Report - www.yourercmailer.com/

Report Overview

Visited public
2023-11-28 07:59:35
Tags
URL
www.yourercmailer.com/
Finishing URL
ercgo.com/
IP / ASN
173.255.201.8
#63949 Linode, LLC
Title
Employee Retention Credit | Get up to $26k/employee if you qualify!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-11-19 18:48:38	1.8 kB	420 kB	142.250.74.132
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-28 07:52:06	472 B	12 kB	142.250.74.170
yourercmailer.com	unknown	2022-06-01	2022-06-08 18:44:47	2023-10-15 14:05:46	498 B	489 B	173.255.201.8
ka-p.fontawesome.com	4489	2012-10-18	2019-12-16 21:35:53	2023-11-27 18:20:40	6.9 kB	265 kB	172.64.147.188
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-11-28 07:34:10	782 B	440 B	216.239.34.36
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04 07:37:42	2023-11-27 10:52:25	535 B	2.3 kB	142.250.74.170
js.callrail.com	10348	2011-02-18	2017-01-30 12:59:02	2023-11-27 10:36:37	1.2 kB	1.9 kB	143.204.55.119
api2.analyticspodium.com	unknown	2023-01-18	2023-02-23 17:52:46	2023-11-25 19:55:29	1.0 kB	814 B	52.37.220.147
ercgo.com	unknown	2022-04-11	2021-02-21 10:58:09	2023-10-05 11:29:24	24 kB	2.6 MB	173.255.201.8
kit.fontawesome.com	1868	2012-10-18	2019-12-16 20:51:31	2023-11-27 06:56:42	910 B	13 kB	172.64.147.188
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-28 07:59:41	885 B	175 kB	142.250.74.168
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-11-28 06:36:45	584 B	578 B	142.250.74.163
translate.googleapis.com	1005	2005-01-25	2012-05-31 09:21:21	2023-11-27 11:46:07	1.7 kB	86 kB	142.250.74.106
lab.analyticspodium.com	unknown	2023-01-18	2023-02-23 17:52:45	2023-11-26 13:06:00	1.3 kB	6.3 kB	52.37.220.147
mind-flayer.podium.com	26147	1997-09-18	2018-07-27 12:01:45	2023-11-26 20:07:42	2.0 kB	5.6 kB	44.226.161.57
www.yourercmailer.com	unknown	2022-06-01	2022-06-08 18:44:47	2023-10-12 12:59:36	488 B	505 B	173.255.201.8
connect.podium.com	24124	1997-09-18	2018-06-13 20:17:43	2023-11-26 10:30:32	3.8 kB	1.0 MB	143.204.55.107
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-28 07:50:39	2.6 kB	132 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-11-28 07:45:19	3.7 kB	234 kB	142.250.74.35
cdn.callrail.com	9100	2011-02-18	2012-10-19 03:18:03	2023-11-27 10:29:42	448 B	12 kB	143.204.55.119
avatars.podium.com	67566	1997-09-18	2019-04-05 05:05:45	2023-11-18 19:13:52	476 B	360 kB	143.204.55.37
translate.google.com	1156	1997-09-15	2012-05-30 03:30:32	2023-11-27 05:10:28	455 B	92 kB	216.58.211.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-28	medium	yourercmailer.com	Sinkholed
2023-11-28	medium	yourercmailer.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (31)

	URL	From	Size	First Seen	Last Seen
	kit.fontawesome.com/9ff5fb97fe.js	ScriptElement	12 kB	2023-10-18	2023-11-28
Pretty URL kit.fontawesome.com/9ff5fb97fe.js IP 172.64.147.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 08:55 Last Seen2023-11-28 08:59 Times Seen2 Hash 80752ef73601619d39254133c78aaac5 c999167fd6e7d827f52cc386919a4ebfb2038105 83ec860275acd4c275e0b4b3f0d8c017d782b64aa65a4b45662219a3215a6cf5 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-K4TFZPT	ScriptElement	226 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-K4TFZPT IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:59 Last Seen2023-11-28 08:59 Times Seen1 Hash 317e0ab581e9e1ef32e8053e7860741b 102ce54f01e0d2962d4af6c1627e8c8bb17e1ec3 17e3f9c88d94a2cf8b7265dfbc59a774b0523164a17140c88682001abf6df00a Loading...

	ercgo.com/	ScriptElement	349 B	2023-03-25	2024-08-21
Pretty URL ercgo.com/ IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-25 22:50 Last Seen2024-08-21 04:16 Times Seen2 Hash b9de8a57e45d85683403d5eb261c7713 b02e5739f30039b8320e706b2e7c6f421de5a18b 3e30114dc5ba154156e0954f9f7ff6ff7cd03cbfb502972d9ad63e27fff414a8 Loading...

	ercgo.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/am=CAM/d=1/rs=AN8SPfpnYzB-CmDiPKuSFpb3ImbKU8zLmA/m=el_conf	ScriptElement	91 kB	2023-11-28	2023-11-28
Pretty URL ercgo.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/am=CAM/d=1/rs=AN8SPfpnYzB-CmDiPKuSFpb3ImbKU8zLmA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:23 Last Seen2023-11-28 08:59 Times Seen4 Hash 7bcfd3a5c099a4a53895d8c9813b9382 d9974aa512bb21e845a41f772bc629381bb01fb7 578ebb76ccb6760a27e302eba1a0170055ea855e08effd123463997d1b6819fe Loading...

	www.googletagmanager.com/gtag/js?id=G-D2DNM0Z27K&l=dataLayer&cx=c	ScriptElement	280 kB	2023-11-28	2023-11-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-D2DNM0Z27K&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:59 Last Seen2023-11-28 08:59 Times Seen1 Hash cb30441d2a2127933942052d031a16ec e4b0b23397f888e9a1f42040efd254461adbcb21 34dd4343781f2ecac1d00eb7259ddc25b4fecc309522d6ee827515e4b2618e99 Loading...

	cdn.callrail.com/companies/774545276/d92dcb3d6f06f1ccda39/12/swap.js	ScriptElement	37 kB	2023-10-18	2024-08-21
Pretty URL cdn.callrail.com/companies/774545276/d92dcb3d6f06f1ccda39/12/swap.js IP 143.204.55.119 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 08:55 Last Seen2024-08-21 04:16 Times Seen2 Hash 09761bacb244f8d4d0cf54691bf3bfa3 2b2876bbac47aae400c1168d2ac44d7c228c9e79 fc583a25bbd456343d5591d47d4e0067415d922fa8bb488f5c5cdf223ead31c2 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw	ScriptElement	75 B	2023-03-07	2025-05-09
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15 Last Seen2025-05-09 10:33 Times Seen14229 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js	ScriptElement	476 kB	2023-11-14	2024-08-20
Pretty URL www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 09:02 Last Seen2024-08-20 19:39 Times Seen12206 Hash 23b9dd721490a4062ba8d01454ef6ba9 efdbb7331585411f7d397dacbf51fd3e95f3031d 4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7 Loading...

	ercgo.com/site/2023/ERCGO/js/owl.carousel.min.js	ScriptElement	44 kB	2023-03-07	2025-05-09
Pretty URL ercgo.com/site/2023/ERCGO/js/owl.carousel.min.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 11:18 Times Seen13176 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	www.google.com/recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadPodium	ScriptElement	1.0 kB	2023-11-28	2023-12-06
Pretty URL www.google.com/recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadPodium IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:59 Last Seen2023-12-06 21:41 Times Seen8 Hash 1b9685f6007c37aacca5edded7c7a5e5 c44375e9b85b81d04e01cf22e1d552dc7f07545e e1e77040b78bc38331c302ff424d16a748a3a24fe09bb4e7eecf3e4d57a58358 Loading...

	ercgo.com/	ScriptElement	717 B	2023-10-18	2024-08-21
Pretty URL ercgo.com/ IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-18 08:55 Last Seen2024-08-21 04:16 Times Seen2 Hash ce5b5355783633e97de66f97bb2acc2a 7179bd3d17b74b4d1071df48f21c26ace10229c5 da30ddf6039740e8c988d238f990db23a33a120449720a6d61a0ede9ded4106a Loading...

	ercgo.com/js/jquery-3.6.0.min.js	ScriptElement	88 kB	2023-06-09	2025-05-08
Pretty URL ercgo.com/js/jquery-3.6.0.min.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-09 23:20 Last Seen2025-05-08 23:50 Times Seen1118 Hash ed4e85ddc6e188c8490191794776f22e 83b9249bbbcd563eef7546291d0407f0e70166ce 8f764efbb2cdb303e3019325d811225ead27d656f8b40390de427db1415dc56a Loading...

	ercgo.com/js/jquery.ui.touch-punch.min.js	ScriptElement	1.3 kB	2023-03-07	2025-03-14
Pretty URL ercgo.com/js/jquery.ui.touch-punch.min.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-03-14 10:50 Times Seen22 Hash ed69ce6ff9d5409f76ae05e9e01ada79 b3caabe47b8ce4d40e5a1f5f329ad884ab9e8bef a3ddeb485c1a637fc104d7bea9348b38f6166b8c70ccb646c23e25a08969f6b7 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfplWM0Um_q6E1MImWAb8Ua7Y_COnQ/m=el_main	ScriptElement	236 kB	2023-11-27	2024-12-23
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfplWM0Um_q6E1MImWAb8Ua7Y_COnQ/m=el_main IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-27 21:45 Last Seen2024-12-23 04:35 Times Seen501 Hash a1acfecef726b580906cef3ab91396af af79aac165259b3ed32c0b1ad1a97cfd4c3f55bf 98f6e8c47cc9172e4c8c74ec2a4b4a8df8988dd3b77803cd88bc435c42db2936 Loading...

	ercgo.com/	ScriptElement	1.2 kB	2023-10-18	2024-08-21
Pretty URL ercgo.com/ IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-18 08:55 Last Seen2024-08-21 04:16 Times Seen2 Hash 4d369572d4e9c06ba624a68926c6169d 45f3db87d91f752f76cb2fabee9d8c13f457d9c2 d22986bad142c8237332ce35660b34234fbc4d47b61e5f651a2f3f166f980ce4 Loading...

	unknown	ScriptElement	426 B	2023-03-25	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:50 Last Seen2024-08-21 04:16 Times Seen2 Hash 4804605a1375578b78ab0555375d4f05 4bd5bec50111a8901e161b310cd5c4fcf27446b8 7f83586f30ca5b77045141f1a9d994b4994188d22f75f2943f65b6442acc4e1e Loading...

	ercgo.com/js/js.cookie.js	ScriptElement	4.2 kB	2023-03-08	2025-05-07
Pretty URL ercgo.com/js/js.cookie.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:31 Last Seen2025-05-07 22:58 Times Seen251 Hash e5054597c36e96dea8b5ae4ae941fb7a e95552b609d8dfb41ef2fde410cc7fe1d1bbc9d1 7d2385d6c43b616ce99b983d19324432e1f045561e5ee280d51808f98f852644 Loading...

	ercgo.com/site/2022/ERC_HTML_Blue/js/erc_customer_application/index.min.js?filever=11532	ScriptElement	12 kB	2023-10-18	2023-11-28
Pretty URL ercgo.com/site/2022/ERC_HTML_Blue/js/erc_customer_application/index.min.js?filever=11532 IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 08:55 Last Seen2023-11-28 08:59 Times Seen2 Hash 6b7b154e19b4cbdea2f67e2a18d14d28 6efb119ddb8ff618c687204b35ac34213e1527df 3ddf6f1c88bc71be837d6b316947fa98739eddfd958ee18ec85f6b0e2ce1004c Loading...

	connect.podium.com/widget.js#ORG_TOKEN=7e32e1f9-ef60-4c87-aa55-6afece4c3dcf	ScriptElement	681 kB	2023-11-28	2023-11-28
Pretty URL connect.podium.com/widget.js#ORG_TOKEN=7e32e1f9-ef60-4c87-aa55-6afece4c3dcf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:59 Last Seen2023-11-28 08:59 Times Seen1 Hash 226017799d45b100a61f8bfa4eb736df 4b1b6c0f544016ac4b97eac695596785d6a4369a 6f3ef51113d22f6d3d092c6dabbb83880ebaa195b5060a234e516f67d39fad79 Loading...

	ercgo.com/js/jquery-ui.min.js	ScriptElement	255 kB	2023-03-07	2025-04-28
Pretty URL ercgo.com/js/jquery-ui.min.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16 Last Seen2025-04-28 12:59 Times Seen436 Hash 842e3946fa938e62f185abb29ab00dc7 c72ff777806f59b02c8e9fd84ac258051d2a2b39 793cb14b4ae48e92c4a35eae5d34b4b95092e3cd7995ce342b6895a560ef7526 Loading...

	ercgo.com/site/2023/ERCGO/js/bootstrap.bundle.min.js	ScriptElement	80 kB	2023-03-08	2025-05-07
Pretty URL ercgo.com/site/2023/ERCGO/js/bootstrap.bundle.min.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:08 Last Seen2025-05-07 22:49 Times Seen1639 Hash b75ae000439862b6a97d2129c85680e8 90d15036ef48fcb336a135bae812b45669f19044 9520018fa5d81f4e4dc9d06afb576f90cbbaba209cfcc6cb60e1464647f7890b Loading...

	ercgo.com/site/2023/ERCGO/js/plugins.js	ScriptElement	113 kB	2023-03-25	2023-11-28
Pretty URL ercgo.com/site/2023/ERCGO/js/plugins.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:50 Last Seen2023-11-28 08:59 Times Seen2 Hash 9535d4bf02612c1c572559b5e1ddc7cd 4a309f6e93d6031a865375bdc6dc666b9e12da20 a83531013bb170b184d808a3adea841c357686ea9d78d152236af6905a5333ea Loading...

	ercgo.com/site/2023/ERCGO/js/main.js	ScriptElement	303 B	2023-10-18	2023-11-28
Pretty URL ercgo.com/site/2023/ERCGO/js/main.js IP 173.255.201.8 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 08:55 Last Seen2023-11-28 08:59 Times Seen2 Hash f6bbb5579c768714041a5261ba52fe70 c8032c2bd6199c33faf052c79bb615d372da25c3 13fb94739cd9e7a3e9eaa504d7bdc3a0abc586cf51fd94f964b751683fe8f3e3 Loading...

	js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/icap.js?t=1701158361836&GoogleAnalytics4__ga=GA1.1.20074119.1701158361&GoogleAnalytics4__ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0&ga=GA1.1.20074119.1701158361&uuid=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1&ids%5B%5D=774545276	ScriptElement	22 B	2023-03-07	2025-05-08
Pretty URL js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/icap.js?t=1701158361836&GoogleAnalytics4__ga=GA1.1.20074119.1701158361&GoogleAnalytics4__ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0&ga=GA1.1.20074119.1701158361&uuid=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1&ids%5B%5D=774545276 IP 143.204.55.119 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16 Last Seen2025-05-08 15:43 Times Seen727 Hash 428fbfbe32240731c2093be221cc8df3 8b831bc780288cdfce6dba1a93d062c9379f4def 1643b5cec44cc597bc2cce3448ce5434241eec9b92db8af268ee3ee1f198441d Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw	ScriptElement	54 kB	2024-08-20	2024-08-20
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:37 Last Seen2024-08-20 17:37 Times Seen1 Hash 0d7ca02fc17a3e76b073eeb8a1b4a657 fec15821c3ba6ce1cf309622aebc93e71359e0a6 784d83ce86c282fdef9d12c6f552dfdd7d9810f71c957f66e7fb7ed2bcc1b4ff Loading...

		Size	First Seen	Last Seen
	#1 Eval - b8ef0c626a3799d61c2f5dfb72c83026	22 B	2023-11-18 09:03	2024-08-20 18:57
Pretty Observations First Seen2023-11-18 09:03 Last Seen2024-08-20 18:57 Times Seen2429 Hash b8ef0c626a3799d61c2f5dfb72c83026 998bdbd8494bcca0c83c7908943f57fe73d997c7 abf66c99bd5fc27402a011915567ef30148f986e622d8cf7d1e7151353ddc8de Loading...

	#2 Eval - 628db24acc009d86f2438167bb5313dc	64 B	2023-11-18 09:03	2024-08-20 18:57
Pretty Observations First Seen2023-11-18 09:03 Last Seen2024-08-20 18:57 Times Seen2436 Hash 628db24acc009d86f2438167bb5313dc 8fbaee6a7b0d206711008ff0fbe43f120c5e109a a507aca4961371f71975d2a64e3897947cd0f0e86beefeb863e486192d0c7b62 Loading...

	#3 Eval - 86fb57c70ef7d70326609c71cd43927c	17 kB	2023-11-18 09:03	2024-08-20 18:57
Pretty Observations First Seen2023-11-18 09:03 Last Seen2024-08-20 18:57 Times Seen2433 Hash 86fb57c70ef7d70326609c71cd43927c aec6755b7f02d203affa5a6d3c9f2f8cc02e771a cebccfc98253a8fd5ee42a5467a15577f96302c6218f13ef74e5feeda9131e20 Loading...

	#4 Eval - a6e63655cf53028fde49ad2dea63ba8c	22 B	2023-11-18 09:03	2024-08-20 18:57
Pretty Observations First Seen2023-11-18 09:03 Last Seen2024-08-20 18:57 Times Seen2434 Hash a6e63655cf53028fde49ad2dea63ba8c 15f5f5baa58633fca42ff77e3a1c4a4970263ce4 5ff8f2431dc587e0315fb8ee39864fce7b5302f97fa95dcea284f181051e1b0b Loading...

	#5 Eval - fb345354c4912f3389adf2a46b69c90d	22 kB	2023-11-28 07:46	2024-08-20 17:37
Pretty Observations First Seen2023-11-28 07:46 Last Seen2024-08-20 17:37 Times Seen2 Hash fb345354c4912f3389adf2a46b69c90d d6e99428aeae567997d6defc0439a6f63cf315bc 943b7e17f1b1cac69d03cbd8ba5b6de6fc4cc5a8900d02e26436a78906b75c52 Loading...

		Size	First Seen	Last Seen
	#1 Write - b6cd012c83551f4ab6b1c6e0376f7548	3.0 kB	2023-10-30 23:12	2024-08-20 21:44
Pretty Observations First Seen2023-10-30 23:12 Last Seen2024-08-20 21:44 Times Seen560 Hash b6cd012c83551f4ab6b1c6e0376f7548 6e3f17c6fd26e17aaace19990eae72a93f03bd0c ad6c40e110cecc4b005bcc65563e96117436c1701e6cd65f3265b54f4c61ea4b Loading...

HTTP Transactions (97)

URL IP Response Size

www.yourercmailer.com/

173.255.201.8

301 Moved Permanently

234 B

URL User Request GET HTTP/2
www.yourercmailer.com/
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Certificate
IssuerLet's Encrypt
Subjectyourercmailer.com
FingerprintC0:ED:45:A0:11:2F:0B:B2:46:6C:1D:91:98:F6:CA:CC:47:A0:B1:22
ValidityWed, 01 Nov 2023 17:01:39 GMT - Tue, 30 Jan 2024 17:01:38 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
234 B (234 bytes)
Hash
3ef293489a331f86965bd3b203ff4905
617aeb38635fba5fe2ea145e42ecc8b820fa1620
87a3d197e9318e2ad7087b4e1d8801c6e78a5655ed67c00615f377ae82c4276d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.yourercmailer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 28 Nov 2023 07:59:15 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
location: https://yourercmailer.com/
content-length: 234
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

yourercmailer.com/

173.255.201.8

301 Moved Permanently

226 B

URL User Request GET HTTP/2
yourercmailer.com/
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Certificate
IssuerLet's Encrypt
Subjectyourercmailer.com
FingerprintC0:ED:45:A0:11:2F:0B:B2:46:6C:1D:91:98:F6:CA:CC:47:A0:B1:22
ValidityWed, 01 Nov 2023 17:01:39 GMT - Tue, 30 Jan 2024 17:01:38 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
226 B (226 bytes)
Hash
6481b7449ece06cde90838978bdecad4
f369eea0f28ba87ab6c5d3ebd7c240c181ef35b1
2b90bbbb9218ec9af30988a2672153f63ecb2acd6312bda83ab818760299f8e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: yourercmailer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Tue, 28 Nov 2023 07:59:15 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
location: https://ercgo.com/
content-length: 226
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

ercgo.com/

173.255.201.8

200 OK

8.3 kB

URL User Request GET HTTP/2
ercgo.com/
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (865)
Size
8.3 kB (8315 bytes)
Hash
989b1343471e675d65ba03c8d84a7484
344d327aae30eb53a2fcc94b7227d3f94aee341b
27a96abed5d2d422110ed1694c94e2da9761685ca8977d7641d00586e15f83de

HTTP Headers

GET / HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:15 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; path=/; secure; HttpOnly
csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748; path=/; secure
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
content-length: 8315
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/QuincyCF-font.css

173.255.201.8

200 OK

144 B

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/QuincyCF-font.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with CRLF line terminators
Size
144 B (144 bytes)
Hash
0f8ad01fb2e440ea7a38eef7f7d2d8d2
29eec10128cc198f7ccee1cba4d0f809ded4a640
d3222f65ef210aad0863eafd707a106bd8eae8c063c63ba5be7291cdc8af52d7

HTTP Headers

GET /site/2023/ERCGO/css/QuincyCF-font.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "182-6090ed6c6a658-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 144
content-type: text/css
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/jquery.fancybox.min.css

173.255.201.8

200 OK

3.1 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/jquery.fancybox.min.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (12795), with no line terminators
Size
3.1 kB (3096 bytes)
Hash
a2d42584292f64c5827e8b67b1b38726
1be9b79be02a1cfc5d96c4a5e0feb8f472babd95
5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0

HTTP Headers

GET /site/2023/ERCGO/css/jquery.fancybox.min.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "31fb-6090ed6c6f478-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 3096
content-type: text/css
X-Firefox-Spdy: h2

connect.podium.com/widget.js

143.204.55.107

191 kB

URL
connect.podium.com/widget.js
IP
143.204.55.107:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65472)
Size
191 kB (191406 bytes)
Hash
226017799d45b100a61f8bfa4eb736df
4b1b6c0f544016ac4b97eac695596785d6a4369a
6f3ef51113d22f6d3d092c6dabbb83880ebaa195b5060a234e516f67d39fad79

HTTP Headers

GET /widget.js HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 191406
content-encoding: gzip
last-modified: Mon, 27 Nov 2023 13:14:13 GMT
server: AmazonS3
date: Tue, 28 Nov 2023 07:15:35 GMT
cache-control: max-age=3600
etag: "4d79b8129a2f62a3af37371852a29bf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Paa_F9edm2TSHd6T2A1qWnh8wByUknm-BJvP6Nh_RgeYfpCpH8Xy3g==
age: 2695
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/bootstrap.min.css

173.255.201.8

200 OK

28 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/bootstrap.min.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
Unicode text, UTF-8 text, with very long lines (65305)
Size
28 kB (27518 bytes)
Hash
3f30c2c47d7d23c7a994db0c862d45a5
7791dd1f3173a0d62cc39c21d2ad71fc8dad0e72
c0bcf7898fdc3b87babca678cd19a8e3ef570e931c80a3afbffcc453738c951a

HTTP Headers

GET /site/2023/ERCGO/css/bootstrap.min.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "2f955-6090ed6c6c062-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 27518
content-type: text/css
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/owl.carousel.min.css

173.255.201.8

200 OK

1.1 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/owl.carousel.min.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (3184)
Size
1.1 kB (1068 bytes)
Hash
b2752a850d44f50036628eeaef3bfcfa
fba46353cf90450ef3d362a123f1e7af3e8c561e
521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc

HTTP Headers

GET /site/2023/ERCGO/css/owl.carousel.min.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "d17-6090ed6c6da6d-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 1068
content-type: text/css
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/responsive.css

173.255.201.8

200 OK

1.7 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/responsive.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with CRLF line terminators
Size
1.7 kB (1692 bytes)
Hash
207243ab36417ce46dc46345fbd5e864
7051ca3167e114bd3876247895226d7981e1d524
ab324fe6ea653d7a821cc4d0c151974e30a035f8c351412eebb6b35be745f713

HTTP Headers

GET /site/2023/ERCGO/css/responsive.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1fb5-6090ed6c6a658-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 1692
content-type: text/css
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/css/style.css

173.255.201.8

200 OK

3.4 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/css/style.css
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with CRLF line terminators
Size
3.4 kB (3414 bytes)
Hash
ce55a1bfd80744d469b52948aa9c8712
8c9714683c886905b2b1bd6410e041f2e95eef8c
67bfa571b232dee2cacddbbfa4108c78e16a13bce366307bd876b0a71a51bdaa

HTTP Headers

GET /site/2023/ERCGO/css/style.css HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "4c7f-6090ed6c6f478-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 3414
content-type: text/css
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/logo.png

173.255.201.8

200 OK

3.7 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/logo.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 149 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size
3.7 kB (3682 bytes)
Hash
778cce9215bd874b4413f4f9b93bbf88
33fdcd6ab1a6351fa126f28c17c277ae0431120a
eb06c7068e9c53f38e9c302a418c1cba527f71eb99df295e722ef78386246f9c

HTTP Headers

GET /site/2023/ERCGO/img/logo.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "e62-6090ed6c7f8e4"
accept-ranges: bytes
content-length: 3682
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/css/pro-v4-shims.min.css?token=9ff5fb97fe

172.64.147.188

200 OK

4.3 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/css/pro-v4-shims.min.css?token=9ff5fb97fe
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (27250)
Size
4.3 kB (4327 bytes)
Hash
6741a9261fadfb7b4e362314cb679135
4e119d95f45a5e107478f9df376b462070f67cb4
38c955b1da8fd9beae7ef0b45020e81d0140fbc070ffc85cdc7fe05ea7e652b4

HTTP Headers

GET /releases/v6.4.2/css/pro-v4-shims.min.css?token=9ff5fb97fe HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/css
content-length: 4327
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "64c9580c-10e7"
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d112103acdb529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/css/pro.min.css?token=9ff5fb97fe

172.64.147.188

200 OK

118 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/css/pro.min.css?token=9ff5fb97fe
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65364)
Size
118 kB (118196 bytes)
Hash
61dfb335f6a8fe22e435d175f39c315a
4eaa9d7051f9c21699b9060c704ded41d12f76ba
ed627e51269f865425780547b0958d134c45d201b29ae31c990e1208158c7b03

HTTP Headers

GET /releases/v6.4.2/css/pro.min.css?token=9ff5fb97fe HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/css
content-length: 118196
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "64c9580d-1cdb4"
last-modified: Tue, 01 Aug 2023 19:07:57 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d112103acbb529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/css/pro-v4-font-face.min.css?token=9ff5fb97fe

172.64.147.188

200 OK

1.8 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/css/pro-v4-font-face.min.css?token=9ff5fb97fe
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (7077)
Size
1.8 kB (1756 bytes)
Hash
974c85aa743204108e3b4d3c7f0d0a58
81cf6f79d717db9a7e94ac51d20dceedbdfca873
a0195cd81f03b3096ca0fee614152f1c21426db36ff2dc2dce9ba0e299f59564

HTTP Headers

GET /releases/v6.4.2/css/pro-v4-font-face.min.css?token=9ff5fb97fe HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/css
content-length: 1756
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "64c9580c-6dc"
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d112104adeb529-OSL
X-Firefox-Spdy: h2

kit.fontawesome.com/9ff5fb97fe/54519321/kit-upload.css

172.64.147.188

200 OK

0 B

URL GET HTTP/2
kit.fontawesome.com/9ff5fb97fe/54519321/kit-upload.css
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /9ff5fb97fe/54519321/kit-upload.css HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/css
content-length: 0
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=31556926, public, must-revalidate
etag: 54af53b207eef226d6511e0a88e3038e
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F5srPiKtYtK8BfhaZRkh
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d112104ae1b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/css/pro-v5-font-face.min.css?token=9ff5fb97fe

172.64.147.188

200 OK

7.2 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/css/pro-v5-font-face.min.css?token=9ff5fb97fe
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (55347)
Size
7.2 kB (7200 bytes)
Hash
36b5a5e9989c4ffc46d29ee5decf9b15
b37cf99f9b1e5996c931b7b7eceeb3c21088dcf9
24c18540ed9c6c6e79ee26e2ea2c90b9f52e1bf033f26f932d8497be0bb7e786

HTTP Headers

GET /releases/v6.4.2/css/pro-v5-font-face.min.css?token=9ff5fb97fe HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/css
content-length: 7200
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "64c9580c-1c20"
last-modified: Tue, 01 Aug 2023 19:07:56 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d112104ad9b529-OSL
X-Firefox-Spdy: h2

ercgo.com/js/jquery.ui.touch-punch.min.js

173.255.201.8

200 OK

590 B

URL GET HTTP/2
ercgo.com/js/jquery.ui.touch-punch.min.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
Non-ISO extended-ASCII text, with very long lines (1090)
Size
590 B (590 bytes)
Hash
48274d5c09228f3a398e5315533a9f2c
36934150a0eef228da44fbb517c0bd839b6c4444
cff88cb51f3bb68a2380763158c64d65892c4d36cc994b5ff3fdf9b417851966

HTTP Headers

GET /js/jquery.ui.touch-punch.min.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 28 Nov 2018 22:35:34 GMT
etag: "509-57bc12f3a9465-gzip"
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 29 Nov 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 590
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/user-sample-1.png

173.255.201.8

200 OK

3.6 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/user-sample-1.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 31 x 31, 8-bit/color RGBA, interlaced\012- data
Size
3.6 kB (3617 bytes)
Hash
7957207dc37b7c36f5d3e2bcbd514db3
2c19713ffc975b6ef1b2b8cf9c22568ef4d5bbff
65cd4244f7b545c351648f69c713262bd31cf9d581bf3a4fb6dd362cdcae55bf

HTTP Headers

GET /site/2023/ERCGO/img/user-sample-1.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "e21-6090ed6c70e83"
accept-ranges: bytes
content-length: 3617
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/user-sample-3.png

173.255.201.8

200 OK

4.4 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/user-sample-3.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 31 x 31, 8-bit/color RGBA, interlaced\012- data
Size
4.4 kB (4405 bytes)
Hash
849af4d3c54d372e503a97dd5f8fb497
fecb6fa2a74239cd499e88bf59c5ca1af95d59dc
9aec4d61c0640791011ef00d24d8783a0c31b147d3984728947364783a06446f

HTTP Headers

GET /site/2023/ERCGO/img/user-sample-3.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1135-6090ed6c776ae"
accept-ranges: bytes
content-length: 4405
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/user-sample-4.png

173.255.201.8

200 OK

4.4 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/user-sample-4.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 31 x 31, 8-bit/color RGBA, interlaced\012- data
Size
4.4 kB (4355 bytes)
Hash
c4a25cda5347d93ad7f9392257cfde06
1bc058138548cc70e099f8105a42f3e49785ed3d
029929eced09651c83070a90a56329412256c750f4d2cb37bbed8b82e9a87371

HTTP Headers

GET /site/2023/ERCGO/img/user-sample-4.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1103-6090ed6c74f9e"
accept-ranges: bytes
content-length: 4355
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/five-star.png

173.255.201.8

200 OK

725 B

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/five-star.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 164 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
725 B (725 bytes)
Hash
01cc29c156797923a541eba0e5cda5da
c88aea6b9ae0facd202a71c1e0e7077399be4660
b9e0b84c4134d04e3f8bcc79b75910cb864154e375363b128f53479c1ce6357b

HTTP Headers

GET /site/2023/ERCGO/img/five-star.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "2d5-6090ed6c74f9e"
accept-ranges: bytes
content-length: 725
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/js/main.js

173.255.201.8

200 OK

211 B

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/js/main.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with CRLF line terminators
Size
211 B (211 bytes)
Hash
f6bbb5579c768714041a5261ba52fe70
c8032c2bd6199c33faf052c79bb615d372da25c3
13fb94739cd9e7a3e9eaa504d7bdc3a0abc586cf51fd94f964b751683fe8f3e3

HTTP Headers

GET /site/2023/ERCGO/js/main.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "12f-6090ed6c8a22a-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 211
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/js/js.cookie.js

173.255.201.8

200 OK

1.4 kB

URL GET HTTP/2
ercgo.com/js/js.cookie.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text
Size
1.4 kB (1421 bytes)
Hash
e5054597c36e96dea8b5ae4ae941fb7a
e95552b609d8dfb41ef2fde410cc7fe1d1bbc9d1
7d2385d6c43b616ce99b983d19324432e1f045561e5ee280d51808f98f852644

HTTP Headers

GET /js/js.cookie.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Mon, 06 Jun 2022 15:54:01 GMT
etag: "1036-5e0c97b185b29-gzip"
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 29 Nov 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 1421
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/site/2022/ERC_HTML_Blue/js/erc_customer_application/index.min.js?filever=11532

173.255.201.8

200 OK

2.5 kB

URL GET HTTP/2
ercgo.com/site/2022/ERC_HTML_Blue/js/erc_customer_application/index.min.js?filever=11532
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (11531)
Size
2.5 kB (2489 bytes)
Hash
6b7b154e19b4cbdea2f67e2a18d14d28
6efb119ddb8ff618c687204b35ac34213e1527df
3ddf6f1c88bc71be837d6b316947fa98739eddfd958ee18ec85f6b0e2ce1004c

HTTP Headers

GET /site/2022/ERC_HTML_Blue/js/erc_customer_application/index.min.js?filever=11532 HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:27:04 GMT
etag: "2d0c-6090ed8609bf4-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 2489
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/ercgo-full-white-logo.png

173.255.201.8

200 OK

3.1 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/ercgo-full-white-logo.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 325 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3124 bytes)
Hash
f29a11564d71cce6d298bf9e11487ba0
d97cae0e599fe44d9451da3c604e05081f2cea1f
bb87d9e9d31ee7bbe71ee6ebaa473c09f8e2e7fd717352dbc5b98f740004a657

HTTP Headers

GET /site/2023/ERCGO/img/ercgo-full-white-logo.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "c34-6090ed6c70e83"
accept-ranges: bytes
content-length: 3124
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/user-sample-5.png

173.255.201.8

200 OK

4.5 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/user-sample-5.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 31 x 31, 8-bit/color RGBA, interlaced\012- data
Size
4.5 kB (4483 bytes)
Hash
0480ba667709c44c950c7acdf361652b
5ff568b06f30dd8c896ec161d1f586b5311a3a51
25a5339b85588005c99f2aa4526f3e44df60756754f05951a1f87a09cc6e53c3

HTTP Headers

GET /site/2023/ERCGO/img/user-sample-5.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1183-6090ed6c7c4ce"
accept-ranges: bytes
content-length: 4483
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-K4TFZPT

142.250.74.168

200 OK

81 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-K4TFZPT
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (4153)
Size
81 kB (80970 bytes)
Hash
317e0ab581e9e1ef32e8053e7860741b
102ce54f01e0d2962d4af6c1627e8c8bb17e1ec3
17e3f9c88d94a2cf8b7265dfbc59a774b0523164a17140c88682001abf6df00a

HTTP Headers

GET /gtm.js?id=GTM-K4TFZPT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:59:16 GMT
expires: Tue, 28 Nov 2023 07:59:16 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Nov 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80970
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/user-sample-2.png

173.255.201.8

200 OK

4.1 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/user-sample-2.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 31 x 31, 8-bit/color RGBA, interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
f6ded8290946072540a8024a92012ec3
16c152358a427f43990523aaf39de2ceaa02e4dc
7e03e09a32f342a5f07cef2bc3a91facd709c5579603e2eec915d751c30d0b1d

HTTP Headers

GET /site/2023/ERCGO/img/user-sample-2.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1007-6090ed6c7288d"
accept-ranges: bytes
content-length: 4103
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:21:50 GMT
expires: Fri, 22 Nov 2024 23:21:50 GMT
cache-control: public, max-age=31536000
age: 376646
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/js/owl.carousel.min.js

173.255.201.8

200 OK

11 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/js/owl.carousel.min.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (31997)
Size
11 kB (11412 bytes)
Hash
f416f9031fef25ae25ba9756e3eb6978
e2a600e433df72b4cfde93d7880e3114917a3cbe
a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d

HTTP Headers

GET /site/2023/ERCGO/js/owl.carousel.min.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "ad36-6090ed6c8881f-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 11412
content-type: application/javascript
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0\012- data
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:21:50 GMT
expires: Fri, 22 Nov 2024 23:21:50 GMT
cache-control: public, max-age=31536000
age: 376646
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/js/bootstrap.bundle.min.js

173.255.201.8

200 OK

23 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/js/bootstrap.bundle.min.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (65299)
Size
23 kB (23310 bytes)
Hash
b75ae000439862b6a97d2129c85680e8
90d15036ef48fcb336a135bae812b45669f19044
9520018fa5d81f4e4dc9d06afb576f90cbbaba209cfcc6cb60e1464647f7890b

HTTP Headers

GET /site/2023/ERCGO/js/bootstrap.bundle.min.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "13a24-6090ed6c87b19-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 23310
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/js/jquery-3.6.0.min.js

173.255.201.8

200 OK

30 kB

URL GET HTTP/2
ercgo.com/js/jquery-3.6.0.min.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (30335 bytes)
Hash
ed4e85ddc6e188c8490191794776f22e
83b9249bbbcd563eef7546291d0407f0e70166ce
8f764efbb2cdb303e3019325d811225ead27d656f8b40390de427db1415dc56a

HTTP Headers

GET /js/jquery-3.6.0.min.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 07 Jun 2023 19:44:03 GMT
etag: "155a5-5fd8f5bafcf68-gzip"
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 29 Nov 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 30335
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/js/plugins.js

173.255.201.8

200 OK

33 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/js/plugins.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
HTML document, ASCII text, with very long lines (31972)
Size
33 kB (33360 bytes)
Hash
9535d4bf02612c1c572559b5e1ddc7cd
4a309f6e93d6031a865375bdc6dc666b9e12da20
a83531013bb170b184d808a3adea841c357686ea9d78d152236af6905a5333ea

HTTP Headers

GET /site/2023/ERCGO/js/plugins.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "1ba89-6090ed6c8881f-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 28 Dec 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-length: 33360
content-type: application/javascript
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/faq-thumb-1.png

173.255.201.8

200 OK

54 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/faq-thumb-1.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 350 x 228, 8-bit/color RGBA, non-interlaced\012- data
Size
54 kB (53986 bytes)
Hash
4f732baddfbc76c145748d43313eb3e6
5a3e160af2caf4c3af247f96f772c0b2e4b8f4b4
0ae6c9ee24f2f9056ad8496ccc24fa265c16d239177d9d1ca1af5e0a2c415d0c

HTTP Headers

GET /site/2023/ERCGO/img/faq-thumb-1.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "d2e2-6090ed6c7c4ce"
accept-ranges: bytes
content-length: 53986
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/faq-thumb-4.png

173.255.201.8

200 OK

60 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/faq-thumb-4.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 350 x 228, 8-bit/color RGBA, interlaced\012- data
Size
60 kB (60155 bytes)
Hash
28175263e3b277667209b8f4a96ed981
209c83fdebce30a64d4138f7e2bfb507a87c79b2
ba6dadf023e57d55295b0dcf3f29e29bb575ad30d1100e57d76e22657223b834

HTTP Headers

GET /site/2023/ERCGO/img/faq-thumb-4.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "eafb-6090ed6c82cf9"
accept-ranges: bytes
content-length: 60155
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/faq-thumb-3.png

173.255.201.8

200 OK

60 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/faq-thumb-3.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 350 x 228, 8-bit/color RGBA, interlaced\012- data
Size
60 kB (60090 bytes)
Hash
ee8cda1892e1ad297584aa8204b9245b
dade32b5fe714a67f1ab8e27765b3e3cea367e07
1129988259b4c829b963f8046a8e99ee97824b84c45e52080df7961411549f04

HTTP Headers

GET /site/2023/ERCGO/img/faq-thumb-3.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "eaba-6090ed6c7ded9"
accept-ranges: bytes
content-length: 60090
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/faq-thumb-2.png

173.255.201.8

200 OK

64 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/faq-thumb-2.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 350 x 228, 8-bit/color RGBA, interlaced\012- data
Size
64 kB (63897 bytes)
Hash
d5fdb462a89eb4632027d1ef6294988b
2bf7e4b10a2e21b7535cd410fca60209583dcf41
a1d35ebf931d54dcac809923f3dcc8d7da05e575017f7e461d282c9a4ef0fad5

HTTP Headers

GET /site/2023/ERCGO/img/faq-thumb-2.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "f999-6090ed6c7ded9"
accept-ranges: bytes
content-length: 63897
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/image-side-smiling-businessman.png

173.255.201.8

200 OK

266 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/image-side-smiling-businessman.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 506 x 336, 8-bit/color RGBA, interlaced\012- data
Size
266 kB (266182 bytes)
Hash
ba9efe495abb4641d20b727663bee3c1
2e7ba56a44e65caac50eb3515896a5f18967fb22
80dbef119da290133c7804f674b0286c0285788de453bf37ea53bba361f6e2e3

HTTP Headers

GET /site/2023/ERCGO/img/image-side-smiling-businessman.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "40fc6-6090ed6c73593"
accept-ranges: bytes
content-length: 266182
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/image-side-team-meeting.png

173.255.201.8

200 OK

348 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/image-side-team-meeting.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 506 x 336, 8-bit/color RGBA, interlaced\012- data
Size
348 kB (347560 bytes)
Hash
a179af420875347dad21e900694cb816
4247c06597984d4cc7dc922286a1f1548bfdb161
04568bd868da7725e58a13df0c5dfcab5df030fe3ce82f7fdb42ef75a5b5de0e

HTTP Headers

GET /site/2023/ERCGO/img/image-side-team-meeting.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "54da8-6090ed6c769a8"
accept-ranges: bytes
content-length: 347560
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-3.woff2

172.64.147.188

200 OK

19 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-3.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18860, version 772.1280\012- data
Size
19 kB (18860 bytes)
Hash
d729b9d8bc76ea5aacf094251bb859e7
6651c60a1dd9dfa4d8f52f717803eb229eea0760
67133470e0b4270a8169a4f4984ecc4c79e777a9938c094c90be449e6fdf3599

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-3.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: font/woff2
content-length: 18860
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-49ac"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fcebb529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-13.woff2

172.64.147.188

200 OK

16 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-13.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16104, version 772.1280\012- data
Size
16 kB (16104 bytes)
Hash
7f673e55c6c7405d445f5b86f14f7275
67ef556f7b068b369278a298fcba87f1bb43779e
91ab524d4edd7b8cb4198bb719aa3e9c76752e4cdf3c76f8d6c8f9bacf7f4bdb

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-13.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: font/woff2
content-length: 16104
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-3ee8"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fce8b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-solid-900-12.woff2

172.64.147.188

200 OK

11 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-solid-900-12.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11436, version 772.1280\012- data
Size
11 kB (11436 bytes)
Hash
295d59fde4985220de4456ec047fd1cf
9425db5c4e69e6246413ce39bc84ef64bacdf3c2
6703613ee782790dd723b3096e965d2a7f7a29f14a27a857cd4350421954caca

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-solid-900-12.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: font/woff2
content-length: 11436
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c33-2cac"
last-modified: Tue, 01 Aug 2023 19:25:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fce7b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-0.woff2

172.64.147.188

200 OK

14 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-0.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13964, version 772.1280\012- data
Size
14 kB (13964 bytes)
Hash
6288b44a6fa27c081713d2aa82c9aad6
ce76d2eb027919874e552b9ca93a8d2cc4db121d
ab1d861f40e0b7a2773c61b30eaa39ba2af3d479aebd83dd7e03161de0e25298

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: font/woff2
content-length: 13964
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-368c"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212ece4b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-11.woff2

172.64.147.188

200 OK

27 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-11.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27184, version 772.1280\012- data
Size
27 kB (27184 bytes)
Hash
f6283a0df4880f6e581beb93793d0f0c
996f133633c465dc9bd0f908aeb3ef75894962fe
757321b9bc9bdcfb96b6ae97d44bac0628c51cd7872a09615bd5a7ddc6a0c194

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-11.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-type: font/woff2
content-length: 27184
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-6a30"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fceab529-OSL
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/img/main-hero-img.png

173.255.201.8

200 OK

1.2 MB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/img/main-hero-img.png
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
PNG image data, 954 x 778, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 MB (1200003 bytes)
Hash
a9e297b0205a93a0ff23d5321b46f4b7
2f735a8a8cddabcd70c93d5ee00b8e76a77df374
6457a3638e6445cdf7a12ac0d80c96b8e016bdfb75f84438136e4fc14da9ba26

HTTP Headers

GET /site/2023/ERCGO/img/main-hero-img.png HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "124f83-6090ed6c85409"
accept-ranges: bytes
content-length: 1200003
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 07:59:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/png
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/webfonts/QuincyCFRegular/font.woff2

173.255.201.8

200 OK

43 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/webfonts/QuincyCFRegular/font.woff2
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
Web Open Font Format (Version 2), CFF, length 43192, version 0.0\012- data
Size
43 kB (43192 bytes)
Hash
9e66b78c6baf64e6cd986b53daeeb14e
85bd7417f380975e82f8a1c6311f558078bcaa82
c387375589f83aedd82d9e16502d6bebbf9f1cc5c409ff86af7fb3f49e280098

HTTP Headers

GET /site/2023/ERCGO/webfonts/QuincyCFRegular/font.woff2 HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ercgo.com/site/2023/ERCGO/css/QuincyCF-font.css
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "a8b8-6090ed6c87b19"
accept-ranges: bytes
content-length: 43192
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: font/woff2
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-12.woff2

172.64.147.188

200 OK

13 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-12.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13416, version 772.1280\012- data
Size
13 kB (13416 bytes)
Hash
bcc6b08e8f647def9453bf122e612d98
f796973a1c5dc4bd516954f8475da12551291e6e
0e69b6276430ec7c2ce67f6c8ab9f72905f93a795242ba76c7b366c9babab419

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-12.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-type: font/woff2
content-length: 13416
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-3468"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fce9b529-OSL
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:11:28 GMT
expires: Thu, 21 Nov 2024 21:11:28 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 470869
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-D2DNM0Z27K&l=dataLayer&cx=c

142.250.74.168

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-D2DNM0Z27K&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (92771 bytes)
Hash
cb30441d2a2127933942052d031a16ec
e4b0b23397f888e9a1f42040efd254461adbcb21
34dd4343781f2ecac1d00eb7259ddc25b4fecc309522d6ee827515e4b2618e99

HTTP Headers

GET /gtag/js?id=G-D2DNM0Z27K&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:59:17 GMT
expires: Tue, 28 Nov 2023 07:59:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92771
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-22.woff2

172.64.147.188

200 OK

7.5 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-22.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7540, version 772.1280\012- data
Size
7.5 kB (7540 bytes)
Hash
035e220c9a0758f3b89bacc3a0d88389
6ab6ad487de283a8c3e316aa98bed608f531d051
ee5b209764eefcc211f8ad982867696787dc26820ff332c694dff92fffa93ff2

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-22.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-type: font/woff2
content-length: 7540
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-1d74"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212ece3b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-solid-900-22.woff2

172.64.147.188

200 OK

6.5 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-solid-900-22.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 6480, version 772.1280\012- data
Size
6.5 kB (6480 bytes)
Hash
9b30ec1f0836cc460bd26e9e786b3410
b5656d06f4ae80e18d7976bfb6ca27e75c13e52e
4bba712623ee4516684071e48bc126be6cad5ef5fe51088d086e59316c9cf3d0

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-solid-900-22.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-type: font/woff2
content-length: 6480
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c34-1950"
last-modified: Tue, 01 Aug 2023 19:25:40 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212fce6b529-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-14.woff2

172.64.147.188

200 OK

13 kB

URL GET HTTP/2
ka-p.fontawesome.com/releases/v6.4.2/webfonts/pro-fa-regular-400-14.woff2
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12696, version 772.1280\012- data
Size
13 kB (12696 bytes)
Hash
7fd1ee23a6fc09c146c97b3e3979b1d9
1a35383b83a4b2e8f52ec3c4dd54e2a21e40354e
301882a57e2deebde060c7cbe9b4f438d00935babc0715841ec8865b7b5677bc

HTTP Headers

GET /releases/v6.4.2/webfonts/pro-fa-regular-400-14.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-type: font/woff2
content-length: 12696
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "64c95c2f-3198"
last-modified: Tue, 01 Aug 2023 19:25:35 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 82d11212ece5b529-OSL
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/webfonts/QuincyCFRegularItalic/font.woff2

173.255.201.8

200 OK

45 kB

URL GET HTTP/2
ercgo.com/site/2023/ERCGO/webfonts/QuincyCFRegularItalic/font.woff2
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
Web Open Font Format (Version 2), CFF, length 45044, version 0.0\012- data
Size
45 kB (45044 bytes)
Hash
5672101a81c3e82fb8c6747bed89c0e9
fdd58c5a4404df500d2b7d3f8e3610e65f4e526b
d7adad08e268424925e3f8ec06750e51fa0e275f3be56caf360c5d9ee0d25142

HTTP Headers

GET /site/2023/ERCGO/webfonts/QuincyCFRegularItalic/font.woff2 HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ercgo.com/site/2023/ERCGO/css/QuincyCF-font.css
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748; AMP_16a5c84b5b=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjJlY2VlMWIzYy02OGI2LTQ1MWYtOGY3NS0xM2EwMGQ4OWQyZDglMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzAxMTU4MzYxMTYwJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlN0Q=; AMP_MKTG_16a5c84b5b=JTdCJTdE
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:26:37 GMT
etag: "aff4-6090ed6c8610f"
accept-ranges: bytes
content-length: 45044
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: font/woff2
X-Firefox-Spdy: h2

cdn.callrail.com/companies/774545276/d92dcb3d6f06f1ccda39/12/swap.js

143.204.55.119

200 OK

11 kB

URL GET HTTP/2
cdn.callrail.com/companies/774545276/d92dcb3d6f06f1ccda39/12/swap.js
IP
143.204.55.119:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subjectswappy.callrail.com
FingerprintC5:95:4E:A7:3E:0B:80:43:DE:32:CA:5B:07:68:54:7E:44:08:30:2A
ValidityTue, 11 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
11 kB (10880 bytes)
Hash
faaa2463ff5fea20929101b3c15ebda9
9333f00fa5114fa848d8eb552c3fcdcb66946920
c7a05b1dc5aa9bf8a955dd1981c3c500f1039af85a71ff3713d5d99edec8f4ff

HTTP Headers

GET /companies/774545276/d92dcb3d6f06f1ccda39/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
date: Tue, 28 Nov 2023 07:59:17 GMT
cache-control: max-age=3600, public
etag: W/"2a6d69169fafb9d9220f0f8149a8727e"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 2ed449dd-533c-45a6-9df9-1b15f696f6e1
x-runtime: 0.008001
x-xss-protection: 1; mode=block
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uK9KSKUDx4Z7GYmTrUOI7fQQGBSIDNjKLWZEmF953d-G2xNLm3PPqw==
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfplWM0Um_q6E1MImWAb8Ua7Y_COnQ/m=el_main

142.250.74.106

200 OK

83 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfplWM0Um_q6E1MImWAb8Ua7Y_COnQ/m=el_main
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (2193)
Size
83 kB (83047 bytes)
Hash
a1acfecef726b580906cef3ab91396af
af79aac165259b3ed32c0b1ad1a97cfd4c3f55bf
98f6e8c47cc9172e4c8c74ec2a4b4a8df8988dd3b77803cd88bc435c42db2936

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.4XOM-RyCc-M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfplWM0Um_q6E1MImWAb8Ua7Y_COnQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 83047
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 18:18:57 GMT
expires: Tue, 26 Nov 2024 18:18:57 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 23 Nov 2023 04:11:15 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 49220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-D2DNM0Z27K&cid=20074119.1701158361&gtm=45je3b81v896204953z8896183808&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1204547525

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-D2DNM0Z27K&cid=20074119.1701158361&gtm=45je3b81v896204953z8896183808&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1204547525
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-D2DNM0Z27K&cid=20074119.1701158361&gtm=45je3b81v896204953z8896183808&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1204547525 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Nov 2023 07:59:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ercgo.com/site/2022/ERCGO/img/favicon.ico

173.255.201.8

200 OK

15 kB

URL GET HTTP/2
ercgo.com/site/2022/ERCGO/img/favicon.ico
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type
DOS/MBR boot sector; partition 4 : ID=0x80, start-CHS (0x0,0,0), end-CHS (0x18,159,0), startsector 2923674752, 2370026111 sectors\012- DOS/MBR boot sector MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15406 bytes)
Hash
42111aa5ce2dad558e7887a0479e4eaa
496ce83060a624eb67d4b7d4ab773d47b5cba211
7b4baa5c72f693e1d60161d459b56d907f69e5b66ddc8c4464b003d51012c696

HTTP Headers

GET /site/2022/ERCGO/img/favicon.ico HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748; AMP_16a5c84b5b=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjJlY2VlMWIzYy02OGI2LTQ1MWYtOGY3NS0xM2EwMGQ4OWQyZDglMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzAxMTU4MzYxMTYwJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcwMTE1ODM2MTQyNiU3RA==; AMP_MKTG_16a5c84b5b=JTdCJTdE; _ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0; _ga=GA1.1.20074119.1701158361; calltrk_referrer=direct; calltrk_landing=https%3A//ercgo.com/; calltrk_session_id=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Wed, 01 Nov 2023 03:27:00 GMT
etag: "3c2e-6090ed82189dc"
accept-ranges: bytes
content-length: 15406
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: image/vnd.microsoft.icon
X-Firefox-Spdy: h2

lab.analyticspodium.com/sdk/vardata

52.37.220.147

200 OK

0 B

URL GET HTTP/2
lab.analyticspodium.com/sdk/vardata
IP
52.37.220.147:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.analyticspodium.com
Fingerprint05:14:20:BD:CE:57:E3:8B:49:7A:C2:A2:2B:2F:54:D5:E1:F2:84:03
ValidityThu, 26 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /sdk/vardata HTTP/1.1
Host: lab.analyticspodium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Referer: https://ercgo.com/
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:17 GMT
content-length: 0
apigw-requestid: PGWZegHLvHcEMPw=
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
x-amzn-trace-id: Self=1-65659893-40aef653174b564e0e623246;Root=1-65659893-2ab9580854fb073d1e49e4dc
x-content-type-options: nosniff
accept-ranges: bytes
age: 1346
x-served-by: cache-bfi-krnt7300071-BFI
x-cache: HIT
x-cache-hits: 249
x-timer: S1701158358.953022,VS0,VE0
vary: Origin,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
cache-control: no-store
access-control-allow-origin: https://ercgo.com
access-control-allow-headers: authorization,x-amp-exp-user
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-D2DNM0Z27K&gtm=45je3b81v896204953z8896183808&_p=1701158359844&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=20074119.1701158361&ul=en-us&sr=1280x1024&_s=1&sid=1701158361&sct=1&seg=0&dl=https%3A%2F%2Fercgo.com%2F&dt=Employee%20Retention%20Credit%20%7C%20Get%20up%20to%20%2426k%2Femployee%20if%20you%20qualify!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2802

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-D2DNM0Z27K&gtm=45je3b81v896204953z8896183808&_p=1701158359844&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=20074119.1701158361&ul=en-us&sr=1280x1024&_s=1&sid=1701158361&sct=1&seg=0&dl=https%3A%2F%2Fercgo.com%2F&dt=Employee%20Retention%20Credit%20%7C%20Get%20up%20to%20%2426k%2Femployee%20if%20you%20qualify!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2802
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-D2DNM0Z27K&gtm=45je3b81v896204953z8896183808&_p=1701158359844&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=20074119.1701158361&ul=en-us&sr=1280x1024&_s=1&sid=1701158361&sct=1&seg=0&dl=https%3A%2F%2Fercgo.com%2F&dt=Employee%20Retention%20Credit%20%7C%20Get%20up%20to%20%2426k%2Femployee%20if%20you%20qualify!&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2802 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ercgo.com
date: Tue, 28 Nov 2023 07:59:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/icap.js?t=1701158361836&GoogleAnalytics4__ga=GA1.1.20074119.1701158361&GoogleAnalytics4__ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0&ga=GA1.1.20074119.1701158361&uuid=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1&ids%5B%5D=774545276

143.204.55.119

200 OK

22 B

URL GET HTTP/2
js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/icap.js?t=1701158361836&GoogleAnalytics4__ga=GA1.1.20074119.1701158361&GoogleAnalytics4__ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0&ga=GA1.1.20074119.1701158361&uuid=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1&ids%5B%5D=774545276
IP
143.204.55.119:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subjectswappy.callrail.com
FingerprintC5:95:4E:A7:3E:0B:80:43:DE:32:CA:5B:07:68:54:7E:44:08:30:2A
ValidityTue, 11 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
428fbfbe32240731c2093be221cc8df3
8b831bc780288cdfce6dba1a93d062c9379f4def
1643b5cec44cc597bc2cce3448ce5434241eec9b92db8af268ee3ee1f198441d

HTTP Headers

GET /group/0/d92dcb3d6f06f1ccda39/12/icap.js?t=1701158361836&GoogleAnalytics4__ga=GA1.1.20074119.1701158361&GoogleAnalytics4__ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0&ga=GA1.1.20074119.1701158361&uuid=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1&ids%5B%5D=774545276 HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 22
date: Tue, 28 Nov 2023 07:59:18 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"1643b5cec44cc597bc2cce3448ce5434"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 5e0983bc-6baa-49bc-a79f-5ab2f426633c
x-runtime: 0.017313
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Tz-q-rCclDeAe7NwplkyQ80LKVWC_z0AstYN5-H-PntZXGxGdF9g0w==
X-Firefox-Spdy: h2

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.170

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 28 Nov 2023 07:59:18 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=ScQfZzqSgDUj_f6ljK6uLPAwH4eYcrkSvsZQ38vYJoO3pzY9feIYS8R0gfKBV2l2dkIpZAs1XLd5lmKdoWpEwOKSj8hk3tDH0SCHHQPKeRdrFImTur0vwIk3woEjDUQNx8t_YlFR0vsi0U_MVRoUPD2M1luAWL32xwoMe5BK3Qc; expires=Wed, 29-May-2024 07:59:18 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+632; expires=Thu, 27-Nov-2025 07:59:18 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 28 Nov 2023 07:59:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lab.analyticspodium.com/sdk/vardata

52.37.220.147

200 OK

4.8 kB

URL GET HTTP/2
lab.analyticspodium.com/sdk/vardata
IP
52.37.220.147:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.analyticspodium.com
Fingerprint05:14:20:BD:CE:57:E3:8B:49:7A:C2:A2:2B:2F:54:D5:E1:F2:84:03
ValidityThu, 26 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (4806), with no line terminators
Size
4.8 kB (4806 bytes)
Hash
8025b827bc0857a77e15fb47828adb74
4adbbfc9bdaffaaae2bd9de1e71651c10545a4fa
d86b09848a4138f2670a72657c7528836b4938b01cb9b1ef33c7e53fc761cdba

HTTP Headers

GET /sdk/vardata HTTP/1.1
Host: lab.analyticspodium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Api-Key client-Ouo1GRXThh3LlgIkIlMGrdQTd3m9VBlY
X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS43LjMiLCJsYW5ndWFnZSI6ImVuLVVTIiwicGxhdGZvcm0iOiJXZWIiLCJvcyI6IkZpcmVmb3ggMTA1IiwiZGV2aWNlX21vZGVsIjoiV2luZG93cyIsImRldmljZV9pZCI6ImVjZWUxYjNjLTY4YjYtNDUxZi04Zjc1LTEzYTAwZDg5ZDJkOCIsInVzZXJfcHJvcGVydGllcyI6e319
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:18 GMT
content-type: application/json;charset=utf-8
content-length: 4806
apigw-requestid: PGWZghTwvHcEMew=
access-control-allow-origin: https://ercgo.com
access-control-allow-credentials: true
x-amzn-trace-id: Self=1-65659dd6-5d2780a76138cdbf25d3b41e;Root=1-65659dd6-63465d7651e868c70dc2223b
x-content-type-options: nosniff
accept-ranges: bytes
age: 0
x-served-by: cache-bfi-kbfi7400032-BFI
x-cache: MISS
x-cache-hits: 0
x-timer: S1701158358.155095,VS0,VE75
vary: Origin, Origin
cache-control: no-store
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css

142.250.74.35

200 OK

4.0 kB

URL GET HTTP/2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:11:28 GMT
expires: Thu, 21 Nov 2024 21:11:28 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 470870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/3
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:23:19 GMT
expires: Fri, 22 Nov 2024 23:23:19 GMT
cache-control: public, max-age=31536000
age: 376559
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.35

200 OK

910 B

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 11:25:34 GMT
expires: Tue, 26 Nov 2024 11:25:34 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/png
vary: Origin
age: 74024
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.35

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=CAM/d=0/rs=AN8SPfraOsu5efVNBOQ1KgAVxhCYpwxnBg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:20:13 GMT
expires: Fri, 22 Nov 2024 05:20:13 GMT
cache-control: public, max-age=31536000
age: 441545
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mind-flayer.podium.com//graphql

44.226.161.57

200 OK

0 B

URL POST HTTP/1.1
mind-flayer.podium.com//graphql
IP
44.226.161.57:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintEC:7B:3A:EF:6D:23:24:CE:AA:A0:27:80:BA:A4:9B:49:7C:F4:39:AF
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 10 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS //graphql HTTP/1.1
Host: mind-flayer.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ercgo.com/
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-headers: accept, content-type, authorization, socket-id, origin
access-control-allow-methods: OPTIONS, GET, POST, PUT, DELETE
access-control-allow-origin: https://ercgo.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 28 Nov 2023 07:59:17 GMT
server: Cowboy
vary: origin
x-request-id: F5u6g4gyAPb-RQcRnh0B
x-robots-tag: noindex
Content-Length: 0
Connection: keep-alive

mind-flayer.podium.com//graphql

44.226.161.57

200 OK

3.9 kB

URL POST HTTP/1.1
mind-flayer.podium.com//graphql
IP
44.226.161.57:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintEC:7B:3A:EF:6D:23:24:CE:AA:A0:27:80:BA:A4:9B:49:7C:F4:39:AF
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 10 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3901), with no line terminators
Size
3.9 kB (3901 bytes)
Hash
853d9c80c54e96e9d2ae9c17586e26e5
e000abe50fd91fc8aadec561e626fbda3ddcd094
ee612d47e6ea8d734c6918245a78df5f38743054f7b9874247e7ca4b6ed54d6b

HTTP Headers

POST //graphql HTTP/1.1
Host: mind-flayer.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1199
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://ercgo.com
cache-control: max-age=0, private, must-revalidate
content-type: application/json; charset=utf-8
date: Tue, 28 Nov 2023 07:59:17 GMT
server: Cowboy
vary: origin
x-request-id: F5u6g5NrLD1TF1e3kdfy
x-robots-tag: noindex
Content-Length: 3901
Connection: keep-alive

connect.podium.com/styles.css

143.204.55.107

200 OK

10 kB

URL GET HTTP/2
connect.podium.com/styles.css
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65045), with no line terminators
Size
10 kB (10003 bytes)
Hash
a47bcbcb4230cfca8d2589316f8f6dfd
4ad8a1583662ea42e5b524dc5abe964e57635aea
ad9bb0925961e419aed1dd031aac0bc66e4023dc1eda85672c1611a6e2d053b0

HTTP Headers

GET /styles.css HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 10003
content-encoding: gzip
last-modified: Mon, 27 Nov 2023 13:14:13 GMT
server: AmazonS3
date: Tue, 28 Nov 2023 07:14:19 GMT
cache-control: max-age=3600
etag: "c1fa1977d66b8bebcb22901457400a35"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 71Lt0FlodNpVqqff81t-WUx7NU-CqaA8mArCNl23KmtunMPXXGO8bg==
age: 2700
X-Firefox-Spdy: h2

api2.analyticspodium.com/2/httpapi

52.37.220.147

200 OK

0 B

URL POST HTTP/2
api2.analyticspodium.com/2/httpapi
IP
52.37.220.147:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.analyticspodium.com
Fingerprint05:14:20:BD:CE:57:E3:8B:49:7A:C2:A2:2B:2F:54:D5:E1:F2:84:03
ValidityThu, 26 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /2/httpapi HTTP/1.1
Host: api2.analyticspodium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ercgo.com/
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:18 GMT
content-length: 0
apigw-requestid: PGWZlhQLPHcEMQQ=
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-max-age: 86400
access-control-allow-headers: content-type
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

mind-flayer.podium.com//graphql

44.226.161.57

200 OK

38 B

URL POST HTTP/1.1
mind-flayer.podium.com//graphql
IP
44.226.161.57:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintEC:7B:3A:EF:6D:23:24:CE:AA:A0:27:80:BA:A4:9B:49:7C:F4:39:AF
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 10 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
38 B (38 bytes)
Hash
437e479d9f8164112b5829f2e9d8125f
aee7393f83a85824448bb152c06bf7347213323b
8a78824e0e4e78e9e0797e8b3e147d290c7e164e8715b6f983efc924214f9f76

HTTP Headers

POST //graphql HTTP/1.1
Host: mind-flayer.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1132
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://ercgo.com
cache-control: max-age=0, private, must-revalidate
content-type: application/json; charset=utf-8
date: Tue, 28 Nov 2023 07:59:18 GMT
server: Cowboy
vary: origin
x-request-id: F5u6g6MmW2iKG3bQS02x
x-robots-tag: noindex
Content-Length: 38
Connection: keep-alive

api2.analyticspodium.com/2/httpapi

52.37.220.147

200 OK

94 B

URL POST HTTP/2
api2.analyticspodium.com/2/httpapi
IP
52.37.220.147:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.analyticspodium.com
Fingerprint05:14:20:BD:CE:57:E3:8B:49:7A:C2:A2:2B:2F:54:D5:E1:F2:84:03
ValidityThu, 26 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
f9e9185cd5f33ce0aa6e4c8c5d5a35f7
857a12564e5d0956355b39ccd949c035512f5e9e
353705ccb1a2129200d23daa69666bc96649aa9fcafb6bed28bb28ec85ab7d85

HTTP Headers

POST /2/httpapi HTTP/1.1
Host: api2.analyticspodium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1172
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:18 GMT
content-type: application/json
content-length: 94
apigw-requestid: PGWZnilcvHcEMow=
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-max-age: 86400
trace-id: Self=1-65659dd6-6516c0d32149e6c73eceee74;Root=1-65659dd6-3a8655a50bc67b73256b88ca
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2

143.204.55.107

200 OK

35 kB

URL GET HTTP/2
connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34640, version 1.0\012- data
Size
35 kB (34640 bytes)
Hash
1d077eb2f892e7f968f043b40b6ae557
a7a1b3fd4765b43371577e1167c264786dcf80c0
ac6e8dbcf906b5d78b6538eea0df8d50e34fdd4ba6a3932bfbf38d4a085e2797

HTTP Headers

GET /d2271df8467ecc4941f02087d61c1c1e.woff2 HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://connect.podium.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 34640
date: Tue, 28 Nov 2023 07:59:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
cache-control: max-age=31536000
last-modified: Mon, 27 Nov 2023 13:14:12 GMT
etag: "1d077eb2f892e7f968f043b40b6ae557"
server: AmazonS3
vary: Origin,Access-Control-Request-Headers
x-cache: Miss from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vmP9B2MOXQP8_jF2jg5lINvr-dB5r0T9hAG1lSrEOt9C3OrDmNPgGA==
X-Firefox-Spdy: h2

connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2

143.204.55.107

200 OK

30 kB

URL GET HTTP/2
connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30548, version 1.0\012- data
Size
30 kB (30548 bytes)
Hash
c28f8beb02447597a13d138680f42e65
56a4353e3bd6b3db69fc9d7e7a0356b031402649
1edbab3b32d1748ab14e6dfb9f30128ae7ea1e8188ff2afb35c0f6e225bb3a62

HTTP Headers

GET /434b2574637d4adc6a5a30864e8c6b3e.woff2 HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://connect.podium.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 30548
date: Tue, 28 Nov 2023 07:59:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
cache-control: max-age=31536000
last-modified: Mon, 27 Nov 2023 13:14:12 GMT
etag: "c28f8beb02447597a13d138680f42e65"
server: AmazonS3
vary: Origin,Access-Control-Request-Headers
x-cache: Miss from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xfQ2FuHnMl_MBZ8p3FIf_4JWZWOd64xQkqWMN0Gsmq_mzUJfcKGPdQ==
X-Firefox-Spdy: h2

connect.podium.com/styles.css

143.204.55.107

200 OK

10 kB

URL GET HTTP/2
connect.podium.com/styles.css
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65045), with no line terminators
Size
10 kB (10003 bytes)
Hash
a47bcbcb4230cfca8d2589316f8f6dfd
4ad8a1583662ea42e5b524dc5abe964e57635aea
ad9bb0925961e419aed1dd031aac0bc66e4023dc1eda85672c1611a6e2d053b0

HTTP Headers

GET /styles.css HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 10003
content-encoding: gzip
last-modified: Mon, 27 Nov 2023 13:14:13 GMT
server: AmazonS3
date: Tue, 28 Nov 2023 07:14:19 GMT
cache-control: max-age=3600
etag: "c1fa1977d66b8bebcb22901457400a35"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XH1cqSoBy9ObUVhMHqnU16Xq-QC6s1-X721Ha9DMudmOwYMGakM-gw==
age: 2702
X-Firefox-Spdy: h2

connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2

143.204.55.107

200 OK

30 kB

URL GET HTTP/2
connect.podium.com/434b2574637d4adc6a5a30864e8c6b3e.woff2
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30548, version 1.0\012- data
Size
30 kB (30548 bytes)
Hash
c28f8beb02447597a13d138680f42e65
56a4353e3bd6b3db69fc9d7e7a0356b031402649
1edbab3b32d1748ab14e6dfb9f30128ae7ea1e8188ff2afb35c0f6e225bb3a62

HTTP Headers

GET /434b2574637d4adc6a5a30864e8c6b3e.woff2 HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://connect.podium.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 30548
date: Tue, 28 Nov 2023 07:59:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
cache-control: max-age=31536000
last-modified: Mon, 27 Nov 2023 13:14:12 GMT
etag: "c28f8beb02447597a13d138680f42e65"
server: AmazonS3
vary: Origin,Access-Control-Request-Headers
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iNYxSHCG7qE3yupGqvN8e0-bOy72CYkdjtryE3CdWgFrO_HWRqqIjw==
age: 2
X-Firefox-Spdy: h2

connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2

143.204.55.107

200 OK

35 kB

URL GET HTTP/2
connect.podium.com/d2271df8467ecc4941f02087d61c1c1e.woff2
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34640, version 1.0\012- data
Size
35 kB (34640 bytes)
Hash
1d077eb2f892e7f968f043b40b6ae557
a7a1b3fd4765b43371577e1167c264786dcf80c0
ac6e8dbcf906b5d78b6538eea0df8d50e34fdd4ba6a3932bfbf38d4a085e2797

HTTP Headers

GET /d2271df8467ecc4941f02087d61c1c1e.woff2 HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://connect.podium.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 34640
date: Tue, 28 Nov 2023 07:59:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
cache-control: max-age=31536000
last-modified: Mon, 27 Nov 2023 13:14:12 GMT
etag: "1d077eb2f892e7f968f043b40b6ae557"
server: AmazonS3
vary: Origin,Access-Control-Request-Headers
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Me43RjmMmNqaEJgpkJ1JEmr7x7yHnPEiRZkDuLSYcltpkIRbyAimDA==
age: 2
X-Firefox-Spdy: h2

mind-flayer.podium.com//graphql

44.226.161.57

200 OK

38 B

URL POST HTTP/1.1
mind-flayer.podium.com//graphql
IP
44.226.161.57:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintEC:7B:3A:EF:6D:23:24:CE:AA:A0:27:80:BA:A4:9B:49:7C:F4:39:AF
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 10 Mar 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
38 B (38 bytes)
Hash
437e479d9f8164112b5829f2e9d8125f
aee7393f83a85824448bb152c06bf7347213323b
8a78824e0e4e78e9e0797e8b3e147d290c7e164e8715b6f983efc924214f9f76

HTTP Headers

POST //graphql HTTP/1.1
Host: mind-flayer.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1130
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://ercgo.com
cache-control: max-age=0, private, must-revalidate
content-type: application/json; charset=utf-8
date: Tue, 28 Nov 2023 07:59:20 GMT
server: Cowboy
vary: origin
x-request-id: F5u6hBp7ZgNhh8IuOOOy
x-robots-tag: noindex
Content-Length: 38
Connection: keep-alive

avatars.podium.com/3121591/f2001f59-5ef2-44a0-a48a-df956e51477a/avatar.jpeg

143.204.55.37

200 OK

360 kB

URL GET HTTP/2
avatars.podium.com/3121591/f2001f59-5ef2-44a0-a48a-df956e51477a/avatar.jpeg
IP
143.204.55.37:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2316x2316, components 3\012- data
Size
360 kB (359618 bytes)
Hash
fc1dbbc703e2727c88fd249af617bae7
6d596b9b6dd5f5b028e3027612a2c1ff7e2da623
5d24dc092d02b11d3378d141042728a31afdd95805f578ab985801aa6f467c95

HTTP Headers

GET /3121591/f2001f59-5ef2-44a0-a48a-df956e51477a/avatar.jpeg HTTP/1.1
Host: avatars.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 359618
date: Tue, 21 Nov 2023 14:57:21 GMT
last-modified: Wed, 08 Sep 2021 18:31:31 GMT
etag: "fc1dbbc703e2727c88fd249af617bae7"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ovKYvHKRhC60OI23MhmBKAMQ8LtYNpzSBWziut3PQjpZQQDW5KFDJA==
age: 579720
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadPodium

142.250.74.132

200 OK

191 kB

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadPodium
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT

File type
ASCII text, with very long lines (1020)
Size
191 kB (191294 bytes)
Hash
25c991f0a5170dd2575b3ffb2c6fbb3b
7e773aa6d7ecd0d6bd3d1cd413dff5a82c5864e9
ab9c9d0a22dc6b51b2362d1dfdb99b44a1864f1d23516870ef1b56ca084d4d46

HTTP Headers

GET /recaptcha/enterprise.js?render=explicit&onload=onRecaptchaLoadPodium HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Tue, 28 Nov 2023 07:59:22 GMT
date: Tue, 28 Nov 2023 07:59:22 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (56398), with no line terminators
Size
25 kB (24606 bytes)
Hash
eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

HTTP Headers

GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Nov 2023 23:14:50 GMT
expires: Sun, 24 Nov 2024 23:14:50 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/css
vary: Accept-Encoding
age: 204272
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw

142.250.74.132

200 OK

226 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (54328)
Size
226 kB (226276 bytes)
Hash
878e92014052ad1a8633ad80a95c3496
48c00fb39f65db4019723bf98a29c5a73f8a36cd
fa20504da308340348f529349d9ed7a7136027586b32940053520b750b508375

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 28 Nov 2023 07:59:22 GMT
content-security-policy: script-src 'nonce-A5fxu-n1jT4nN2kpYj6A2Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:26:09 GMT
expires: Fri, 22 Nov 2024 23:26:09 GMT
cache-control: public, max-age=31536000
age: 376393
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:23:18 GMT
expires: Fri, 22 Nov 2024 23:23:18 GMT
cache-control: public, max-age=31536000
age: 376564
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:37:43 GMT
expires: Wed, 29 Nov 2023 21:37:43 GMT
cache-control: public, max-age=604800
age: 469299
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js

142.250.74.35

200 OK

191 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (563)
Size
191 kB (190682 bytes)
Hash
23b9dd721490a4062ba8d01454ef6ba9
efdbb7331585411f7d397dacbf51fd3e95f3031d
4970c7161d03503a3eb5ec49e4190a03445c50cd5a9081714bd13183d2d948a7

HTTP Headers

GET /recaptcha/releases/-QbJqHfGOUB8nuVRLvzFLVed/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 190682
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 25 Nov 2023 17:15:26 GMT
expires: Sun, 24 Nov 2024 17:15:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 05:42:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 225836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

0 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://ercgo.com/
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://ercgo.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Tue, 28 Nov 2023 07:59:28 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+482; expires=Thu, 27-Nov-2025 07:59:28 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 28 Nov 2023 07:59:28 GMT
cache-control: private

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.106

200 OK

131 B

URL OPTIONS HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 318
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://ercgo.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 28 Nov 2023 07:59:28 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+637; expires=Thu, 27-Nov-2025 07:59:28 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 28 Nov 2023 07:59:28 GMT

ercgo.com/js/jquery-ui.min.js

173.255.201.8

200 OK

255 kB

URL GET HTTP/2
ercgo.com/js/jquery-ui.min.js
IP
173.255.201.8:443
ASN
#63949 Linode, LLC

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type

Size
255 kB (255082 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/jquery-ui.min.js HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Tue, 17 May 2022 19:18:57 GMT
etag: "3e46a-5df3a03239138-gzip"
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 29 Nov 2023 07:59:16 GMT
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
referrer-policy: no-referrer-when-downgrade
content-type: application/javascript
X-Firefox-Spdy: h2

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed

142.250.74.132

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
b581f6e6ac7eb4d572233bdd384918f8
12a90cd14cfea2286982801538560f638670eaff
b62f36160407c81030404ab242125afd42fa0da6626ef11e5f406dda12acf144

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfQHmAhAAAAAMwGWLTBEA_sxYSUMRiijIIqBlP6&co=aHR0cHM6Ly9lcmNnby5jb206NDQz&hl=en&v=-QbJqHfGOUB8nuVRLvzFLVed&size=invisible&badge=inline&cb=gtlw8snbj5hw
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 28 Nov 2023 07:59:22 GMT
date: Tue, 28 Nov 2023 07:59:22 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/swap_session.json

143.204.55.119

200 OK

297 B

URL POST HTTP/2
js.callrail.com/group/0/d92dcb3d6f06f1ccda39/12/swap_session.json
IP
143.204.55.119:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subjectswappy.callrail.com
FingerprintC5:95:4E:A7:3E:0B:80:43:DE:32:CA:5B:07:68:54:7E:44:08:30:2A
ValidityTue, 11 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (339), with no line terminators
Size
297 B (297 bytes)
Hash
f43249122238ee6294849862229dd2a8
96d5880356e303f7d63359ae326fdfb04ad0e0f1
98b90130527900fc4cd1bbeccf53d114959b8237dfd2132dbb5809649560cea7

HTTP Headers

POST /group/0/d92dcb3d6f06f1ccda39/12/swap_session.json HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 615
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 297
date: Tue, 28 Nov 2023 07:59:17 GMT
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: 
access-control-max-age: 7200
cache-control: max-age=0, private, must-revalidate
etag: W/"4bd704b0787d358b3596fb8718093268"
referrer-policy: strict-origin-when-cross-origin
vary: Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 96fdf69e-bc11-48ff-848a-0a678038e140
x-runtime: 0.061770
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Uzjm6_uLhKoDb3iZuD9ESstiQeKm17tPrtGDpYsNfCPzAWG9m1oDYA==
X-Firefox-Spdy: h2

connect.podium.com/widget.js

143.204.55.107

200 OK

681 kB

URL GET HTTP/2
connect.podium.com/widget.js
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://ercgo.com/
Certificate
IssuerAmazon
Subject*.podium.com
FingerprintD2:4B:36:12:30:90:AD:43:C5:BA:18:B3:1C:04:26:73:D1:A9:00:3A
ValidityWed, 24 May 2023 00:00:00 GMT - Fri, 21 Jun 2024 23:59:59 GMT

File type

Size
681 kB (680857 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widget.js HTTP/1.1
Host: connect.podium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
content-length: 191406
content-encoding: gzip
last-modified: Mon, 27 Nov 2023 13:14:13 GMT
server: AmazonS3
date: Tue, 28 Nov 2023 07:15:35 GMT
cache-control: max-age=3600
etag: "4d79b8129a2f62a3af37371852a29bf3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Paa_F9edm2TSHd6T2A1qWnh8wByUknm-BJvP6Nh_RgeYfpCpH8Xy3g==
age: 2695
X-Firefox-Spdy: h2

ercgo.com/site/2023/ERCGO/

0.0.0.0

0 B

URL GET
ercgo.com/site/2023/ERCGO/
IP
0.0.0.0:0
ASN
#0

Requested by
https://ercgo.com/
Certificate
IssuerLet's Encrypt
Subjectercgo.com
Fingerprint5E:97:83:01:FD:CF:1C:9A:DD:3A:C1:33:DA:93:1E:21:77:89:CC:BD
ValidityWed, 01 Nov 2023 17:00:57 GMT - Tue, 30 Jan 2024 17:00:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /site/2023/ERCGO/ HTTP/1.1
Host: ercgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ercgo.com/
DNT: 1
Connection: keep-alive
Cookie: CAKEPHP=uge38tpqogrlfud3421hg8mokt; csrfToken=1730b3a6a25a68fb9ae8e21888da21f912f6a3294a9ceefc1996fc839befa771492ec5eee7fd57b085b9ef33206a24a8c7b6325ca60a25adcdc7c17d4f074748; AMP_16a5c84b5b=JTdCJTIyZGV2aWNlSWQlMjIlM0ElMjJlY2VlMWIzYy02OGI2LTQ1MWYtOGY3NS0xM2EwMGQ4OWQyZDglMjIlMkMlMjJzZXNzaW9uSWQlMjIlM0ExNzAxMTU4MzYxMTYwJTJDJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJsYXN0RXZlbnRUaW1lJTIyJTNBMTcwMTE1ODM2MTQyNiU3RA==; AMP_MKTG_16a5c84b5b=JTdCJTdE; _ga_D2DNM0Z27K=GS1.1.1701158361.1.0.1701158361.60.0.0; _ga=GA1.1.20074119.1701158361; calltrk_referrer=direct; calltrk_landing=https%3A//ercgo.com/; calltrk_session_id=c61113a0-17e8-4ebb-a878-f9bff2c6ebf1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

216.58.211.14

200 OK

91 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT

File type
ASCII text, with very long lines (2462)
Size
91 kB (90794 bytes)
Hash
7bcfd3a5c099a4a53895d8c9813b9382
d9974aa512bb21e845a41f772bc629381bb01fb7
578ebb76ccb6760a27e302eba1a0170055ea855e08effd123463997d1b6819fe

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 28 Nov 2023 07:59:16 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+229; expires=Thu, 27-Nov-2025 07:59:16 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kit.fontawesome.com/9ff5fb97fe.js

172.64.147.188

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/9ff5fb97fe.js
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://ercgo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11213)
Size
12 kB (11750 bytes)
Hash
80752ef73601619d39254133c78aaac5
c999167fd6e7d827f52cc386919a4ebfb2038105
83ec860275acd4c275e0b4b3f0d8c017d782b64aa65a4b45662219a3215a6cf5

HTTP Headers

GET /9ff5fb97fe.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ercgo.com
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 28 Nov 2023 07:59:16 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F5srPgdzf1gDq6NFNK5h
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 82d1120d6865b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap

142.250.74.170

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://ercgo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
12 kB (11770 bytes)
Hash
a4019911acb211ce27609d6b8f02e709
de6f3647e91f9ffcca185d35ee2c956b6240be87
782645490b90acff4cd9d028402649f5f2b2c22b9895f9a6851006dc44f61d4e

HTTP Headers

GET /css2?family=Inter:wght@400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ercgo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 07:59:16 GMT
date: Tue, 28 Nov 2023 07:59:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by