Report - www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

Report Overview

Submitted URL
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2023-03-31 07:43:19
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	2.1 kB	22 kB	142.250.74.142
www.jouwweb.nl	198344	2012-09-30T02:09:37Z	2023-04-01T08:28:00Z	386 B	1.2 kB	34.90.225.198
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
primary.jwwb.nl	unknown	2023-01-12T13:26:21Z	2023-03-31T23:31:03Z	2.0 kB	371 kB	151.101.193.91
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	127 B	34.215.11.44
assets.jwwb.nl	unknown	2022-06-17T16:52:38Z	2023-03-31T23:31:03Z	6.4 kB	234 kB	151.101.129.91
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	61 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.4 kB	8.9 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
gfonts.jwwb.nl	unknown	2022-11-01T10:44:25Z	2023-03-31T23:31:03Z	1.5 kB	35 kB	151.101.193.91
plausible.io	48197	2019-02-01T09:53:03Z	2023-04-01T07:42:24Z	840 B	1.4 kB	194.242.11.186
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	686 B	1.4 kB	142.250.74.131
www.fritsheirmantransport.be	unknown	2017-02-09T08:41:04Z	2023-03-31T10:35:29Z	1.6 kB	1.4 kB	35.204.150.5

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email	Phishing
2023-03-31	medium	www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email	Phishing
2023-03-31	medium	www.fritsheirmantransport.be/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.fritsheirmantransport.be/	3.1 kB	2023-03-10	2023-12-30
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:01:28 Last Seen2023-12-30 06:36:32 Times Seen45 Hash 26ac787b45796f4d3cd98616d40601bd 8313b53dd01b2c739ab168323771ef88c2d8f9a6 662c65a6481de5498e9286c3400b2f857b891d524aa83b4ec5fbaad6512dedc0 Loading...

	www.fritsheirmantransport.be/	1.1 kB	2023-04-01	2023-04-01
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:51:39 Last Seen2023-04-01 10:51:39 Times Seen1 Hash 28928348c6b5c6c1d391e7bc41868843 477300162faee586d482c8da306ff2ff22179cf3 dc1aca470c98c94ed921c13acfa50b8f53e8ea041d3c8255a2e74d5382854d5b Loading...

	www.fritsheirmantransport.be/	199 B	2023-03-29	2023-04-21
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-21 14:16:24 Times Seen17 Hash f894a22325c904d3fd2a2ed4b4cb9dd1 4c9694540c25b485a7be190cf9517d34af3bcdf6 486f05e1a51a6025eabf926f6bd1b18a9ee0f70936945674054785fda6f2541e Loading...

	assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7	6.2 kB	2023-03-29	2023-04-07
Pretty URL assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7 IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-07 02:22:38 Times Seen12 Hash 989228d90a298ceee8e7a05b16749227 5820b751744f67645f978286a4fb59482e5e2745 fe89ee3a9fca628e823241da553a2c3a1febf9d7c421ce8e5bd0ebaf5eeb78e7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.fritsheirmantransport.be/	4.0 kB	2023-04-01	2023-04-01
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:49:48 Last Seen2023-04-01 10:51:39 Times Seen2 Hash 79ebc4fa09604018672355da5dafcdb7 9c72436790fad82398187e5eb597fa89fe658be6 cf4d8052b34358cc95d0425431cf09d512e52f067ecde630a94b95e48ec6f965 Loading...

	assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea	33 kB	2023-03-29	2023-04-21
Pretty URL assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-21 14:16:24 Times Seen23 Hash 5d72c5fd2260c5328fea9c0404d1e36e c4ec6f6b2449a12f737dccccd49cb0fea245f27e c43884bcfc6554eebb9917b3830a6ebef38f6e1dfe9de814dc2c28be3ed917ef Loading...

	www.fritsheirmantransport.be/	419 B	2023-03-08	2024-05-05
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:51:16 Last Seen2024-05-05 06:38:53 Times Seen36 Hash d7b566c8779a1b746169ee715db70ea8 430b103314e0115863e3275494da6d527c7cc41e b588b82fef3dd5f86fba924dbd83699f26f3fe5ce16f4f3bacbe7d0c57854edb Loading...

	unknown	0 B	2023-03-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 22:55:54 Times Seen37420356 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.jouwweb.nl/v2/unsafe-token/2829439	106 B	2023-04-01	2023-04-01
Pretty URL www.jouwweb.nl/v2/unsafe-token/2829439 IP 34.90.225.198 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:51:39 Last Seen2023-04-01 10:51:39 Times Seen1 Hash ee934da9989d76e16edceea437fafa6b 19f4430b459322f0faac120f965f81063907244f b7cb2197fb7160f756f48f972e81134443e3584156bac16a339c585fca3be4f9 Loading...

	assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js	21 kB	2023-03-12	2023-08-07
Pretty URL assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:54:41 Last Seen2023-08-07 04:23:37 Times Seen137 Hash 2f00ef63f493540ebc32c0267812aaf3 95a915152603ee779ee19de8d0ecfb84f43c4f31 1b6f8375518ed13731e4eb8dff2584e4b38cfc1f6b45c246879ca5c48a8a46bd Loading...

	www.fritsheirmantransport.be/	162 B	2023-03-10	2023-04-21
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:32:02 Last Seen2023-04-21 14:16:24 Times Seen17 Hash 6afbeabaef93f081a5a28a5771a0bfcc bb95dddb4240ea91000db0dfd6c76c113bc80a4a 0ad424297db69fde46b5d2cece5483c2318a5bd6707c0dfe6191b9f1743e0097 Loading...

	plausible.io/js/script.manual.js	981 B	2023-03-14	2023-05-21
Pretty URL plausible.io/js/script.manual.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 18:43:11 Last Seen2023-05-21 02:28:30 Times Seen62 Hash 157030cb0455324177e5c42beeed018a 04f98155161c9079000405f9ba429a3123b23f7a f5833e2be2e45f13d4d4f02701ea27ae2aaa0e87cad50d4f74987a8802d5f097 Loading...

	assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js	39 kB	2023-03-14	2023-08-02
Pretty URL assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js IP 151.101.129.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 12:13:07 Last Seen2023-08-02 12:41:08 Times Seen30 Hash 8f31e14bdebacf5b2fdeccead8f1061f 65bdae915593a662cd7bff2e21456e4d871be8a8 cc4053075eeb2205f1d90ef9f449a45976d18964db628be8052de08e3fd65d31 Loading...

	www.fritsheirmantransport.be/	119 B	2023-03-26	2023-04-05
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:18:24 Last Seen2023-04-05 01:34:25 Times Seen15 Hash 514ea6249074b0f7df3c1f4fd637bcd6 bd84f7b933620fd4a91e47f86a288ef04f6386a4 db884af69a8d62ca8914076a04a1af6dc0f5c337e0ef53abf6cb097011c2515c Loading...

HTTP Transactions (53)

URL IP Response Size

www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

35.204.150.5

301 Moved Permanently

0 B

URL HTTP/1.1
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
connection: close

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11730
Expires: Fri, 31 Mar 2023 10:58:38 GMT
Date: Fri, 31 Mar 2023 07:43:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3173
Expires: Fri, 31 Mar 2023 08:36:01 GMT
Date: Fri, 31 Mar 2023 07:43:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 07:28:22 GMT
content-type: application/json
age: 886
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10079
Expires: Fri, 31 Mar 2023 10:31:07 GMT
Date: Fri, 31 Mar 2023 07:43:08 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 3gw5KPmCH0JAIdDBNi9TWv1DrNkGnEjxZDJEAd2RaSeS/4H5XX7nLaq3chW7n+nuvA8VXIPXkD4=
x-amz-request-id: 9WYDP7ZB0DPMRCHB
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 07:03:15 GMT
age: 2393
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 07:43:08 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
07b903b699b9a76aaf7f7049dfe60196
e731b226b45e89f3b5ab07f03c5d94188e8553a8
3a13a2bfc503cf053b2557ada168e40520da43c359c7ad43ad81a978b3502a3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A13A2BFC503CF053B2557ADA168E40520DA43C359C7AD43AD81A978B3502A3E"
Last-Modified: Thu, 30 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21585
Expires: Fri, 31 Mar 2023 13:42:53 GMT
Date: Fri, 31 Mar 2023 07:43:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Backoff, Cache-Control, Last-Modified, Content-Length, Retry-After, Pragma, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 07:14:39 GMT
age: 1709
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5fa9f3dc4075744c3d5ba3d90ef0787a
a5581fbeb621252bfcc4c4680adb8f5bffdd8adf
8996848b068e34d9fc597b0df2a90272d0bd7371692eb08fae0f756cbfe5a052

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8996848B068E34D9FC597B0DF2A90272D0BD7371692EB08FAE0F756CBFE5A052"
Last-Modified: Tue, 28 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11996
Expires: Fri, 31 Mar 2023 11:03:05 GMT
Date: Fri, 31 Mar 2023 07:43:09 GMT
Connection: keep-alive

gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic

151.101.193.91

200 OK

601 B

URL HTTP/2
gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
ASCII text
Size
601 B (601 bytes)
Hash
2d5795d09aba8e19ecc20a3441c729e1
06cd35a249fb78fec3fe205328f103cb3acb419f
fc49c5ec5c03ab19af0e99c5ccc69d5ad0c3f27044a5206e424c54e5c2fc0dde

HTTP Headers

GET /css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 115558
vary: Accept-Encoding
content-length: 601
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc

151.101.129.91

200 OK

20 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (59107)
Size
20 kB (19982 bytes)
Hash
750a8cacb2221805f00005717eeea089
d9c49f3fa5f62878b5fbc7418a6d0de55dc8f3e6
ee80b6146d170c274629e01b280d87e226f33bddef94018dc55c5daf7b9e4f0e

HTTP Headers

GET /assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 13:29:48 GMT
etag: "750a8cacb2221805f00005717eeea089"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 65540
vary: Accept-Encoding
content-length: 19982
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea

151.101.129.91

200 OK

7.3 kB

URL HTTP/2
assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (31289)
Size
7.3 kB (7278 bytes)
Hash
84282451757320000424fbc0cee4e050
41fb6b0f15d404d94ab60fbc51fb47832b3d7ce7
f02a404f648dc9368f905fed95d2e26b3afd1c2e94702076586b934e599cca1f

HTTP Headers

GET /assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:52:34 GMT
etag: "84282451757320000424fbc0cee4e050"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 1415046
vary: Accept-Encoding
content-length: 7278
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885

151.101.193.91

200 OK

13 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size
13 kB (13388 bytes)
Hash
9f358998ba9114a78d69b3a7a98c9f44
ec75b2f7cada428cf9f01939380cb89d95c117fd
8922580307efbd08576940f0111f7a06777e9de6f567201b38a8c782568be396

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 14:31:25 GMT
etag: "69fce371b656aeedb77a8c205d3acb3e"
content-type: text/css
server: UploadServer
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 665620
vary: Accept-Encoding
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 13388
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7

151.101.129.91

200 OK

2.9 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6096)
Size
2.9 kB (2866 bytes)
Hash
3217db8c198da60c7b8801a91607725a
5db207b2c84959e5616b9238015c39e88b056ad0
6936c39d309c81e1921ab2b2985a83cb438c989d7d9319b8c75facc9090343ab

HTTP Headers

GET /assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 14:01:18 GMT
etag: "3217db8c198da60c7b8801a91607725a"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 668370
vary: Accept-Encoding
content-length: 2866
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9

151.101.129.91

200 OK

11 kB

URL HTTP/2
assets.jwwb.nl/assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 10756, version 1.0\012- data
Size
11 kB (10756 bytes)
Hash
8491e4ff84bdcb0358c9e47841089e8c
1350d58ae33ae8a2297917eb9d4b74ff9c23c8a4
3b3753f0e60df50ca1108c7e3ec16a03334092fbb1068eef671c0c6482e3220d

HTTP Headers

GET /assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 19 May 2022 08:52:19 GMT
etag: "8491e4ff84bdcb0358c9e47841089e8c"
content-type: application/octet-stream
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 2092311
content-length: 10756
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3247
Expires: Fri, 31 Mar 2023 08:37:16 GMT
Date: Fri, 31 Mar 2023 07:43:09 GMT
Connection: keep-alive

assets.jwwb.nl/assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1

151.101.129.91

200 OK

101 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (55894), with LF, NEL line terminators
Size
101 kB (101325 bytes)
Hash
0609b28d5d3949147cf0242425f591e9
367c22394cbe9b574c49f0ff52296eaca9f93f57
c068baea2e13a7984dc25da3d01fca32d24122a8acaeea705e2c808f9d2f5104

HTTP Headers

GET /assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 15 Mar 2023 13:08:26 GMT
etag: "0609b28d5d3949147cf0242425f591e9"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 1362829
vary: Accept-Encoding
content-length: 101325
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0

151.101.129.91

200 OK

36 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65415)
Size
36 kB (35979 bytes)
Hash
e980218ec00ae034e1adf38765ce2050
db6b662302dcfe8d86042f92aa5a6a9d81db4308
23d68b7665f4e70f27dbb1fa5c9da163334979d1d5ed8a2615c7d42ba2a44682

HTTP Headers

GET /assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 17:14:56 GMT
etag: "e980218ec00ae034e1adf38765ce2050"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 52034
vary: Accept-Encoding
content-length: 35979
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc94336886a22a083f520c3a5af766c3
871e9fd233b8c7b001442adceda65fb1d2a0d163
dbfa3639b0df15752a471ecb04c087e56e9b8224d0ddc986ddd3b4eaa564f847

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBFA3639B0DF15752A471ECB04C087E56E9B8224D0DDC986DDD3B4EAA564F847"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8064
Expires: Fri, 31 Mar 2023 09:57:33 GMT
Date: Fri, 31 Mar 2023 07:43:09 GMT
Connection: keep-alive

gfonts.jwwb.nl/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2

151.101.193.91

200 OK

14 kB

URL HTTP/2
gfonts.jwwb.nl/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 13976, version 1.0\012- data
Size
14 kB (13976 bytes)
Hash
e7e52c955aa33e618baf437a16539524
13ecb55bb760d6980a1b1331085630ef5ed84e9f
07c94892c3e0ac93d2bcb3a9cb88aa67ea47b3d1aa89bc39dfcc2b025dcd8988

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Tue, 26 Apr 2022 15:50:23 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 1861671
content-length: 13976
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2

151.101.193.91

200 OK

18 kB

URL HTTP/2
gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 18168, version 1.0\012- data
Size
18 kB (18168 bytes)
Hash
81d8f4a725af0b4f9b269315a711ca9a
e78b07fc2326248b245dae27757d844d800c700f
373a0ae4f0e8c76c27466ad213c8743e62bc971acd8bb33588855cc8c18acc26

HTTP Headers

GET /s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Mon, 11 Jul 2022 21:23:16 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 3914476
content-length: 18168
X-Firefox-Spdy: h2

plausible.io/api/event

194.242.11.186

202 Accepted

2 B

URL HTTP/2
plausible.io/api/event
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 118
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Fri, 31 Mar 2023 07:43:09 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: BunnyCDN-NO1-830
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: must-revalidate, max-age=0, private
application: 10.0.1.5
permissions-policy: interest-cohort=()
x-request-id: F1FxMJH9Zel47AgreKwC
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 202
cdn-cachedat: 03/31/2023 07:43:09
cdn-edgestorageid: 830
cdn-requestid: 9f8216ab43ac4b0f45278cae10f291b4
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css

151.101.129.91

200 OK

2.9 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15075)
Size
2.9 kB (2928 bytes)
Hash
21ef5024329aebca83d99e5d8e4c1dc1
7e43192d9f00e2681772b868f6f64d8271946219
1f805ba4a9ba5617d252520b4a031f9bdce89fce9c82ed3e7bca25195fb53a96

HTTP Headers

GET /assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 14:59:16 GMT
etag: "21ef5024329aebca83d99e5d8e4c1dc1"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 5503332
vary: Accept-Encoding
content-length: 2928
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js

151.101.129.91

200 OK

16 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (38633)
Size
16 kB (15884 bytes)
Hash
167695b780a13fb0bd1b41274249dcab
a383080973526f4e9451137a6cdfe62355e54f2f
23462f6e7cbd3fc48a054dda0e666c48b92988cbb076ad9c6fdeba6c7f40f7a6

HTTP Headers

GET /assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Dec 2022 13:15:28 GMT
etag: "167695b780a13fb0bd1b41274249dcab"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 1497006
vary: Accept-Encoding
content-length: 15884
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/cookieconsent.32e7c3015cea5e0122b2.css

151.101.129.91

200 OK

1.7 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/cookieconsent.32e7c3015cea5e0122b2.css
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7634), with no line terminators
Size
1.7 kB (1713 bytes)
Hash
7a79dba388a152cca49c115f90d45807
5d59e096771d99a3af446402f8da9106ea69dd0c
9984b983c4431d10414b0d3df97b6d3fcc1fcd44fd4b689e44276f4db60cf02a

HTTP Headers

GET /assets/website-rendering/cookieconsent.32e7c3015cea5e0122b2.css HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
last-modified: Fri, 17 Jun 2022 09:58:19 GMT
etag: "7a79dba388a152cca49c115f90d45807"
content-type: text/css
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 5648511
vary: Accept-Encoding
content-length: 1713
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js

151.101.129.91

200 OK

7.0 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (20868)
Size
7.0 kB (6964 bytes)
Hash
b0b6ccb0944039d492dd4a9b4a12983b
79ae9d54aed2f251f33b15712b2e23c637cb628d
24752abac2a8bfc9166cf0f6bf03c4ff204fd6996474a64c597f09ba453b6736

HTTP Headers

GET /assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 10:40:15 GMT
etag: "b0b6ccb0944039d492dd4a9b4a12983b"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 6724137
vary: Accept-Encoding
content-length: 6964
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8

151.101.129.91

200 OK

3.2 kB

URL HTTP/2
assets.jwwb.nl/assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3234 bytes)
Hash
532fe2902564480b64d881ff908e700d
ef25788e5d7eda04bb1df729d73e16d8227361c8
1cf65375bf5eb2144182098b7d31180477e8099b93a589633bc80ff5315f1ec0

HTTP Headers

GET /assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 01 Dec 2021 16:00:41 GMT
etag: "532fe2902564480b64d881ff908e700d"
content-type: image/png
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 6724137
content-length: 3234
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3

151.101.129.91

200 OK

3.2 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
PNG image data, 96 x 160, 8-bit colormap, non-interlaced\012- data
Size
3.2 kB (3223 bytes)
Hash
e95aace1dffd7b8683b30639b59614e2
34ccbdde6325c703ac48591c20b233ce6f9acf10
b94efaf1044e2ba8fc2fb41f5ab2022410086fe50b729b8c95321573b88e8a78

HTTP Headers

GET /assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
last-modified: Tue, 28 Jul 2020 10:03:58 GMT
etag: "e95aace1dffd7b8683b30639b59614e2"
content-type: image/png
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 2093428
content-length: 3223
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.215.11.44

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.11.44:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6lD38OkSpulWxxpbnDbrbQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Zskxub+NdQ/Ab9ugmp1ITdyf3BI=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 07:43:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.142

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 06:05:11 GMT
expires: Fri, 31 Mar 2023 08:05:11 GMT
cache-control: public, max-age=7200
age: 5878
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

155 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
155 kB (155214 bytes)
Hash
8641ef146c923186e7353c43867f0f3c
569656fd8737cce13cf3a490baea7c02ed9b92f6
8dd7c597b468c0b40ab9fec4c7d916d6cdb6c123c0e3923395b316c845d438bc

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "5PZWo2p3srklvrv70g3QkinQ32ICG8JqN5b5euk/GVs"
fastly-io-info: ifsz=681160 idim=1920x1440 ifmt=jpeg ofsz=155214 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 433695
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 155214
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

116 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
116 kB (115716 bytes)
Hash
e2f151470d01c50beed2dfe3fcef7c56
9946faeffb74d9711eb0a2426118a680599be993
9511b5afed2eb9ad5b74493eeae6f3081319bfffe2e63af3dfa8318b04f8bef7

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "Rq0MkPqH7foUHj5sw/ANbgxohiru5fmWRq9KQVJFTQs"
fastly-io-info: ifsz=556466 idim=1920x1440 ifmt=jpeg ofsz=115716 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 681597
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 115716
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 07:43:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAAABAAAAACAAI~&jid=852373366&gjid=1287830946&cid=2017917695.1680248589&tid=UA-8406245-4&_gid=727549048.1680248589&_r=1&_slc=1&cd1=adfree&cd2=permission&cd3=pro&cd4=visitable&cd7=nl&cd5=2829439&z=834089983

142.250.74.142

200 OK

3 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAAABAAAAACAAI~&jid=852373366&gjid=1287830946&cid=2017917695.1680248589&tid=UA-8406245-4&_gid=727549048.1680248589&_r=1&_slc=1&cd1=adfree&cd2=permission&cd3=pro&cd4=visitable&cd7=nl&cd5=2829439&z=834089983
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26

HTTP Headers

POST /j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAAABAAAAACAAI~&jid=852373366&gjid=1287830946&cid=2017917695.1680248589&tid=UA-8406245-4&_gid=727549048.1680248589&_r=1&_slc=1&cd1=adfree&cd2=permission&cd3=pro&cd4=visitable&cd7=nl&cd5=2829439&z=834089983 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.fritsheirmantransport.be
date: Fri, 31 Mar 2023 07:43:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAAABAAAAACAAI~&jid=1207652914&gjid=467158774&cid=2017917695.1680248589&tid=UA-8406245-33&_gid=727549048.1680248589&_r=1&_slc=1&cd1=2829439&cd3=nl&z=1017462297

142.250.74.142

200 OK

3 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAAABAAAAACAAI~&jid=1207652914&gjid=467158774&cid=2017917695.1680248589&tid=UA-8406245-33&_gid=727549048.1680248589&_r=1&_slc=1&cd1=2829439&cd3=nl&z=1017462297
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26

HTTP Headers

POST /j/collect?v=1&_v=j99&aip=1&a=1000109732&t=pageview&_s=1&dl=https%3A%2F%2Fwww.fritsheirmantransport.be%2F&dp=%2F&ul=en-us&de=UTF-8&dt=Transport%20Frits%20Heirman%20BV&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEDAAAABAAAAACAAI~&jid=1207652914&gjid=467158774&cid=2017917695.1680248589&tid=UA-8406245-33&_gid=727549048.1680248589&_r=1&_slc=1&cd1=2829439&cd3=nl&z=1017462297 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.fritsheirmantransport.be
date: Fri, 31 Mar 2023 07:43:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/667.24a5c65f1f36b6672ae5.js

151.101.129.91

200 OK

15 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/667.24a5c65f1f36b6672ae5.js
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (41455)
Size
15 kB (15310 bytes)
Hash
4b9efef2f4b44bbccacb3b45e7a6a578
01a27d294351022fbeb07c7c2838c0139bb074a2
76c05395b4e4d23132113f42ba3d76e1afddb7228a8fef54eb2a6ac736f14ac7

HTTP Headers

GET /assets/website-rendering/667.24a5c65f1f36b6672ae5.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 10:21:31 GMT
etag: "4b9efef2f4b44bbccacb3b45e7a6a578"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 1496685
vary: Accept-Encoding
content-length: 15310
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/photoswipe.4554209f4935f8f690bb.js

151.101.129.91

200 OK

112 B

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/photoswipe.4554209f4935f8f690bb.js
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
ec0667e442882f141abf0bf766f4101c
296fd71e9b0e68b53f384e8e7fb53021dd14e7b4
79fe6be2cad5b38102ac93c66c6fbcdc1e507c140f0f37db08daa726a71ca2aa

HTTP Headers

GET /assets/website-rendering/photoswipe.4554209f4935f8f690bb.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 10:21:31 GMT
etag: "ec0667e442882f141abf0bf766f4101c"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:09 GMT
age: 3912126
vary: Accept-Encoding
content-length: 112
X-Firefox-Spdy: h2

www.jouwweb.nl/v2/unsafe-token/2829439

34.90.225.198

200 OK

625 B

URL HTTP/2
www.jouwweb.nl/v2/unsafe-token/2829439
IP
34.90.225.198:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
data
Size
625 B (625 bytes)
Hash
3f21e0e9df68902b96b07cce01c89102
770ff33a76c64176c886e1859b85601e11818a67
484bec3adb84dddfb3ab74496cae619adb80a2e4e3b00d56410c7eb8f5f07385

HTTP Headers

GET /v2/unsafe-token/2829439 HTTP/1.1
Host: www.jouwweb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 07:43:09 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: JWSESSION=ed7g0j42a4tcbp2qlku1b4fbk3iodvt7; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
x-robots-tag: noindex
content-security-policy: frame-ancestors 'self';
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17877
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 07:43:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17877
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 07:43:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17877
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 07:43:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8358 bytes)
Hash
45a4bac8a91b725def9099fd6f720285
134ace682a567c7e385817c8f8af0d49acfde847
3d60e54132cbbba19ce8ad4bdf79a4b3b6ae74573f45bf4f080a283aa250b53c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8358
x-amzn-requestid: 8069495f-4ea5-4975-8369-fc4db9199774
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllH2fIAMFdlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-2e5418a132076d0569e30de6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: z4Jd4oIn19s5lhDNYlrrh6RlxDz7mxCg1KJKUyFfJfqZsymvADn88g==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:31 GMT
age: 35739
etag: "134ace682a567c7e385817c8f8af0d49acfde847"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6380 bytes)
Hash
8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 35747
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8745 bytes)
Hash
ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YJQbVC3HpHtLrNiTzsUmCOMIWgRik2lIhvpAz0DfmUNSznCXw6ipYw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:47:32 GMT
age: 3338
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10706 bytes)
Hash
e55c2ccec92fa37b631f5616ba5e1b77
c3f1113bad672968f22e63693ef4481f7f5616fe
10bfe1a2cf0b6e0a2a548935a1afc061fc61990a121a84580f3969df68b7974c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pcFiVnrSVAh6gQ3VuQDE32650Yoj5bcTJrishSOFVpR3DHh4lUvdag==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:05:16 GMT
age: 34674
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9471 bytes)
Hash
809c8ac4f4ec3c118e43e401ff7f1570
5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29
5c8e37e45cabe2b53d654fb01f869846c282f53b36a8fdb3521992aedc96cf70

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9471
x-amzn-requestid: 3882bb5f-32d0-451d-aeb2-ff6474747a14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVE_Gx_oAMFmsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6426021f-486afb1d6942e493158fe68a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:51 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Xfe4nK7qR9dZMWpLgTzWWNahRgBatgegu_hUkG6hX-VHhZaCxauudg==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:27 GMT
age: 35803
etag: "5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10490 bytes)
Hash
0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: AdbJgoCBGJGvjP53lBj3_GWyuRF8O_fgNTPPEjUmFmyRxMQl2pgTzw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:29 GMT
age: 35321
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

84 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
84 kB (84358 bytes)
Hash
d50d4618b8f906d16d0c9e585d5c80a0
c156df1713ad84adfe091ff81a4acd22b9fc758e
c2bea60e09cf65dcefb9fa30a9ea9f590c4bbc126b9cb175b03811607cee9f0f

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "v1x4vDBjLYC7MFFQQ+Ci96xP4dQ56aBaEfOx37YufBg"
fastly-io-info: ifsz=455554 idim=1920x1440 ifmt=jpeg ofsz=84358 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 07:43:14 GMT
age: 2466502
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 84358
X-Firefox-Spdy: h2

www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

35.204.150.5

301 Moved Permanently

0 B

URL HTTP/2
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 31 Mar 2023 07:43:08 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
location: https://www.fritsheirmantransport.be/
content-security-policy: frame-ancestors 'self';
set-cookie: JWSESSION=e9t3tlhd9bdq4vgifloi7vm10ca2sm76; path=/; secure; HttpOnly
JwStickySession=4XVYgYc3LNlKB0YwxbHGmOoDNBadOf68; Expires=Sun, 30-Apr-2023 07:43:08 GMT; Path=/; Secure; HttpOnly
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.fritsheirmantransport.be/

35.204.150.5

200 OK

0 B

URL HTTP/2
www.fritsheirmantransport.be/
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: JWSESSION=e9t3tlhd9bdq4vgifloi7vm10ca2sm76; JwStickySession=4XVYgYc3LNlKB0YwxbHGmOoDNBadOf68
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 07:43:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
content-security-policy: frame-ancestors 'self';
set-cookie: JwStickySession=4XVYgYc3LNlKB0YwxbHGmOoDNBadOf68; Expires=Sun, 30-Apr-2023 07:43:08 GMT; Path=/; Secure; HttpOnly
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

plausible.io/js/script.manual.js

194.242.11.186

200 OK

0 B

URL HTTP/2
plausible.io/js/script.manual.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/script.manual.js HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 31 Mar 2023 07:43:09 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
cache-control: public, must-revalidate, max-age=86400
application: 10.0.1.2
cross-origin-resource-policy: cross-origin
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/30/2023 12:24:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 32eec6530c2317d6fe06d2643d45e5eb
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML