137708041-1&cid=383254047.1664420630&jid=1333075064&gjid=1973677538&_gid=836754258.1664420630&_u=YEBAAUAAAAAAAC~&z=1767057259

64.233.165.156

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-137708041-1&cid=383254047.1664420630&jid=1333075064&gjid=1973677538&_gid=836754258.1664420630&_u=YEBAAUAAAAAAAC~&z=1767057259
IP
64.233.165.156:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-137708041-1&cid=383254047.1664420630&jid=1333075064&gjid=1973677538&_gid=836754258.1664420630&_u=YEBAAUAAAAAAAC~&z=1767057259 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://enernatural.com
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://enernatural.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 29 Sep 2022 03:03:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
253e735983d6b98808235295de508f8b
e47aa9e4c679c5215cd2d20cd3dcd7ce58fde86d
c4e13af46f6ab54af9a8d5a68fe5c12d8a5c41ed829568380bdeca8c729f1da5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 03:03:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21090
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 03:03:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21090
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 03:03:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21090
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 03:03:53 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4093 bytes)
Hash
aed4d25286420a1405c3274931194002
c17c7bdfa4b40f9a0634da65c610869e5c410bf1
f32058bdd49930b927d1f9fdfd204ed054b4f85e0d679eff067d522d42ac504a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4093
x-amzn-requestid: 88076712-b2bb-4aee-81a7-ae35201748ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKZtEXeoAMFVbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334bdd7-317a47e2018160b928a40ff9;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:34:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VztBCwvlCphzQJw_HAODqlJjRAaYDoKFzmkAYhrhUTZJ5rmNtNSzuQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:50:26 GMT
age: 18807
etag: "c17c7bdfa4b40f9a0634da65c610869e5c410bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21090
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 03:03:53 GMT
Connection: keep-alive

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14073 bytes)
Hash
11594ce7500d8776bfd5162b17f87d72
72603efba82d649ce5a7a0ca45dc830c0d9ef012
511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:49:42 GMT
age: 18851
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8754 bytes)
Hash
556ea631652cbb77ff38dbe3bbc8c4d1
ba797da9b2d6942161fa02a0e431de4868b84327
130dab67cb6d80c741a7f2dadfd536bd6900204880dc3b68b2afbfa53dd3d781

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8754
x-amzn-requestid: 175fc592-ed89-44fb-8cf7-8a4404f59d4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZC5OcHKkIAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633108c2-2c0c36007bc8bcb56a54e8a1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 02:04:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -AhTOJwgY3-DnA_pYXdBL18wPP_fNeyDmZjkdkQ2J-xrBZSyRcdK3Q==
via: 1.1 71e7943ea0729c284a06faa05a567236.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 19:10:22 GMT
age: 28411
etag: "ba797da9b2d6942161fa02a0e431de4868b84327"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.3 kB (3332 bytes)
Hash
6ac86079d2901fb11bfaff81d91bb2d2
4fc0699c763f67a2602b4b3f46b8b4013d2049c6
8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3332
x-amzn-requestid: fb6cb616-5b4d-4aaf-a891-50b4de8b6f95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJ_6AGNYIAMFSHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333e03f-377fe02d1cc7ad2b3a15ca1a;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 05:48:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nJJZxZlapt4k5988yU-V94pBBH2SmfSZ0Zb_oJXA07mppg0lF04wLg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 17:18:10 GMT
age: 35143
etag: "4fc0699c763f67a2602b4b3f46b8b4013d2049c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5724d6da-9431-4843-a505-d3e09b3288d0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5461 bytes)
Hash
b2b1199932a09517125a796542aaeddf
6189f15b09a582c678661657b6428b919e2ae09c
e31dc7cf7a636e5612a7ab9101b6e251af22dae8a3f65a4368f5bc7b4a75b072

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5724d6da-9431-4843-a505-d3e09b3288d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5461
x-amzn-requestid: 4206a547-f263-43be-839d-2f7f6ed98e25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnoFjRoAMFa0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-5558305f2182858a72a41137;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gq7CF9rjNa70vwDe4emTa7fBxBJTD3W_GI07BO2hcrdKpsJd4TYbkg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:49:42 GMT
age: 18851
etag: "6189f15b09a582c678661657b6428b919e2ae09c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0734a230-932d-4bc0-bc12-9177b543b103.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5222 bytes)
Hash
eece069cebb7039dbba50ec1cd73daab
4a35c50b5b16779582a75078b6df090892358d3b
41ad701a8ea3dcbfc38cb0701f3b24a6b833f6b1197014e10530c40496b6a13c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0734a230-932d-4bc0-bc12-9177b543b103.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5222
x-amzn-requestid: cb2849d8-9579-42c1-84c9-e59700104aba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKaUGnAoAMFrTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334bddb-3649a45539964e985ee41911;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: v1EEfyICGujupCV26P4JAgnY-NHtvFVVWwxA0PNLs-Ky-FuR0TTDOA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:50:26 GMT
age: 18807
etag: "4a35c50b5b16779582a75078b6df090892358d3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 29 Sep 2022 03:03:51 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 13731438
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75217cf11ed3b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,500,700

216.58.211.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato:300,400,500,700
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://enernatural.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 03:03:51 GMT
date: Thu, 29 Sep 2022 03:03:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations