www.rondomtveloat.nl/
301 Moved Permanently 707 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET / HTTP/1.1
Host: www.rondomtveloat.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 17:09:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
location: https://www.rondomtveloat.nl/
x-powered-by: PleskLin
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ej9pfo2PKfsCsp2RwdscKFj0J0YUu9sWb44EYlxveXwoRTYQdcWm8pRj7v0zwMG8QJ6aZG2WPBX4v9FouS%2FheMtNrWvU6ErFGOlwfpeveRgxb%2Fkzj9E0juHtR8IM4vfSO1VgcazldQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4b311e420b39-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4056
Expires: Wed, 01 Feb 2023 18:16:51 GMT
Date: Wed, 01 Feb 2023 17:09:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5802
Expires: Wed, 01 Feb 2023 18:45:57 GMT
Date: Wed, 01 Feb 2023 17:09:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 16:43:25 GMT
content-type: application/json
age: 1550
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3745
Expires: Wed, 01 Feb 2023 18:11:40 GMT
Date: Wed, 01 Feb 2023 17:09:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lfeCmhXqf3p8bxrBYyVx1cpMIk7n9Ul6HfHHYWlN4xvK3szYGCmXTkrW1q2Br5BrXl5ZroxKjt4=
x-amz-request-id: JN2X4Z3MQMW737YE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 16:51:38 GMT
age: 1057
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash f9ccb0cc5cd3ec44f34e830d77e5e812
e7a27753d7d9ae569f60ebcbcfa9004371a9c115
4dfa26c9e1a96503d263896a8b1593e6003db729a5d36a1dd607b1163fe50fa9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4DFA26C9E1A96503D263896A8B1593E6003DB729A5D36A1DD607B1163FE50FA9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Wed, 01 Feb 2023 23:09:10 GMT
Date: Wed, 01 Feb 2023 17:09:15 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash f9ccb0cc5cd3ec44f34e830d77e5e812
e7a27753d7d9ae569f60ebcbcfa9004371a9c115
4dfa26c9e1a96503d263896a8b1593e6003db729a5d36a1dd607b1163fe50fa9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4DFA26C9E1A96503D263896A8B1593E6003DB729A5D36A1DD607B1163FE50FA9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Wed, 01 Feb 2023 23:09:10 GMT
Date: Wed, 01 Feb 2023 17:09:15 GMT
Connection: keep-alive
groepsspellen.nl/wp-content/uploads/2017/07/wat-gaan-we-doen.jpg
200 OK 22 kB URL HTTP/1.1 groepsspellen.nl/wp-content/uploads/2017/07/wat-gaan-we-doen.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x429, components 3\012- data
Hash 996ec6fa4ddf931552e15963d8b9dbea
50e0cfa55bdeb1032eddb235f4ba60ef3772f5ff
aae451473a3f7591401b9db659910bf43a06cb77b0436a9b9caeeae243c6c176
GET /wp-content/uploads/2017/07/wat-gaan-we-doen.jpg HTTP/1.1
Host: groepsspellen.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: image/jpeg
Content-Length: 22491
Connection: keep-alive
Last-Modified: Tue, 04 May 2021 19:48:33 GMT
ETag: "6091a511-57db"
Expires: Thu, 01 Feb 2024 17:09:16 GMT
Cache-Control: max-age=31536000
Host-Header: 8441280b0c35cbc1147f8ba998a563a7
X-Proxy-Cache-Info: DT:1
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6qTcHAIwm3z8yaQeFexu8q91GzkYiCCl7dTOCV%2FInyp4yAGt91PIXxSdNksfDh9iYjT5Xpflfp6JP5z1KLQ6g47Zgqk46X4Ui%2Bf2r5kIHjDvxo5wRYK8UAAekOPdw%2BV8Azk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4b379e98b4ed-OSL
alt-svc: h2=":443"; ma=60
www.msv71.nl/plaat.php?fileid=22910&f=1c48b44bf4a1d17130f9e940041557b3c45026a0a7fa84fa4c0d7b583e237bfdcae524544df56e8e2291aed30389043f1a044b4f43a2e27e7a4e915f1ffb1c89
403 Forbidden 9 B URL HTTP/1.1 www.msv71.nl/plaat.php?fileid=22910&f=1c48b44bf4a1d17130f9e940041557b3c45026a0a7fa84fa4c0d7b583e237bfdcae524544df56e8e2291aed30389043f1a044b4f43a2e27e7a4e915f1ffb1c89
IP
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /plaat.php?fileid=22910&f=1c48b44bf4a1d17130f9e940041557b3c45026a0a7fa84fa4c0d7b583e237bfdcae524544df56e8e2291aed30389043f1a044b4f43a2e27e7a4e915f1ffb1c89 HTTP/1.1
Host: www.msv71.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 403 Forbidden
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: application/octet-stream
Content-Length: 9
Server: Pepyaka/1.19.10
X-Seen-By: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMfCprvsnWWJN8UaZjnJ9vmO
Via: 1.1 google
www.cafedevangrail.nl/wp-content/uploads/2018/12/Pub-Quiz-def2.jpg
200 OK 28 kB URL HTTP/1.1 www.cafedevangrail.nl/wp-content/uploads/2018/12/Pub-Quiz-def2.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1020x692, components 3\012- data
Hash 3c1f98867365b03623d884af21ef3be8
e82df0731fc23512fb8f40495bff668330d8ea7a
334199e265289d37dd3e5b3e6612c194dd550bece2f6f3e2e2b4eec53a526e01
GET /wp-content/uploads/2018/12/Pub-Quiz-def2.jpg HTTP/1.1
Host: www.cafedevangrail.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache/2
Last-Modified: Wed, 27 Mar 2019 08:46:11 GMT
ETag: "6e4f-5850f783ad577"
Accept-Ranges: bytes
Content-Length: 28239
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.olympiajol.nl/content/31474/news/clnt/3724066_709917.jpg?width=1600&height=1200
200 OK 31 kB URL HTTP/1.1 www.olympiajol.nl/content/31474/news/clnt/3724066_709917.jpg?width=1600&height=1200
IP
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 608x280, components 3\012- data
Hash f6dc271bf956e605c07f5e5a9fe16fa1
5e2612098f29e827f2d1c5d97f58d9c56d2601a0
e1638e07ff95da5e353693f9d20a29a550885d9163e13f8019bd04d39ad16185
GET /content/31474/news/clnt/3724066_709917.jpg?width=1600&height=1200 HTTP/1.1
Host: www.olympiajol.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
cache-control: public
content-type: image/jpeg
last-modified: Tue, 24 Jan 2023 08:49:18 GMT
accept-ranges: bytes
etag: "e26485bed02fd91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-served-by: CONTENT05
access-control-allow-origin: *
date: Wed, 01 Feb 2023 17:09:16 GMT
content-length: 30612
www.mhcdalfsen.nl/files/nieuws/welkom_terug.jpg
404 Not Found 681 B URL HTTP/1.1 www.mhcdalfsen.nl/files/nieuws/welkom_terug.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 31e9fc60acd51416a2d46d438f110c87
3f2d477fbc4f31f7c1cdce67fa62b91dbcf3be31
7f5761616dfd681c53b9e4262352899378044d0bae11f301a7190d66bf5a4702
GET /files/nieuws/welkom_terug.jpg HTTP/1.1
Host: www.mhcdalfsen.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: ASP.NET
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oF06Ypdo%2F4r0QkmRsjfls9S1nn3lsIu%2F48%2F1qb8WuTIEJ1Bh%2FfEAtTYPF1%2Bpn2Q1Mn7ACsdcVbanajfMpXqZTeoGeMKfb7e03QMcAIsMlYMQNLLl5ca4wolrxulFz1PYDDUZaA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4b38b83eb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
burgergazet.nl/wp-content/uploads/2013/12/Van-de-redactie.jpg
404 Not Found 244 B URL HTTP/1.1 burgergazet.nl/wp-content/uploads/2013/12/Van-de-redactie.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92d913a92e1dbbc84c364c75d5f407bd
ca2369130f31e16d650127a553d03b3137d1b490
a546dac2140579185573e03ffa867ca31278af00e2c0a4189b6ce6230c3edfdd
GET /wp-content/uploads/2013/12/Van-de-redactie.jpg HTTP/1.1
Host: burgergazet.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Content-Length: 244
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.concours-solon.fr/assets/img/podium.jpg
301 Moved Permanently 86 B URL HTTP/1.1 www.concours-solon.fr/assets/img/podium.jpg
IP
File type HTML document, ASCII text
Hash 17db17c578ef51abd39b7cde59558c4c
90f3d6f3c9f100baab08bd7cca6b45405c5cc8ab
52af4e911d3dc5a0b6db42b1eaf805bef3fca0a385c26a9e528fb940755575fd
GET /assets/img/podium.jpg HTTP/1.1
Host: www.concours-solon.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Location: https://www.concours-solon.fr/assets/img/podium.jpg
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Length: 86
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 57be9d667d47d9bd0a6027078c7bcce5
366ddd84234715202db5ed4ae73b686d1ea72398
d41df12793110d50e6a6bc97a0926eac95a521897a677d895672430690831e21
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D41DF12793110D50E6A6BC97A0926EAC95A521897A677D895672430690831E21"
Last-Modified: Tue, 31 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8609
Expires: Wed, 01 Feb 2023 19:32:45 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ae579cdcbdeb15e6061a034ea98f4761
df842f82f43524a2b4910d35278ef033a782f177
b035648c208ac4ea28ed434f7e8502313098fb6172d4949a370ae500e70c0731
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B035648C208AC4EA28ED434F7E8502313098FB6172D4949A370AE500E70C0731"
Last-Modified: Tue, 31 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Wed, 01 Feb 2023 23:08:21 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
www.mijnalbum.nl/Foto720-ZIIR7TVM.jpg
301 Moved Permanently 0 B URL HTTP/1.1 www.mijnalbum.nl/Foto720-ZIIR7TVM.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Foto720-ZIIR7TVM.jpg HTTP/1.1
Host: www.mijnalbum.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Location: https://myalbum.com/photo/IFNuNfEGDF0C/720.jpg
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
www.aktivatours.nl/data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg
301 Moved Permanently 304 B URL HTTP/1.1 www.aktivatours.nl/data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9e9092f1d4285c91dcc3c509d58b4e56
229e503d61b4d3c581ce161dd6fb304364239a26
72fc9ef5c1954d5d038a74ab158ddf80d8988a750e2898a2d721da4c082d97ec
GET /data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg HTTP/1.1
Host: www.aktivatours.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache/2
X-Frame-Options: SAMEORIGIN
Location: https://www.aktivatours.nl/data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg
Cache-Control: max-age=2592000
Expires: Fri, 03 Mar 2023 17:09:16 GMT
Content-Length: 304
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash fe56fadc3f942375e5f1688b8745ce53
9fbb995249824c7cc5e0972e81862380d22f2988
b83e9bfd7ee2e7c70f1ae067358f93277de465034c836eb826a95854a0574727
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143613
Date: Wed, 01 Feb 2023 17:09:16 GMT
Etag: "63da2337-1d7"
Expires: Fri, 03 Feb 2023 09:02:49 GMT
Last-Modified: Wed, 01 Feb 2023 08:30:47 GMT
Server: ECS (dcb/7EA3)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: icq_n1Z35fDuzQ7asQn-cehuC21cDfkOYXnJSwCsC-tcDXuyd4soug==
Age: 1922
home.hccnet.nl/h.werk/Oliebollen.jpg
302 Found 292 B URL HTTP/1.1 home.hccnet.nl/h.werk/Oliebollen.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a4f05541b2fe4f6b3e6bd325d963610
b27eced141a0fc8e4782375f558e6abd1a83e806
08200e2583767a770da57695cdb653e06c01c37a38648963a4e991407435d69e
GET /h.werk/Oliebollen.jpg HTTP/1.1
Host: home.hccnet.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache
Location: https://home.hccnet.nl/h.werk/Oliebollen.jpg
Content-Length: 292
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4c179d97e98cb52684591777864ce5bd
8f8e1910ad3888f439ddf178890e1c88df9c6591
1ecd46605fc05c74155b1b18d28693fc2b8f4266fa9c739e014391389a91ae72
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1ECD46605FC05C74155B1B18D28693FC2B8F4266FA9C739E014391389A91AE72"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 23:09:16 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4250
Expires: Wed, 01 Feb 2023 18:20:06 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
www.stadsbelangendelft.nl/wp-content/uploads/2009/11/postbus1.JPG
301 Moved Permanently 162 B URL HTTP/1.1 www.stadsbelangendelft.nl/wp-content/uploads/2009/11/postbus1.JPG
IP
ASN #25151 Cyso Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2009/11/postbus1.JPG HTTP/1.1
Host: www.stadsbelangendelft.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.stadsbelangendelft.nl/wp-content/uploads/2009/11/postbus1.JPG
www.oudwest.nl/wp-content/uploads/2009/06/vol-vol-300x291.jpg
301 Moved Permanently 277 B URL HTTP/1.1 www.oudwest.nl/wp-content/uploads/2009/06/vol-vol-300x291.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 500e43887c4f6c11ca2980ec306a0bf7
79396f3026814e0e87ea6465ac009caa79fb3f26
ca0cdaec445f812a72537601f8625ffa77d5b4a3f6d5eb5640638810112af0c1
GET /wp-content/uploads/2009/06/vol-vol-300x291.jpg HTTP/1.1
Host: www.oudwest.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache
Location: https://www.oudwest.nl/wp-content/uploads/2009/06/vol-vol-300x291.jpg
Content-Length: 277
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
200 OK 278 B IP
Hash 98110f96aeb2cd1354432ee0f0cfec7c
79beffbf56fcb8813f8878e328a98a579fb0b0e8
f99b23a3ad9ce4e1d212bc6c43a49d34c0fb8f15b8a45d2752c80bf427afb15b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86639
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:16 GMT
Etag: "63d94c2b-116"
Expires: Thu, 02 Feb 2023 17:13:15 GMT
Last-Modified: Tue, 31 Jan 2023 17:13:15 GMT
Server: nginx
Content-Length: 278
www.eslevents.nl/attracties/darten/dartpijlen-huren.jpg
200 OK 66 kB URL HTTP/1.1 www.eslevents.nl/attracties/darten/dartpijlen-huren.jpg
IP
ASN #207647 Intention B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:02:13 15:34:09], baseline, precision 8, 400x308, components 3\012- data
Hash 8c0f79408b498e0a4e3c240a5357445e
dcc6d8345ccfc749ca1e88b4e5340606df77d59e
08fd5688acd480f6d561f83b331b080e7482d75d47cf4dd3d8a7fb0174329556
GET /attracties/darten/dartpijlen-huren.jpg HTTP/1.1
Host: www.eslevents.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Last-Modified: Tue, 10 Oct 2017 13:51:43 GMT
ETag: "10294-55b319b71b9c0"
Content-Length: 66196
Content-Type: image/jpeg
Server: INT/Cache
X-Varnish: 199510564
Age: 0
Via: 1.1 varnish-v4
grace: none
Connection: keep-alive
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 00d51c0710fd884f8e3b4870c53d5143
dce8a509cd3c7fa4c2cd1501b99dbf4d590e90b2
b31d3edb58593201be6a9c3db186f24ed8b295180ee6d5e4202898ad28dc83be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B31D3EDB58593201BE6A9C3DB186F24ED8B295180EE6D5E4202898AD28DC83BE"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9706
Expires: Wed, 01 Feb 2023 19:51:02 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
i.ytimg.com/vi/Jd3KYM8j7jo/maxresdefault.jpg
200 OK 124 kB URL HTTP/2 i.ytimg.com/vi/Jd3KYM8j7jo/maxresdefault.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 124 kB (124175 bytes)
Hash 87f9ad5e4bded1b83882a152dca2dc3d
8cd3492fdf227cd76269424c4621ef880d43d6e3
8f8af51dd7875764a5378a7bf0a85d26a9eb1357a015ea459ba15fde6020f10d
GET /vi/Jd3KYM8j7jo/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 124175
date: Wed, 01 Feb 2023 17:09:16 GMT
expires: Wed, 01 Feb 2023 19:09:16 GMT
cache-control: public, max-age=7200
etag: "1452447310"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.hallolosser.nl/sites/default/files/images/evenementen/afbeeldingen/2017/1-Oud-papier-ophalen_0.jpg
200 OK 78 kB URL HTTP/1.1 www.hallolosser.nl/sites/default/files/images/evenementen/afbeeldingen/2017/1-Oud-papier-ophalen_0.jpg
IP
ASN #8315 Sentia Netherlands BV
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Picasa, datetime=2017:02:24 11:17:27], baseline, precision 8, 474x503, components 3\012- data
Hash e7bfa97a424ce5127f26d7df5952efae
3b47b87c382e1f27869d27741381967b74ce08b1
6f150e300315bb8ce77684b41716ada83c9ffb22dbad3f71c6b50771902dc04b
GET /sites/default/files/images/evenementen/afbeeldingen/2017/1-Oud-papier-ophalen_0.jpg HTTP/1.1
Host: www.hallolosser.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:15 GMT
Server: Apache/2
X-Content-Type-Options: nosniff
Last-Modified: Fri, 19 May 2017 20:33:03 GMT
ETag: "12f63-54fe66d935dc0"
Accept-Ranges: bytes
Content-Length: 77667
Cache-Control: max-age=1209600
Expires: Wed, 15 Feb 2023 17:09:15 GMT
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
thumbs-eu-west-1.myalbum.io/photo/1k0/d1f6d2ee-22c6-4555-8d6d-4b42f6aeb286.jpg
200 OK 233 kB URL HTTP/2 thumbs-eu-west-1.myalbum.io/photo/1k0/d1f6d2ee-22c6-4555-8d6d-4b42f6aeb286.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1080, components 3\012- data
Size 233 kB (232642 bytes)
Hash e283b5b69388c518509e4ce89602964f
035ba944ea5dfd6d7694efaa9936a4eb4aa36d24
3880e88dca3bd1d6b7f9cfdc54bcff8a92fd35a2829cbf884bfa26f54820d110
GET /photo/1k0/d1f6d2ee-22c6-4555-8d6d-4b42f6aeb286.jpg HTTP/1.1
Host: thumbs-eu-west-1.myalbum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 232642
last-modified: Fri, 04 Jan 2019 10:07:51 GMT
x-amz-storage-class: STANDARD_IA
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 12:43:06 GMT
cache-control: public, max-age=31536000, s-maxage=86400
etag: "e283b5b69388c518509e4ce89602964f"
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: abpu13g0ir62MYS--k7-neIrHeKU7FgPGxj8uBCdMFZkHZQN5lTj8g==
age: 15971
X-Firefox-Spdy: h2
nmtzuid.nl/wp-content/uploads/2020/11/NLdoet-Logo-groota_large.jpg
200 OK 44 kB URL HTTP/1.1 nmtzuid.nl/wp-content/uploads/2020/11/NLdoet-Logo-groota_large.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 3ad1bc09bf527bccc1e430b751d01ec7
800f6d987b9dfbbbede889d6e394843d11e16ae8
53842c1107365024cc9e4bae9cc79e3db9075281be7fc74bf599a78e60ca00f6
GET /wp-content/uploads/2020/11/NLdoet-Logo-groota_large.jpg HTTP/1.1
Host: nmtzuid.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Last-Modified: Wed, 11 Nov 2020 12:46:03 GMT
ETag: "ad4c-5b3d42d9c0f76"
Accept-Ranges: bytes
Content-Length: 44364
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.rondomtveloat.nl/
200 OK 74 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1638), with CRLF, LF line terminators
Hash 82cd1527435e78189037bad5f11f51b8
b1ff667bddfdac1c837ec591175df49652ffbb9d
bddfbd9fa626c11e2883266b3ed335e2497c302205351eb9110335692b6de314
GET / HTTP/1.1
Host: www.rondomtveloat.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
set-cookie: PHPSESSID=fqpf9fvsv11qqa3fse0b4avdn1; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AOSCVWhv%2FIQQuAYUT%2BKsFmIsrC5lTEjRF97Csw1%2FfQEt2MfR4IcR8pV%2FwfFDZ%2BpDy779YPJglqZcw5Uw0lORm7IBjjdXLTydw8LQxI%2F%2FuB2d34rL7cCP7FmXKwWNRABh8010WOZ4zA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792c4b34aa51b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
burggraaf.gildeslager.nl/uploads/asset/data/97/bbq2.jpg
200 OK 346 kB URL HTTP/1.1 burggraaf.gildeslager.nl/uploads/asset/data/97/bbq2.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, software=Adobe Photoshop CS2 Macintosh, datetime=2010:04:27 09:55:09], baseline, precision 8, 1800x1205, components 3\012- data
Size 346 kB (345612 bytes)
Hash c472945f7ae7be9808c2375b322edc48
a1252454c273b64bce78d86d8d5c0bdfa6abdc47
9acc92b0258dc1de4a961941a5ae28d77fb7a32cea65ebae25800fdc0670717f
GET /uploads/asset/data/97/bbq2.jpg HTTP/1.1
Host: burggraaf.gildeslager.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.12.1
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: image/jpeg
Content-Length: 345612
Last-Modified: Sun, 08 Jan 2017 07:21:58 GMT
Connection: keep-alive
ETag: "5871e896-5460c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ed6f052b497cbdbd267dbbc8f6fd44c8
16686d6e28fdfaf8c99aaa6eabc8511d19d2dac4
645400777546efdd4c6ac8c894d073ef69ff473ec340749f64433f86ab723155
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "645400777546EFDD4C6AC8C894D073EF69FF473EC340749F64433F86AB723155"
Last-Modified: Wed, 01 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21523
Expires: Wed, 01 Feb 2023 23:07:59 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 654a71b50ee1622463d75f808bcd1f47
41476ba373702cf9e008eef6c5c4f3c918d8a845
9372b1847fc1214621a2f6585565c650523c47078bbf124483f93409c34963bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9372B1847FC1214621A2F6585565C650523C47078BBF124483F93409C34963BD"
Last-Modified: Tue, 31 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21562
Expires: Wed, 01 Feb 2023 23:08:38 GMT
Date: Wed, 01 Feb 2023 17:09:16 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: L0GbVO1viKLSdL7sJNqBmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pm6+KUJLm5mGFmw+1Gkn14TMDXw=
1.bp.blogspot.com/-cxaLdL73l4k/UCl4jcBwK-I/AAAAAAAAGmM/P5f3j3RO57E/s1600/brievenbus+krant.png
200 OK 32 kB URL HTTP/2 1.bp.blogspot.com/-cxaLdL73l4k/UCl4jcBwK-I/AAAAAAAAGmM/P5f3j3RO57E/s1600/brievenbus+krant.png
IP
File type PNG image data, 283 x 178, 8-bit/color RGB, non-interlaced\012- data
Hash 415cede297a270fd29d00333b56ebbf4
c8d208bc3fa0312d7f5be80bde5807f6c2f3ca3b
5f71c7d468aa1396a5a3ed49834d66fe1e0e4a4688a1aef77347a32b77980f84
GET /-cxaLdL73l4k/UCl4jcBwK-I/AAAAAAAAGmM/P5f3j3RO57E/s1600/brievenbus+krant.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1a63"
expires: Thu, 02 Feb 2023 17:09:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="brievenbus krant.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 17:09:16 GMT
server: fife
content-length: 31772
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
expatshaarlem.nl/wp-content/uploads/2015/12/Oliebollen-550x321.jpg
200 OK 95 kB URL HTTP/2 expatshaarlem.nl/wp-content/uploads/2015/12/Oliebollen-550x321.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 550x321, components 3\012- data
Hash 24d2c71799e84a8cce7c8eb265131ded
281b18e32fc9123d0b6360832bb5bbe01472f3da
fa817682c269192cf372aae17809554d9aecad036b2606dc26bd92bf59e0bca8
GET /wp-content/uploads/2015/12/Oliebollen-550x321.jpg HTTP/1.1
Host: expatshaarlem.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:16 GMT
content-type: image/jpeg
content-length: 95358
last-modified: Wed, 30 Dec 2015 15:47:48 GMT
etag: "5683fca4-1747e"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
onlinecasinopolis.de/wp-content/uploads/sites/30189/Bingo.png
200 OK 151 kB URL HTTP/2 onlinecasinopolis.de/wp-content/uploads/sites/30189/Bingo.png
IP
File type PNG image data, 1124 x 690, 8-bit colormap, non-interlaced\012- data
Size 151 kB (150780 bytes)
Hash 0501d5e1cf99fa5542654d10edb79b3a
d455eb519e60d43f5726b3d847ff206254ffb6cb
910ab2263fe01c1ff59b66ec823a2571844f5cb73e6ed99d23c5a04ac8150284
GET /wp-content/uploads/sites/30189/Bingo.png HTTP/1.1
Host: onlinecasinopolis.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:16 GMT
content-type: image/png
content-length: 150780
last-modified: Mon, 17 Oct 2022 13:10:53 GMT
etag: "634d545d-24cfc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I3ubizuEkI%2FcSpyWXyMgTycrTafNpNYKRA6kRIIUyNuhGZgC2iNnP7HWOBweTgdg5ERi3ktHldKEFtbnK5R1LYBKeACKkGGWTnxJlLChdcs0tym96Xj3SWPtjbTCI3ATpl%2FbTn9fDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4b3b3e95b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
asdnwf.nl/previews/2020/3/21/media_833_517755_w1800_fit.png
200 OK 201 kB URL HTTP/2 asdnwf.nl/previews/2020/3/21/media_833_517755_w1800_fit.png
IP
File type PNG image data, 1800 x 1012, 8-bit/color RGB, non-interlaced\012- data
Size 201 kB (201182 bytes)
Hash 37b044f16a9c76cf95d50289b9aeae54
81821c2836a3fdce413e010a779ce01ce3a8f95b
91c7ffbe0167812a26fdf5f146880d9c456a8b7fa1d731cc3074a653a880eb72
GET /previews/2020/3/21/media_833_517755_w1800_fit.png HTTP/1.1
Host: asdnwf.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:16 GMT
content-type: image/png
content-length: 201182
last-modified: Sat, 21 Mar 2020 09:33:00 GMT
cache-control: max-age=2592000
expires: Fri, 03 Mar 2023 17:09:16 GMT
etag: "5e75df4c-311de"
strict-transport-security: max-age=15768000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2
windmillnetworking.com/wp-content/uploads/2010/07/Girl-Taking-Photograph-With-Camera.jpg
302 Found 47 B URL HTTP/1.1 windmillnetworking.com/wp-content/uploads/2010/07/Girl-Taking-Photograph-With-Camera.jpg
IP
File type HTML document, ASCII text
Hash 8787f2f3f4896bb8b62c82397a37bfc7
f2239ef20f773e49df0cb5320a2a8ac7a694cb08
c096bc65610348a8d20bb5b8f4e60762dcffeda854d8ab15ae1c1d283ef7fa44
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET /wp-content/uploads/2010/07/Girl-Taking-Photograph-With-Camera.jpg HTTP/1.1
Host: windmillnetworking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 17:09:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 47
Connection: keep-alive
Location: https://nealschaffer.com
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
www.prachtigpekela.nl/img/nieuws_icons/4594_tuinconcert_frysk.jpg
200 OK 65 kB URL HTTP/1.1 www.prachtigpekela.nl/img/nieuws_icons/4594_tuinconcert_frysk.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 625x387, components 3\012- data
Hash 4990d79c6741627e4171e7318ff888a2
18ecd9e09e32e5b74db41c0b1f7367e79a8d44dc
feb35c31c7a435f5a5019af7385098c3d0947a6ff08fb89500ead1ab245d3279
GET /img/nieuws_icons/4594_tuinconcert_frysk.jpg HTTP/1.1
Host: www.prachtigpekela.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache/2
Last-Modified: Mon, 30 May 2016 17:50:47 GMT
ETag: "60e046-fc88-53412e5710bc0"
Accept-Ranges: bytes
Content-Length: 64648
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 50aee71907bb1fed829bdd6506820d1d
d0a99024ad73f598bb3e43053f93f0f4889e3832
b4fab226e1a66ce0e4be48cd2dd200ee1c20a78b2bc195aad92ade922a22ed08
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 17:09:16 GMT
Etag: "63d9968e-1d7"
Server: ECS (dcb/7FA8)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OsSvA2rupd0rwyyJzPjRQ_02VYn6WvoVP_uCjtybmQeTyqEy8lOS4A==
i2.wp.com/capmagazine.eu/wp-content/uploads/2020/03/coronavirus.jpg?resize=696%2C464&ssl=1
200 OK 48 kB URL HTTP/2 i2.wp.com/capmagazine.eu/wp-content/uploads/2020/03/coronavirus.jpg?resize=696%2C464&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 696x464, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a8d02b18c7ad22e975a3ac2cf338f12
c4c5c7dfd09d5b5912f419f08337fc0e92937161
e247b651d8d5b2e7818920b31c063f805062e81bb3d8390db72bd3e734919442
GET /capmagazine.eu/wp-content/uploads/2020/03/coronavirus.jpg?resize=696%2C464&ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:16 GMT
content-type: image/webp
content-length: 48120
last-modified: Wed, 01 Feb 2023 17:09:16 GMT
expires: Sat, 01 Feb 2025 05:09:16 GMT
cache-control: public, max-age=63115200
link: <https://capmagazine.eu/wp-content/uploads/2020/03/coronavirus.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "6be638c62d2fa220"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
vzod.nl/wp-content/uploads/Oud-papier-afbeelding-1.jpg
200 OK 24 kB URL HTTP/2 vzod.nl/wp-content/uploads/Oud-papier-afbeelding-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 374x428, components 3\012- data
Hash 5169ec5c207231194ed1430e8629b7a0
6b0b717ef239d8c40d481b3f79b6e8b17d7baffe
dbe3ea2233f33c88fb23880fe462d764f81820a17c18bd9e2965211e5ded8eba
GET /wp-content/uploads/Oud-papier-afbeelding-1.jpg HTTP/1.1
Host: vzod.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache/2.4.29 (Ubuntu)
last-modified: Tue, 16 Apr 2019 07:22:52 GMT
etag: "5ec7-586a0a3179658"
accept-ranges: bytes
content-length: 24263
content-type: image/jpeg
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000;includeSubDomains;preload
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3df3b00e98e86ae31ac248873a43b13a
10d5dab244589131ebc7d9ad9687a9fbdece33b7
c85fb0cb1d71ee8d11799a45195818cf0b788747fae7fad82a9fb2f048c64707
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C85FB0CB1D71EE8D11799A45195818CF0B788747FAE7FAD82A9FB2F048C64707"
Last-Modified: Tue, 31 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9240
Expires: Wed, 01 Feb 2023 19:43:17 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash a6ad1a01190f74a65f69397f39f7dbe6
bf370622552de494ee881a4f1afdfc77eee6e386
5bd6451219e65fe676ef7ab83d45c49b6318c8d0ddaf7d5602972011309e2e6b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:49:13 GMT
Expires: Tue, 07 Feb 2023 19:49:12 GMT
Etag: "bf370622552de494ee881a4f1afdfc77eee6e386"
Cache-Control: max-age=527394,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4b3d89051bfa-OSL
statusd.digitalcertvalidation.com/
200 OK 471 B URL HTTP/1.1 statusd.digitalcertvalidation.com/
IP
Hash f7ea3961c213249a834790e8d9ced698
daa9a701dfa9e5f7dcf283f686a9de529346519a
6a660f65bb21d1c72878bdbccf4d0794317208884d238b7a32a18a81a205eab6
POST / HTTP/1.1
Host: statusd.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 178
Cache-Control: max-age=149454
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63da40d9-1d7"
Expires: Fri, 03 Feb 2023 10:40:11 GMT
Last-Modified: Wed, 01 Feb 2023 10:37:13 GMT
Server: ECS (amb/6BAC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dec24e834664f0a7193f0e8ce839048c
6cb4d8415e164b4ae6c89a31ba70451e80bf9757
75bc50364b55b44184cb658ba591e32ee7c943137b5dc1ab23221e104d5da8ea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75BC50364B55B44184CB658BA591E32EE7C943137B5DC1AB23221E104D5DA8EA"
Last-Modified: Tue, 31 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20516
Expires: Wed, 01 Feb 2023 22:51:13 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
wedstrijd.tips/wp-content/uploads/2019/02/darts.jpg
200 OK 142 kB URL HTTP/2 wedstrijd.tips/wp-content/uploads/2019/02/darts.jpg
IP
ASN #8315 Sentia Netherlands BV
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1200x750, components 3\012- data
Size 142 kB (142093 bytes)
Hash e0b550770c86eb2cdd54d7660b779bc7
1a606ef30a68b5817d51a2ad6993cdffb73310c7
51473212e9e59cdfce365bc48b564ab9331b4ad2cc8c11ac7ee52c6f27c701b4
GET /wp-content/uploads/2019/02/darts.jpg HTTP/1.1
Host: wedstrijd.tips
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 26 Feb 2019 12:12:24 GMT
accept-ranges: bytes
content-length: 142093
cache-control: max-age=31536000
expires: Thu, 01 Feb 2024 17:09:16 GMT
x-permitted-cross-domain-policies: master-only
content-type: image/jpeg
date: Wed, 01 Feb 2023 17:09:16 GMT
server: Apache/2
X-Firefox-Spdy: h2
www.underconsideration.com/brandnew/archives/youtube_2017_logo_before_after_animation2.gif
200 OK 102 kB URL HTTP/1.1 www.underconsideration.com/brandnew/archives/youtube_2017_logo_before_after_animation2.gif
IP
File type GIF image data, version 89a, 600 x 200\012- data
Size 102 kB (101588 bytes)
Hash 445fe5588614949424d1f172fdf5bbdd
c3b32badeb79df15c86dc36c3b5b54b49b05a5e6
f8e1059bdae1129483adc1d8f19b8cfd1480f2d308d312eba533a259de26e557
GET /brandnew/archives/youtube_2017_logo_before_after_animation2.gif HTTP/1.1
Host: www.underconsideration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Last-Modified: Wed, 30 Aug 2017 10:45:29 GMT
Accept-Ranges: bytes
Content-Length: 101588
Cache-Control: max-age=3888000
Expires: Sat, 18 Mar 2023 17:09:16 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 44e01e553632a3f0bbfa59f3c1c032ae
29f6e42d19eff7187aa0e3f3e3ad3ffa8104ec75
a8b838ef6811d3c4a3eb1de5b055260452a3acbe4d29a5483ae86ea75c24ebe9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8B838EF6811D3C4A3EB1DE5B055260452A3ACBE4D29A5483AE86EA75C24EBE9"
Last-Modified: Wed, 01 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Wed, 01 Feb 2023 23:08:35 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
www.gastropedia.nl/wp-content/uploads/sites/16/2016/04/Ree.jpg
200 OK 56 kB URL HTTP/2 www.gastropedia.nl/wp-content/uploads/sites/16/2016/04/Ree.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 620x441, components 3\012- data
Hash e8652870b3a272d6f7cb9cbfa5129db0
7d2707b317c50649d95b1cdbef65927729a70d08
59a8f283c4d672a26837381d9ddd67e58714186b3bcd991dbdf1403a411bee49
GET /wp-content/uploads/sites/16/2016/04/Ree.jpg HTTP/1.1
Host: www.gastropedia.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: image/jpeg
content-length: 56356
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Thu, 06 Jul 2017 06:28:37 GMT
accept-ranges: bytes
cache-control: max-age=10368000, public, public
expires: Thu, 01 Jun 2023 17:09:17 GMT
vary: Accept-Encoding
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.pcr.nl/wp-content/uploads/2016/04/PCR_006-beeld-vacature-1.jpg
200 OK 232 kB URL HTTP/2 www.pcr.nl/wp-content/uploads/2016/04/PCR_006-beeld-vacature-1.jpg
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 2480x1748, components 3\012- data
Size 232 kB (232373 bytes)
Hash 466edebc6e2b893105280f6dfc920309
612d22d51623e03f1d41a3f1b1908bf2560f9406
9415ed4f9b13ed0699abbe33dff6468f80ba7029421dd29a89837cc6b30aa0d5
GET /wp-content/uploads/2016/04/PCR_006-beeld-vacature-1.jpg HTTP/1.1
Host: www.pcr.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 02 Apr 2020 13:17:35 GMT
accept-ranges: bytes
content-length: 232373
cache-control: max-age=10368000, public
expires: Thu, 01 Jun 2023 17:09:17 GMT
content-type: image/jpeg
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache
X-Firefox-Spdy: h2
images-na.ssl-images-amazon.com/images/I/81sSfVy29gL.png
200 OK 359 kB URL HTTP/2 images-na.ssl-images-amazon.com/images/I/81sSfVy29gL.png
IP
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size 359 kB (358628 bytes)
Hash ebe57fbe6aad5341abb291f8e16eadfb
bed479b325155663cd574442de945b1a88f9d33e
f4f5ebd37b9ce7e0147300263c7a4ced981e9da5d5f0bf4ae60aaaac1cd4ca6a
GET /images/I/81sSfVy29gL.png HTTP/1.1
Host: images-na.ssl-images-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
x-amz-ir-id: 5aa28ca0-94c4-4a56-9ee4-b22a5dbeb522
expires: Sun, 18 Jan 2043 20:54:59 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Thu, 15 Jan 2015 13:51:59 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Wed, 01 Feb 2023 17:09:17 GMT
age: 693456
x-served-by: cache-iad-kiad7000028-IAD, cache-bma1639-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 358628
X-Firefox-Spdy: h2
s.s-bol.com/imgbase0/imagebase3/large/FC/4/7/3/0/9200000090110374.jpg
200 OK 46 kB URL HTTP/1.1 s.s-bol.com/imgbase0/imagebase3/large/FC/4/7/3/0/9200000090110374.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 550x451, components 3\012- data
Hash f37c2bbc2192ddd38291647a8c5a46e8
ff174cf067717aaccf538527fa23180e9f8b7d6f
a099a45f77fdfecdf45e4e5281efee8a18b191917a96ed726b26e401ad472bcb
GET /imgbase0/imagebase3/large/FC/4/7/3/0/9200000090110374.jpg HTTP/1.1
Host: s.s-bol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:17 GMT
Last-Modified: Thu, 13 Sep 2018 21:16:16 GMT
Content-Length: 45809
Cache-Control: max-age=31536000
Expires: Thu, 01 Feb 2024 17:09:17 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Range
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
X-Frame-Options: SAMEORIGIN
Timing-Allow-Origin: https://bol.com
Content-Type: image/jpeg
Accept-Ranges: bytes
Connection: keep-alive
www.kaartje2go.be/nieuwjaarskaarten/nieuwjaarskaart-beste-wensen-goud-confetti-foto/img/nieuwjaarskaart-beste-wensen-goud-confetti-foto.jpg
200 OK 170 kB URL HTTP/2 www.kaartje2go.be/nieuwjaarskaarten/nieuwjaarskaart-beste-wensen-goud-confetti-foto/img/nieuwjaarskaart-beste-wensen-goud-confetti-foto.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 828x828, components 3\012- data
Size 170 kB (169728 bytes)
Hash 1ad909cd40d22d50005dd397a7a53343
70976d48f97310f203a5ebccd4ef703885070044
ad4b4c104aac7f563037528f9f51ba4afbc340223d2f67318a91fa6fe878b756
GET /nieuwjaarskaarten/nieuwjaarskaart-beste-wensen-goud-confetti-foto/img/nieuwjaarskaart-beste-wensen-goud-confetti-foto.jpg HTTP/1.1
Host: www.kaartje2go.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 169728
x-amz-id-2: gBDgtzkMigMz3DvTcj61hTiVtrAShublkg5kWNkLKB975J8lECZTPaMNo18465ZVZPH5kAze+fU=
x-amz-request-id: NRBY92QN7HGZHRAN
date: Wed, 01 Feb 2023 17:09:18 GMT
last-modified: Fri, 28 Dec 2018 15:12:09 GMT
etag: "1ad909cd40d22d50005dd397a7a53343"
x-amz-meta-version: big
cache-control: max-age=157680000
x-amz-meta-designerid: 5144
expires: Wed, 27 Dec 2023 15:12:08 GMT
x-amz-meta-cardid: 205565
x-amz-version-id: K40ADNNda9s7NqNueXgl_Ri81HaOJ4v0
x-amz-meta-pagenum: 1
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: N8JSW6bULYuX1pkuIJ73yPbqyCoyuk5GEe0SBrnJGZuZvf66IMazow==
X-Firefox-Spdy: h2
tse2.mm.bing.net/th?id=OIP.JsoEy0j7fGOiuZtMKaxGogDwDw&w=169&h=169&c=7&qlt=90&o=4&dpr=175&pid=1.7
200 OK 11 kB URL HTTP/2 tse2.mm.bing.net/th?id=OIP.JsoEy0j7fGOiuZtMKaxGogDwDw&w=169&h=169&c=7&qlt=90&o=4&dpr=175&pid=1.7
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3\012- data
Hash 27184cc0650e5ccdd8e73acee4bb87ea
792948a2d3ea903e96b123ea5a39fb0d36d7ac1d
695333d9eed3adf7b3da8729ae9b8aea1e0ab9de43f9ee92e841dda4a27f226d
GET /th?id=OIP.JsoEy0j7fGOiuZtMKaxGogDwDw&w=169&h=169&c=7&qlt=90&o=4&dpr=175&pid=1.7 HTTP/1.1
Host: tse2.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1209600
content-length: 10851
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3114C8F5761C43D2B35E6D30273AECDE Ref B: OSL30EDGE0415 Ref C: 2023-02-01T17:09:17Z
date: Wed, 01 Feb 2023 17:09:16 GMT
X-Firefox-Spdy: h2
tse3.mm.bing.net/th?id=OIP.2FzFa2aBT0_yq35g5hWnPAHaFg&pid=15.1&P=0&w=215&h=161
200 OK 4.9 kB URL HTTP/2 tse3.mm.bing.net/th?id=OIP.2FzFa2aBT0_yq35g5hWnPAHaFg&pid=15.1&P=0&w=215&h=161
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 215x160, components 3\012- data
Hash c6c28e64ce823c4ddb319b03e5404eee
49e53b956ee4cb9b674c6951589d2432abdcddf7
74f2d3925da16b6532add4b2f76863525f55c8de802bec395e6b3f80452b9554
GET /th?id=OIP.2FzFa2aBT0_yq35g5hWnPAHaFg&pid=15.1&P=0&w=215&h=161 HTTP/1.1
Host: tse3.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1209600
content-length: 4906
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0DCB0E0FFDF447F09AE8220053FAB51A Ref B: OSL30EDGE0411 Ref C: 2023-02-01T17:09:17Z
date: Wed, 01 Feb 2023 17:09:16 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 2cfa511ef520912e892d28737f63593f
6d131bee63171412391f4ab10c0e58d33d4ad36f
a901ba003bcf9c58ca3e1f29ccba23029e9cae58e50dda1958b530f3b8432ad0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 15:11:11 GMT
Expires: Mon, 06 Feb 2023 15:11:10 GMT
Etag: "6d131bee63171412391f4ab10c0e58d33d4ad36f"
Cache-Control: max-age=424312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4b3e29aa1bfa-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 0cf6c2eb568ad51e97672ba077876948
3a555037e64b9c09781d750a4126e7b731666a02
5651d679f3355300dfd0521428621fe073dc7fca94217b45dd303e96f2530960
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159698
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63da698f-117"
Expires: Fri, 03 Feb 2023 13:30:55 GMT
Last-Modified: Wed, 01 Feb 2023 13:30:55 GMT
Server: nginx
Content-Length: 279
www.hbbond.nl/wp-content/uploads/2017/09/opgelet.jpg
200 OK 22 kB URL HTTP/2 www.hbbond.nl/wp-content/uploads/2017/09/opgelet.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1227x777, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 414bd4c276fa19c6981e0ef0510c03e7
c79d8b7de30025bb9b899c971f280989ee7b21f3
e5033db8d33d93bee9d2575c9a2eaf45c8ca85dd83aef3bb40ca1218f04a94cc
GET /wp-content/uploads/2017/09/opgelet.jpg HTTP/1.1
Host: www.hbbond.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache
cache-control: private, max-age=31536000
vary: Accept
last-modified: Tue, 30 Nov 2021 23:00:09 GMT
etag: "54ec-5d20984de965a"
accept-ranges: bytes
content-length: 21740
expires: Thu, 01 Feb 2024 17:09:17 GMT
content-type: image/webp
x-varnish: 1049113137
age: 0
via: 1.1 webcache2 (Varnish/trunk)
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 692391704ca6e43f9fc0b364efcd1310
85bd8131554ed317aa7bd7fa212934a0806483fb
ee2a00a29af72d317319234728d9705853547e617ab998366742910b36242cb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2569
Cache-Control: max-age=89883
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63d94ecf-1d7"
Expires: Thu, 02 Feb 2023 18:07:20 GMT
Last-Modified: Tue, 31 Jan 2023 17:24:31 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.gewichten-kopen.nl/wp-content/uploads/2012/03/6_gewichten-kopen.gif
404 Not Found 2.9 kB URL HTTP/1.1 www.gewichten-kopen.nl/wp-content/uploads/2012/03/6_gewichten-kopen.gif
IP
ASN #206281 Stichting DIGI NL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (632)
Hash ad1a5eab5f2b91ffb23bbeab3cd359ce
2bc9af9a209292a2cbd122c0c12367c0076b1ad0
477313b56a0b34d3d728e9799e3fceefc59a9d23e900180af6f7e44bced47543
GET /wp-content/uploads/2012/03/6_gewichten-kopen.gif HTTP/1.1
Host: www.gewichten-kopen.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 404 Not Found
date: Wed, 01 Feb 2023 17:09:16 GMT
server: Apache/2
x-powered-by: PHP/7.4.27
link: <https://www.gewichten-kopen.nl/wp-json/>; rel="https://api.w.org/"
cache-control: must-revalidate
expires: Sat, 04 Feb 2023 17:09:17 GMT
upgrade: h2,h2c
connection: Upgrade
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2852
content-type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 16:49:05 GMT
age: 1212
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8f1ff79de1177da71a9ebb750ba8885c
05c85ac5a1d161abb364f6356e05d2b7560be9e7
cc4d403c6bcaa711980d57c9e777ce24f06d5060442ae0c26fa5a797ebb91b24
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC4D403C6BCAA711980D57C9E777CE24F06D5060442AE0C26FA5A797EBB91B24"
Last-Modified: Mon, 30 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21591
Expires: Wed, 01 Feb 2023 23:09:08 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
tse3.mm.bing.net/th?id=OIP.pWl9vmPfRPAcEIMKn0CeZgEsDv&w=260&h=208&c=7&qlt=90&o=4&pid=1.7
200 OK 17 kB URL HTTP/2 tse3.mm.bing.net/th?id=OIP.pWl9vmPfRPAcEIMKn0CeZgEsDv&w=260&h=208&c=7&qlt=90&o=4&pid=1.7
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 260x208, components 3\012- data
Hash 10f501efbe8795f5bed919a08202c37c
a6c88659a00244e3793b9b38b427de828f74c2b4
68896b6bb554b981c9ec60f741e10c1f708a885d2e766d28f7d985a1a0d9117c
GET /th?id=OIP.pWl9vmPfRPAcEIMKn0CeZgEsDv&w=260&h=208&c=7&qlt=90&o=4&pid=1.7 HTTP/1.1
Host: tse3.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1209600
content-length: 16999
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6839E22F4D394FEDB15321E0055D391C Ref B: OSL30EDGE0411 Ref C: 2023-02-01T17:09:17Z
date: Wed, 01 Feb 2023 17:09:16 GMT
X-Firefox-Spdy: h2
connect.facebook.net/nl_NL/all.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/nl_NL/all.js
IP
File type ASCII text, with very long lines (1957)
Hash 47a1fdeae5208405ecc89580022c2cd4
f8c59334767ee86010bd5b94f75d3ee0118c86eb
280fcad20eba56bbb7d23d5a682c7f1555d5d791830e0f78cd8bfb9199b64107
GET /nl_NL/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5f90f24347c08f0331ce3bf7a99d5a08
etag: "5fa390bb5851c20b52c053639d70813c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 01 Feb 2023 17:28:14 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: R6H96uUghAXsyJWAAiws1A==
x-fb-debug: we6SnkXl/JB+808cbWieq6K9mvEeXPeYvJFoviGBOFyf0x7x/ABL91xDPiRclyJM7EZPxPXN3vN90IaDev3gXg==
content-length: 1688
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 17:09:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tse2.mm.bing.net/th?id=OIP.M38bbf0976393943d43967a96da459bb0o0&pid=15.1
200 OK 17 kB URL HTTP/2 tse2.mm.bing.net/th?id=OIP.M38bbf0976393943d43967a96da459bb0o0&pid=15.1
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x209, components 3\012- data
Hash ab24bd9241a153b91ac2d31e7fefed9d
dc25060c82af472413c9a406e8fd835a51e018cb
e8a495cabbd7e22cbf3745446e0faa28a762e04944d4c39136957c72082cf86b
GET /th?id=OIP.M38bbf0976393943d43967a96da459bb0o0&pid=15.1 HTTP/1.1
Host: tse2.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1209600
content-length: 16640
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1DE489D1A8C74D2081C248E84A897961 Ref B: OSL30EDGE0415 Ref C: 2023-02-01T17:09:17Z
date: Wed, 01 Feb 2023 17:09:16 GMT
X-Firefox-Spdy: h2
www.alo.nu/wordpress/wp-content/uploads/2015/02/redactie.592x263-592x263.jpg
200 OK 48 kB URL HTTP/2 www.alo.nu/wordpress/wp-content/uploads/2015/02/redactie.592x263-592x263.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 592x263, components 3\012- data
Hash 035847f684726657251f820f09f99b40
e7807e01ee16110a64356bd4ee78b8a5cbb72ffb
1324d5227b85dbf7c80a4264626b4b480dc792fbcffccd7141d3b310b1747140
GET /wordpress/wp-content/uploads/2015/02/redactie.592x263-592x263.jpg HTTP/1.1
Host: www.alo.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: image/jpeg
content-length: 47770
last-modified: Wed, 01 Feb 2023 06:20:25 GMT
etag: "ba9a-5f39d71a4b63b"
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1e1ae4f15a4774bacb0b77d4e1f6919a
78b88af9afa23f0caa9f24d7c2f64281e68b3516
5bb01aad3c5bad5df259f9d6cdeb7006ff47f9e640eec528691fc1e9aeb337e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5BB01AAD3C5BAD5DF259F9D6CDEB7006FF47F9E640EEC528691FC1E9AEB337E0"
Last-Modified: Wed, 01 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 23:09:17 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
someren-eind.nl/wp-content/uploads/2020/03/Corona-15-mrt-1000x540.jpg
200 OK 180 kB URL HTTP/2 someren-eind.nl/wp-content/uploads/2020/03/Corona-15-mrt-1000x540.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 1000x540, components 3\012- data
Size 180 kB (180375 bytes)
Hash 3f3d1cbe2b70c0c02a6af9ee5da6cc1f
f0b1f6e864ab35ad01ef4d179aa73dbb6eaecbe4
041420c3c0e00473154d0a85105d1e50cf372b22706c2f5681d616ea5c062fee
GET /wp-content/uploads/2020/03/Corona-15-mrt-1000x540.jpg HTTP/1.1
Host: someren-eind.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 28 Jul 2021 15:05:26 GMT
etag: "2c097-5c83050f8dedf"
accept-ranges: bytes
content-length: 180375
content-type: image/jpeg
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache/2
X-Firefox-Spdy: h2
statusd.digitalcertvalidation.com/
200 OK 471 B URL HTTP/1.1 statusd.digitalcertvalidation.com/
IP
Hash e2f66f286be27384ba9e652aab1d867b
ed3d9c0e03b7cfa7a19d8607235322ad9ddf565f
133c7b7a48c4f3979946f53d7ce3f3abad3ac77ac9eec884571e2251daa21151
POST / HTTP/1.1
Host: statusd.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=90576
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63d95b8d-1d7"
Expires: Thu, 02 Feb 2023 18:18:53 GMT
Last-Modified: Tue, 31 Jan 2023 18:18:53 GMT
Server: nginx
Content-Length: 471
tse2.mm.bing.net/th?id=OIP.TyglMJOh7nGFN7GMT_1onwDhDV&pid=15.1
404 Not Found 2.7 kB URL HTTP/2 tse2.mm.bing.net/th?id=OIP.TyglMJOh7nGFN7GMT_1onwDhDV&pid=15.1
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash acb90547634fdb645a76232b07200e70
ab4091e37f7e55f28de226051264d070d3c5dd97
0a48f443588e7d1ebd4cb4266ab37950f4f06f17e61c4c2b598fb1a13e993f7d
GET /th?id=OIP.TyglMJOh7nGFN7GMT_1onwDhDV&pid=15.1 HTTP/1.1
Host: tse2.mm.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: no-cache
pragma: no-cache
content-length: 1192
expires: -1
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F4D72DDC7628463DA1A69EFDADFD6303 Ref B: OSL30EDGE0415 Ref C: 2023-02-01T17:09:17Z
date: Wed, 01 Feb 2023 17:09:16 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c644a73d518a8a2348eb5b434842e6ce
3ea3d6025c17f60713ec37e8c4ddc02eba5128e3
5d113be969619c442c2b4b048990d9756efce76dda98148d2832ae6893d8f17b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 17:09:17 GMT
Last-Modified: Wed, 01 Feb 2023 15:54:52 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qsQ13N9qcvcTXNAE998SjF-DIm0HSicsc1oLbyeoiKwwHM9FQ9MpNg==
Age: 4465
ocsp.sectigo.com/
200 OK 471 B IP
Hash d6dd94e572be113a298196b57be720c0
ea2bfa0e7439e9bb169801c45948abac2fa4a6d3
c39236494e877af566233381cd7032b97192219996c1432f7d59a3a211e8d6cd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 22:26:25 GMT
Expires: Tue, 07 Feb 2023 22:26:24 GMT
Etag: "ea2bfa0e7439e9bb169801c45948abac2fa4a6d3"
Cache-Control: max-age=536826,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4b3eda5e1bfa-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5f4dc3e8ebedb676b02cb43284bd576a
1877041099b28a7a6a58dffae66e74d692baaca9
d0899406be2c7a191fd504485b2004087e9336dcd0dfb64c97fb69fbda0dfe5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0899406BE2C7A191FD504485B2004087E9336DCD0DFB64C97FB69FBDA0DFE5C"
Last-Modified: Tue, 31 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 23:09:17 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
www.silverline.com.au/wp-content/uploads/2020/04/8189_PPW_Keep-your-distance-Sticker-Yellow-450mm.jpg
403 Forbidden 4.8 kB URL HTTP/1.1 www.silverline.com.au/wp-content/uploads/2020/04/8189_PPW_Keep-your-distance-Sticker-Yellow-450mm.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Hash f2ad4f3bbe9f085b96dc6f3e714567bf
8f25cf34c2cbee4e3ca7fa1016a3fbffb640a9c1
e2aa9274d041a4d4c5398bf62ae823f3dbf618a000125c4de29523a219e1485e
GET /wp-content/uploads/2020/04/8189_PPW_Keep-your-distance-Sticker-Yellow-450mm.jpg HTTP/1.1
Host: www.silverline.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Wed, 01 Feb 2023 17:09:17 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4811
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
www.youtube.com/s/player/dac945fd/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/dac945fd/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 44fae7c4844ce1fc313ca62747036427
d5986b7a3504d913d8ee2077a337e9565a91e32d
a766a46ce1639acea30dc538bc4fc2735f421d3163c61a2ad87ac02d33c473af
GET /s/player/dac945fd/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/P2m6hSRf-Ws
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49943
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:49:09 GMT
expires: Tue, 30 Jan 2024 16:49:09 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 01:18:05 GMT
content-type: text/css
age: 174008
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/dac945fd/www-embed-player.vflset/www-embed-player.js
200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/dac945fd/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (679)
Size 110 kB (109695 bytes)
Hash 40b186ad1170470b0d89a7e3c4608ff2
f5ecf32b5b67c3d911bd81a246209f5473d7b6ae
f776addb3f8c34016bb4533baf1859485f3e2f92cfda097f1d5a4eb97bf06f82
GET /s/player/dac945fd/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/P2m6hSRf-Ws
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 109695
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:50:17 GMT
expires: Tue, 30 Jan 2024 16:50:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 01:18:05 GMT
content-type: text/javascript
age: 173940
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/dac945fd/player_ias.vflset/en_US/base.js
200 OK 614 kB URL HTTP/2 www.youtube.com/s/player/dac945fd/player_ias.vflset/en_US/base.js
IP
File type ASCII text, with very long lines (517)
Size 614 kB (613933 bytes)
Hash aa41119c828af97e448d3d74ba3634b0
2ba5a27edd06fffc73815b64a93159c7b64dd3ff
e18941757559152084d9af4928ae09836b66f3331f01be7e108c6b589f4e944d
GET /s/player/dac945fd/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/P2m6hSRf-Ws
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 613933
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:59:36 GMT
expires: Tue, 30 Jan 2024 16:59:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 01:18:05 GMT
content-type: text/javascript
age: 173381
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/dac945fd/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/dac945fd/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/dac945fd/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/P2m6hSRf-Ws
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:50:17 GMT
expires: Tue, 30 Jan 2024 16:50:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 01:18:05 GMT
content-type: text/javascript
age: 173940
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.speeltuinbeerta.nl/images/speeltuin-speulparadies-beerta.jpg
200 OK 25 kB URL HTTP/2 www.speeltuinbeerta.nl/images/speeltuin-speulparadies-beerta.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x100, components 3\012- data
Hash 7136e31dfe43e32894c5e02f456238a6
7b7680481af23c81353b8f2000aab3bae08d62d8
c11d065e27c8736c426e985849e1d648ff16cecb75a8b0c85803176777cd5c3f
GET /images/speeltuin-speulparadies-beerta.jpg HTTP/1.1
Host: www.speeltuinbeerta.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: image/jpeg
content-length: 25226
last-modified: Wed, 25 Mar 2015 10:41:26 GMT
etag: "551290d6-628a"
x-frame-options: SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2
www.aktivatours.nl/data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg
404 Not Found 3.1 kB URL HTTP/2 www.aktivatours.nl/data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d78275ab6369684bf73dde5ef7b749fd
7ea2ff1cba2a19e84684b8cfdf925895d2170836
42dba7d0758104d53dfcf5f08ce3dc84ec7a71625cb63acdc643f576a6c6d8cc
GET /data/pic/GRIJNM_Duitsland_Fiets_Riviercruise_langs_Rijn___Moezel9.jpg HTTP/1.1
Host: www.aktivatours.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=e9ou5cvdi8fqarhvb5iap1ie8f; path=/; HttpOnly
x-frame-options: SAMEORIGIN
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
content-length: 3147
content-type: text/html; charset=UTF-8
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache/2
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 160ff46273e80b1a0523615a5a30b060
7ccdc86678b4cddb5b6c36e42e884ca11866ae59
0eb9af55430b8b3c5c429edae27548a210d638227ba2c23d29a715bc5b79a477
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 411eaa1a0d6eba8a1abf30765988af47
f33cdf44adee62d0d60fb1c50cace64a4fa83207
dca273e554a8d15a5c8380d9660172ba1a7aa24dac0552746d53a4aeb39c915f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132713
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63d9feb8-1d7"
Expires: Fri, 03 Feb 2023 06:01:10 GMT
Last-Modified: Wed, 01 Feb 2023 05:55:04 GMT
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JlgdP4UDr9uCqhKd3Wseb7UY8XO6VaOTneG0ffcGvv335lIdRk2zug==
Age: 366
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ceedc1de79b886445ac36cbc321dd1a
e47130d3dc700f771b213b736ade7afd2cb2432d
d266fc0e9683773fe42a45032deb7bfcfba2427765f5048b9f725c7b8ef2cf7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D266FC0E9683773FE42A45032DEB7BFCFBA2427765F5048B9F725C7B8EF2CF7C"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 23:09:17 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f758338a89db20a34f77592d2df296b6
f2e3ac957885d9f6c14765320ac8ebc06604f721
0187e76d359d0a94b7752ec8c2ba267abcdee1d9a80935b4211e99c5e8de69ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0187E76D359D0A94B7752EC8C2BA267ABCDEE1D9A80935B4211E99C5E8DE69AD"
Last-Modified: Mon, 30 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 23:09:17 GMT
Date: Wed, 01 Feb 2023 17:09:17 GMT
Connection: keep-alive
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 50aee71907bb1fed829bdd6506820d1d
d0a99024ad73f598bb3e43053f93f0f4889e3832
b4fab226e1a66ce0e4be48cd2dd200ee1c20a78b2bc195aad92ade922a22ed08
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111686
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63d9968e-1d7"
Expires: Fri, 03 Feb 2023 00:10:43 GMT
Last-Modified: Tue, 31 Jan 2023 22:30:38 GMT
Server: ECS (dcb/7F39)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q0e7Jg1bMrbRijfbqB_7sBnhoD_BjhRHspJnH25Umm9CvxNhhsPoEw==
Age: 6005
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 692391704ca6e43f9fc0b364efcd1310
85bd8131554ed317aa7bd7fa212934a0806483fb
ee2a00a29af72d317319234728d9705853547e617ab998366742910b36242cb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2569
Cache-Control: max-age=89883
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Etag: "63d94ecf-1d7"
Expires: Thu, 02 Feb 2023 18:07:20 GMT
Last-Modified: Tue, 31 Jan 2023 17:24:31 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hrdlpn.s3.amazonaws.com/plaatjes/hardlopen%20tips.jpg
200 OK 39 kB URL HTTP/1.1 hrdlpn.s3.amazonaws.com/plaatjes/hardlopen%20tips.jpg
IP
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2011:07:17 20:08:59], baseline, precision 8, 175x160, components 3\012- data
Hash 381738014db7046d99cb6e30534fe0c5
897cca71f64ea3b396e9a991df54cc921e744813
f779d3fd857de695a6d4475fd885b98599c87de79dcf428b22d2e56ed9f93983
GET /plaatjes/hardlopen%20tips.jpg HTTP/1.1
Host: hrdlpn.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: d6oBhCeQEqoiowEXdls5Iw6iy7z7vhPkQlXO+lQMPMlCY1jykhuKV2B//n7QSnvs70++TDInsqk=
x-amz-request-id: NRBZ38NH07F9ES07
Date: Wed, 01 Feb 2023 17:09:18 GMT
Last-Modified: Tue, 28 Feb 2017 14:44:28 GMT
ETag: "381738014db7046d99cb6e30534fe0c5"
x-amz-meta-s3fox-filesize: 39230
Cache-Control: max-age=2592000
x-amz-version-id: null
x-amz-meta-s3fox-modifiedtime: 1310934710045
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 39230
www.oudwest.nl/wp-content/uploads/2009/06/vol-vol-300x291.jpg
200 OK 15 kB URL HTTP/2 www.oudwest.nl/wp-content/uploads/2009/06/vol-vol-300x291.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x291, components 3\012- data
Hash 231e05fa13903f1c4072d9a20c6d617d
0328fea23be5ae205fafabaa52009a4a385f31ad
60d30cac6ef93ea1ac723ecf677975de05a8a6f4b59b49bb1c704abfe110b7f5
GET /wp-content/uploads/2009/06/vol-vol-300x291.jpg HTTP/1.1
Host: www.oudwest.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache
last-modified: Sun, 15 Jun 2014 20:16:38 GMT
etag: "3b44-4fbe596819580"
accept-ranges: bytes
content-length: 15172
content-type: image/jpeg
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 501674
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
veenstrareizen.nl/wp-content/uploads/2016/12/busreis-trier-luxemburg.jpg
404 Not Found 7.6 kB URL HTTP/2 veenstrareizen.nl/wp-content/uploads/2016/12/busreis-trier-luxemburg.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9267)
Hash 3dc27f7a5442c552b76ef5ab500e8ccf
a258710d57c6815af8b3a9886448508eeac50905
664d59b1f045b5169621394ca1164c12840ec2107be35265ac448cb96049e4f1
GET /wp-content/uploads/2016/12/busreis-trier-luxemburg.jpg HTTP/1.1
Host: veenstrareizen.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
webwink-site: true
strict-transport-security: max-age=18144000
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7641
content-type: text/html; charset=UTF-8
date: Wed, 01 Feb 2023 17:09:17 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 520114
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
home.hccnet.nl/h.werk/Oliebollen.jpg
200 OK 1.8 kB URL HTTP/1.1 home.hccnet.nl/h.werk/Oliebollen.jpg
IP
Hash 81dab447f1e73b4b927398b72826f487
7c12a3b2928e48cefc2f6653114b566c97d96b75
cfaadad9dedd75a9c944182eccc7ddf77bf50efda77706d83de6febefee3cb30
GET /h.werk/Oliebollen.jpg HTTP/1.1
Host: home.hccnet.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:17 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000
Last-Modified: Fri, 23 Oct 2020 08:06:34 GMT
ETag: "7398-5b2520f1de9f9"
Accept-Ranges: bytes
Content-Length: 29592
Cache-Control: max-age=31536000, public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.stadsbelangendelft.nl/wp-content/uploads/2009/11/postbus1.JPG
200 OK 69 kB URL HTTP/2 www.stadsbelangendelft.nl/wp-content/uploads/2009/11/postbus1.JPG
IP
ASN #25151 Cyso Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=19, description=< Digimax U-CA 5, Kenox U-CA 5 / Kenox U-CA 50 >, manufacturer=Samsung Techwin, model=< Digimax U-CA 5, Kenox U-CA 5 / Kenox U-CA 50 >, orientation=upper-left, xresolution=358, yresolution=366, resolutionunit=2, software=503241, datetime=2024:11:07 17:11:08, copyright=COPYRIGHT, 2005], baseline, precision 8, 351x263, components 3\012- data
Hash a85dbb7369cc1c6537b6a5531cd9bc59
3c557a452e8b2fc04b68cf88e53a2d40f6669a92
3c0297622f6f458a8e78bd6301e0c53b1f7e0cdf33efb65d5147bd219b172f8c
GET /wp-content/uploads/2009/11/postbus1.JPG HTTP/1.1
Host: www.stadsbelangendelft.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: image/jpeg
content-length: 69063
last-modified: Fri, 18 Apr 2014 13:14:51 GMT
etag: "5351254b-10dc7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
thumbs-eu-west-1.myalbum.io/photo/1k0/7574de5e-a750-4c6e-aebc-3626eacc945f.jpg
200 OK 327 kB URL HTTP/2 thumbs-eu-west-1.myalbum.io/photo/1k0/7574de5e-a750-4c6e-aebc-3626eacc945f.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1080, components 3\012- data
Size 327 kB (327067 bytes)
Hash 58a084c8bbed5db55dd1b124a10e560a
8e2fceb7ec33d218fad3ddaf05d60e8887b1c5c9
4a4bceefa201e296cf525c2a51397104d240d752aff34ef7c2862f1e030b5a6c
GET /photo/1k0/7574de5e-a750-4c6e-aebc-3626eacc945f.jpg HTTP/1.1
Host: thumbs-eu-west-1.myalbum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 327067
last-modified: Wed, 21 Nov 2018 16:50:10 GMT
x-amz-storage-class: STANDARD_IA
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 12:43:13 GMT
cache-control: public, max-age=31536000, s-maxage=86400
etag: "58a084c8bbed5db55dd1b124a10e560a"
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TnwnwzwTIJEKn6XMnSCPjpHsLBNA2UOR3lCQou5yDc2OsQpvjiyZOw==
age: 15965
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9924
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 17:09:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9924
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 17:09:18 GMT
Connection: keep-alive
myalbum.com/photo/IFNuNfEGDF0C/720.jpg
302 Found 503 B URL HTTP/2 myalbum.com/photo/IFNuNfEGDF0C/720.jpg
IP
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
GET /photo/IFNuNfEGDF0C/720.jpg HTTP/1.1
Host: myalbum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: text/html; charset=UTF-8
location: https://thumbs-eu-west-1.myalbum.io/photo/1k0/7574de5e-a750-4c6e-aebc-3626eacc945f.jpg
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3971
Expires: Wed, 01 Feb 2023 18:15:29 GMT
Date: Wed, 01 Feb 2023 17:09:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9924
Expires: Wed, 01 Feb 2023 19:54:42 GMT
Date: Wed, 01 Feb 2023 17:09:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 23529
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 15138
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
301 Moved Permanently 325 B URL HTTP/2 www.breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fcc63b61cd139be175cb823169184130
f5abc302c97b95af1fc4de8e608b2399735e9b81
42fff166aeae7e648d439a7a89a76a2db4055e48d7ac088b01528a02cf713af4
GET /media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg HTTP/1.1
Host: www.breezethruobx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: Apache/2.4.6 (CentOS) PHP/7.4.33
x-varnish: 887636905
content-type: text/html; charset=iso-8859-1
date: Wed, 01 Feb 2023 17:09:18 GMT
location: http://breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
x-varnish-cache: MISS
via: 1.1 varnish-v4
age: 0
content-length: 325
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 70019
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c83dcdb618756ebbfeb69a8bff6d38c
5f909182ab6847690e7ebd100e3f0d2798e36192
2e29d0747fb973908228501178465ac09f6553ef8e50dd70ee617f3379eb733c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7049
x-amzn-requestid: bc6522f2-eb6b-4e59-9912-0c03d145f021
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk31LGE2IAMF8rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839ba-67477ed1260c27f67e28043d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q_aVbWJKMbX1_bjggzbdnWbgmfooGvXj76t55QGGXRr_y6ZgW2gctw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:23:45 GMT
age: 17133
etag: "5f909182ab6847690e7ebd100e3f0d2798e36192"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 52760
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78fe9a77211d6f9a462f625af0c6f9bc
ac0b58423d7578e7a1b60a62220c0a57924dda82
e047466c3ae0a55509f4ace49d0476f94271b5a25e71caa3b06ec468a238b652
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14041
x-amzn-requestid: 2be6655d-3b0e-4e65-b44b-11682610b640
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRGFpIAMFbMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-5554d18d5db235913afa77a2;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jJHVbOXepgkVHjuNJG9wPcMjDcGbAc-NIpv_KUECG6c-AnJZoIW0zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:56 GMT
age: 69982
etag: "ac0b58423d7578e7a1b60a62220c0a57924dda82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 16:57:52 GMT
expires: Wed, 01 Feb 2023 17:12:52 GMT
cache-control: public, max-age=900
age: 686
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nealschaffer.com/
200 OK 46 kB IP
Hash e8e39929c4de178cdb7851e5d8f02e02
0244acad1b6e0f5851349bcc2900a6d5df080269
427002a9d72d6a6789a135628ffe83dcadb9ba65137693025214b1e6f3754a17
GET / HTTP/1.1
Host: nealschaffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Wed, 01 Feb 2023 16:44:43 GMT
x-powered-by: centminmod
x-hosted-by: BigScoots
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FvKMQGRtBOvrwu6X4dJgS%2BGO3V4UK5Qgq8brBIbMf%2BzE1tnzsWUKMnS5y2H2pRpKFcuaLFA5yVnTZgFQKTKQherf91Bee48Hl0tNY34rgh0k%2BP%2FfAiRPMQbVW%2FmRay2prgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792c4b421f27b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 01 Feb 2023 17:09:18 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wesleyschan.com/blog/wp-content/uploads/2013/12/OlieBollen.jpg
200 OK 4.0 MB URL HTTP/1.1 wesleyschan.com/blog/wp-content/uploads/2013/12/OlieBollen.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, manufacturer=Canon, model=Canon EOS DIGITAL REBEL XTi, orientation=upper-left, orientation=upper-left, xresolution=192, yresolution=200, resolutionunit=2, software=QuickTime 7.6.4, datetime=2010:01:03 14:12:28, hostcomputer=Mac OS X 10.5.8], comment: "AppleMark", baseline, precision 8, 3888x2588, components 3\012- data
Size 4.0 MB (3981543 bytes)
Hash 677ecf6a40b7dcebddf92513bfa70dd0
9d18ecf51053019cf845161febb66cb3be807052
44fd1c6d8f8661fe01219ed812adab9aa6c7204abd6d426bd309f89891d3e699
GET /blog/wp-content/uploads/2013/12/OlieBollen.jpg HTTP/1.1
Host: wesleyschan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:09:16 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Fri, 13 Dec 2013 13:10:16 GMT
Accept-Ranges: bytes
Content-Length: 3981543
Content-Type: image/jpeg
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 503cea42ed9a7772da1c02fab90e2c83
172a3bf1736ed6555b4b8c0dc28818231dde1904
fe6ad09b3dc9878e44ebf78f11a96a4353c8052a1acef2c2423ae887d32d5011
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 01 Feb 2023 17:09:18 GMT
server: ESF
cache-control: private
content-length: 30830
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 01 Feb 2023 17:09:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id?slf_rd=1
200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP
Hash 75a432558ea669ed43e46f03f704cd32
d176eb1d775f077f545ef89f1b25c669a8f862e8
e3d41cd740b44b7e0cae51a96da542ded1afed9650c221970c1347d789c876c3
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Wed, 01 Feb 2023 17:09:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
301 Moved Permanently 0 B URL HTTP/1.1 breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg HTTP/1.1
Host: breezethruobx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Wed, 01 Feb 2023 17:09:18 GMT
Location: https://breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
Connection: Keep-Alive
Content-Length: 0
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 01 Feb 2023 17:09:19 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJU70zauK0pkq1DB8PXY14B5VNgYmW1ij16jmK8V=s68-c-k-c0x00ffffff-no-rj
200 OK 5.3 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJU70zauK0pkq1DB8PXY14B5VNgYmW1ij16jmK8V=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 9143993679dac0f8741f5a549ef429be
9e87c8dcb857d1581b9f5d8854164c49ea6ea6f9
2ba316874c2a76c7264120d0faf056610ad1f794a03981640775e00c8176b947
GET /ytc/AL5GRJU70zauK0pkq1DB8PXY14B5VNgYmW1ij16jmK8V=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v57"
expires: Thu, 02 Feb 2023 17:09:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 17:09:19 GMT
server: fife
content-length: 5274
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7ffbc0e35f1cc8135ae0df1d2e1c8236
93989c49a702f0531eb0a15ae30b2713a93769f1
671ebbfbbd9ae2efa92bf7895d9cdbd966844efc822f4112c14a8c43f94850fc
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1247
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 01 Feb 2023 17:09:19 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 737fb1a7e54ea78dd56b4ac44a2c1de8
4fc7537db04c8cedc6a98ea38cfcaa6ba5c8a3a7
596cb4e532b0f523b844981b7e60fba87eb3a904b0a40dfdc3802a02650f790e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
404 Not Found 375 B URL HTTP/2 breezethruobx.com/media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (375), with no line terminators
Hash bd83349a95bbc4febe8a4ee3d1112ac3
938f2229662b72c4da2779e92a4119c8c36a55e1
97a22ad2f5f3b397f28cba81b20606dbbb7aa94da37767509b18ebf1fda30566
GET /media/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/w/a/warsteiner-logo.jpg HTTP/1.1
Host: breezethruobx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: Apache/2.4.6 (CentOS) PHP/7.4.33
vary: Host
content-type: text/html; charset=UTF-8
date: Wed, 01 Feb 2023 17:09:19 GMT
x-content-type-options: nosniff
x-powered-by: PHP/7.4.33
content-length: 375
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 0cf6c2eb568ad51e97672ba077876948
3a555037e64b9c09781d750a4126e7b731666a02
5651d679f3355300dfd0521428621fe073dc7fca94217b45dd303e96f2530960
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2
Cache-Control: max-age=159698
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:19 GMT
Etag: "63da698f-117"
Expires: Fri, 03 Feb 2023 13:30:57 GMT
Last-Modified: Wed, 01 Feb 2023 13:30:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 280 B IP
Hash 2f905cbfd53a47a33caa0a1a9511d5e7
8a591ad0de39015d062b965a56cb5579b3adb675
181c7b7ef39168f2d01dfc4c3dd714cd92032a1f1276fe9ddd57d95acc5359f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=162959
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:19 GMT
Etag: "63da764e-118"
Expires: Fri, 03 Feb 2023 14:25:18 GMT
Last-Modified: Wed, 01 Feb 2023 14:25:18 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 2f905cbfd53a47a33caa0a1a9511d5e7
8a591ad0de39015d062b965a56cb5579b3adb675
181c7b7ef39168f2d01dfc4c3dd714cd92032a1f1276fe9ddd57d95acc5359f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2
Cache-Control: max-age=162959
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:09:21 GMT
Etag: "63da764e-118"
Expires: Fri, 03 Feb 2023 14:25:20 GMT
Last-Modified: Wed, 01 Feb 2023 14:25:18 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3327c7e729387e%26domain%3Dwww.rondomtveloat.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.rondomtveloat.nl%252Ff3b6677dbff7b48%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.rondomtveloat.nl%2F&layout=button_count&locale=nl_NL&sdk=joey&send=true&show_faces=false&width=450
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3327c7e729387e%26domain%3Dwww.rondomtveloat.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.rondomtveloat.nl%252Ff3b6677dbff7b48%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.rondomtveloat.nl%2F&layout=button_count&locale=nl_NL&sdk=joey&send=true&show_faces=false&width=450
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3327c7e729387e%26domain%3Dwww.rondomtveloat.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.rondomtveloat.nl%252Ff3b6677dbff7b48%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.rondomtveloat.nl%2F&layout=button_count&locale=nl_NL&sdk=joey&send=true&show_faces=false&width=450 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: HOVljE/mRSk/KFIPvgtp7mBHF2MFkUqC3zbhhSf5lOlzersEvom23C1wkO0uvgVN62ORDn4wv6FLYlmYGNtv+g==
content-length: 0
date: Wed, 01 Feb 2023 17:09:23 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.kartondesign.eu/wp-content/uploads/2018/06/papier-karton-logo.jpg
404 Not Found 0 B URL HTTP/2 www.kartondesign.eu/wp-content/uploads/2018/06/papier-karton-logo.jpg
IP
GET /wp-content/uploads/2018/06/papier-karton-logo.jpg HTTP/1.1
Host: www.kartondesign.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: pbVisitorID=session-fed75e61-3306-486a-a915-3a80162315e1; expires=Thu, 01-Feb-2024 17:09:17 GMT; Max-Age=31536000; path=/; secure; SameSite=Lax
x-xss-protection: 1
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
content-security-policy: default-src *; img-src * data:; font-src * data:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; base-uri 'self'; form-action *; frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
x-probase-server: www14
content-encoding: gzip
X-Firefox-Spdy: h2
i0.wp.com/www.purmerendleeft.nl/wp-content/uploads/2018/08/Rommelmarkt-leuke-afbeelding.jpg?resize=619%2C336&ssl=1
404 Not Found 0 B URL HTTP/2 i0.wp.com/www.purmerendleeft.nl/wp-content/uploads/2018/08/Rommelmarkt-leuke-afbeelding.jpg?resize=619%2C336&ssl=1
IP
GET /www.purmerendleeft.nl/wp-content/uploads/2018/08/Rommelmarkt-leuke-afbeelding.jpg?resize=619%2C336&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 6
X-Firefox-Spdy: h2
www.concours-solon.fr/assets/img/podium.jpg
200 OK 0 B URL HTTP/2 www.concours-solon.fr/assets/img/podium.jpg
IP
GET /assets/img/podium.jpg HTTP/1.1
Host: www.concours-solon.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: image/jpeg
date: Wed, 01 Feb 2023 17:09:17 GMT
etag: "20c25-506a53df8b9e7"
last-modified: Thu, 30 Oct 2014 15:07:42 GMT
security: Found a security issue? security@immonot.com
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
www.youtube.com/embed/P2m6hSRf-Ws
200 OK 0 B URL HTTP/2 www.youtube.com/embed/P2m6hSRf-Ws
IP
GET /embed/P2m6hSRf-Ws HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 01 Feb 2023 17:09:17 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=jVE3vkuiT8E; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=iHQO-iwWb7g; Domain=.youtube.com; Expires=Mon, 31-Jul-2023 17:09:17 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRJek5UWTVNRFUxT0RBMk5EVXpOQT09EL256p4GGL256p4G; Domain=.youtube.com; Expires=Mon, 31-Jul-2023 17:09:17 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+857; expires=Fri, 31-Jan-2025 17:09:17 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.destintravel.nl/images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg
404 Not Found 0 B URL HTTP/2 www.destintravel.nl/images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg
IP
ASN #209242 Cloudflare London, LLC
GET /images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg HTTP/1.1
Host: www.destintravel.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rondomtveloat.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 01 Feb 2023 17:09:21 GMT
content-type: text/html;charset=utf-8
cf-ray: 792c4b4eac840b49-OSL
cache-control: s-maxage=5,max-age=5
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: false
content-security-policy: upgrade-insecure-requests
x-hs-https-only: worker
x-hs-prerendered: Mon, 09 Jan 2023 21:45:12 GMT
x-hs-reason: No view mapper found to handle request
x-hubspot-correlation-id: 96ed58dd-72b4-4605-b57a-cb3afbf52ffb
x-hubspot-notfound: true
x-trace: 2B8AB396DB34931FD3677D8F9F26D0F034FA1A9E0C000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d9BRglKo4VWiVp%2BA8Z2Egsk%2FdttUOYn4YIvw6UUz0yPN43TMdJOim8FaZ9N2nGjuVIsio6mskMw0%2FUjre2k7ABUIZe94bjMtvGw11EjS0DEzq55xnUSn%2Bs68etx%2BfERzvOYtdTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=CrgLihJz.gGr8HsZm8Pyv7Bj8ROQMYA3sPtXRpOfjvc-1675271361-0-Af+i04cBrySvq/Gj9n9Gv0cQiPS21NUg9jugPT4Ez5s/7O1Izydp0M6jIipuhAisFNIyQQcih5IU5HG0drj7OdQ=; path=/; expires=Wed, 01-Feb-23 17:39:21 GMT; domain=.www.destintravel.nl; HttpOnly; Secure; SameSite=None
__cfruid=3a6444461c8571abf77beb8a08d3d8eb6e2b8e32-1675271361; path=/; domain=.www.destintravel.nl; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stellingwerf.nl/wolvega/Stop-Corona-straattekening-met-een-boodschap-in-Wolvega-26564732.html
200 OK 0 B URL HTTP/2 stellingwerf.nl/wolvega/Stop-Corona-straattekening-met-een-boodschap-in-Wolvega-26564732.html
IP
GET /wolvega/Stop-Corona-straattekening-met-een-boodschap-in-Wolvega-26564732.html HTTP/1.1
Host: stellingwerf.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:09:17 GMT
content-type: text/html; charset=utf-8
x-cache-status: MISS
cache-control: public, max-age=120
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,access-control-allow-headers
access-control-max-age: 1728000
cf-cache-status: MISS
server: cloudflare
cf-ray: 792c4b3a7c9cb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
haarlemmermeergemeente.nl/sites/default/files/nieuws/2020-03-12_corona_foto.jpg
404 Not Found 0 B URL HTTP/2 haarlemmermeergemeente.nl/sites/default/files/nieuws/2020-03-12_corona_foto.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /sites/default/files/nieuws/2020-03-12_corona_foto.jpg HTTP/1.1
Host: haarlemmermeergemeente.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 01 Feb 2023 17:09:18 GMT
content-type: text/html; charset=utf-8
set-cookie: oo-session=1675271358.138.12333.476586|01f522dde6514e4b09daeb4c338773f3; Path=/; Secure; HttpOnly
content-security-policy: frame-ancestors 'none';
x-nextjs-cache: STALE
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
etag: "c9cb6rtim4442u"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31622400; includeSubDomains
X-Firefox-Spdy: h2
www.friendshipcruises.nl/images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg
301 Moved Permanently 0 B URL HTTP/2 www.friendshipcruises.nl/images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg
IP
ASN #209242 Cloudflare London, LLC
GET /images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg HTTP/1.1
Host: www.friendshipcruises.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 01 Feb 2023 17:09:19 GMT
location: https://www.destintravel.nl/images/content/cruises/2427/image_keulse_dom_kerst-shutterstock_433225699_normal.jpg
cf-ray: 792c4b3efb22fac4-OSL
cache-control: no-transform, max-age=120
expires: Wed, 01 Feb 2023 17:11:19 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: false
x-hs-https-only: worker
x-hubspot-correlation-id: 71c1567a-4c3e-47f9-bc22-e6091560721e
x-trace: 2B810889696D18A78D661E6C173E4486E1B85C904A000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d73dm6mB6I5R7DeG3Djcvwx%2BaZt6U1xRnKi1WX%2FoT3A7tZppxgRj5ItGjSTixVcRYp1ZoaCeznqfL%2BX0FbEXuQMfO1a%2F%2BmZak7raPSiM8YVtRtttOlICCN%2BnHdiEg5ODpMXgwU96wPyCSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=TtcSgNFmaivVWNbgbLbvtTAjcrR1EZJguu6jTsW54x4-1675271359-0-Aaj6NLtAiEHS5MnDIScxvecynyST1R5PWDvSG+XXUZKK4y7F+1FJkAYmpIuACAoTsEi53J7TFTxSbTcZ1E3niTQ=; path=/; expires=Wed, 01-Feb-23 17:39:19 GMT; domain=.www.friendshipcruises.nl; HttpOnly; Secure; SameSite=None
__cfruid=6cefe1a1469f1a3ed2845978b97c452432c018a4-1675271359; path=/; domain=.www.friendshipcruises.nl; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bing.com/images/search?view=detailV2&insightstoken=bcid_RFCk632ohqkCY3psLlj9ihuhfuzg.....6Q*ccid_UKTrfaiG&form=ANCMS1&iss=SBIUPLOADGET&selectedindex=0&id=2000826648&ccid=UKTrfaiG&exph=374&expw=600&vt=2&sim=11
200 OK 0 B URL HTTP/2 www.bing.com/images/search?view=detailV2&insightstoken=bcid_RFCk632ohqkCY3psLlj9ihuhfuzg.....6Q*ccid_UKTrfaiG&form=ANCMS1&iss=SBIUPLOADGET&selectedindex=0&id=2000826648&ccid=UKTrfaiG&exph=374&expw=600&vt=2&sim=11
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /images/search?view=detailV2&insightstoken=bcid_RFCk632ohqkCY3psLlj9ihuhfuzg.....6Q*ccid_UKTrfaiG&form=ANCMS1&iss=SBIUPLOADGET&selectedindex=0&id=2000826648&ccid=UKTrfaiG&exph=374&expw=600&vt=2&sim=11 HTTP/1.1
Host: www.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rondomtveloat.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 152459
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: SUID=M; domain=.bing.com; expires=Thu, 02-Feb-2023 05:09:21 GMT; path=/; secure; HttpOnly; SameSite=None
MUID=144803077D8162FB126011AC7CD663FE; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
MUIDB=144803077D8162FB126011AC7CD663FE; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; HttpOnly
_EDGE_S=F=1&SID=27C7B1D812F869CA346DA37313AF684D; domain=.bing.com; path=/; HttpOnly
_EDGE_V=1; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; HttpOnly
SRCHD=AF=ANCMS1; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
SRCHUID=V=2&GUID=F3E7AFA17CAF49DE9816C12510494DE1&dmnchg=1; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
SRCHUSR=DOB=20230201; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
_SS=SID=27C7B1D812F869CA346DA37313AF684D; domain=.bing.com; path=/; secure; SameSite=None
MMCASM=ID=D552E857EA3A4099AB4378EDC4503308; domain=.bing.com; expires=Mon, 26-Feb-2024 17:09:21 GMT; path=/; secure; SameSite=None
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 45D89D55D7904A20A24800D4B718AB03 Ref B: OSL30EDGE0415 Ref C: 2023-02-01T17:09:21Z
date: Wed, 01 Feb 2023 17:09:20 GMT
X-Firefox-Spdy: h2
188.114.97.1
151.101.65.16
23.36.76.226
37.97.133.166
104.18.5.227
93.184.220.29
51.255.55.220
172.104.224.118
13.237.154.226
52.48.78.3
83.217.85.149
157.240.205.11
46.30.215.236
31.13.72.36