www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
153.92.219.54301 Moved Permanently 707 B URL HTTP/1.1 www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
IP 153.92.219.54:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert openphish Navy Federal Credit Union
NIDS Severity Alert suricata medium ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8 HTTP/1.1
Host: www.123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 05 Jan 2023 16:50:40 GMT
server: LiteSpeed
location: https://www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2284
Expires: Thu, 05 Jan 2023 17:28:44 GMT
Date: Thu, 05 Jan 2023 16:50:40 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2488
Expires: Thu, 05 Jan 2023 17:32:08 GMT
Date: Thu, 05 Jan 2023 16:50:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 05 Jan 2023 16:47:53 GMT
content-type: application/json
age: 167
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash da484f5e9c6805745e063b236fb81473
ae454bf4a7ae0e96935afc81ee0f89c049097b15
068d0da23acbe7f6b600c4e7dbe9c81d3ad78c8afd122255bbf3550e8a290686
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "068D0DA23ACBE7F6B600C4E7DBE9C81D3AD78C8AFD122255BBF3550E8A290686"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15727
Expires: Thu, 05 Jan 2023 21:12:47 GMT
Date: Thu, 05 Jan 2023 16:50:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Uw/FZVZF2u+yuCOJ6fpgED7J2MyHKHce/6OE9RJL4UwmhfJFcCXbiAUvY0QunBeMMkidpjgfPLgcCbdcW6yHvQ==
x-amz-request-id: 1QB3VANNSJ3GZCEN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 05 Jan 2023 16:01:47 GMT
age: 2933
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 05 Jan 2023 16:50:40 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 05 Jan 2023 16:33:38 GMT
age: 1022
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 73a99621729e1bc9e236a1085b98a0cf
5e1f71493085f6be7788f59987c1f0850b77d4d7
219d1a8d7d1a027553f72c8c024488863d8996457b31c78014002f81174f3ad1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 407
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:41 GMT
Last-Modified: Thu, 05 Jan 2023 16:43:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
153.92.219.54301 Moved Permanently 0 B URL HTTP/2 www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
IP 153.92.219.54:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Navy Federal Credit Union
NIDS Severity Alert suricata medium ET PHISHING Possible Compromised Wordpress - Generic Phishing Landing 2018-01-22
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8 HTTP/1.1
Host: www.123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/8.0.24
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
x-litespeed-cache: miss
content-length: 0
date: Thu, 05 Jan 2023 16:50:41 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9nMn/QUmsGFOnlQZ1voMDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KoSDO1w4NY/w4QhUX5i+8diI6q8=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9cd53408be326a71dab57d5877e0da92
cd2c05242b1ba0d2425941bfb7d01b51d469cf55
10b9728a63f12bcf587350d03d7b100b4f099b28d58028e9ef72cf36aa2471ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10B9728A63F12BCF587350D03D7B100B4F099B28D58028E9EF72CF36AA2471CA"
Last-Modified: Thu, 05 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 05 Jan 2023 22:50:42 GMT
Date: Thu, 05 Jan 2023 16:50:42 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2710
Expires: Thu, 05 Jan 2023 17:35:52 GMT
Date: Thu, 05 Jan 2023 16:50:42 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2710
Expires: Thu, 05 Jan 2023 17:35:52 GMT
Date: Thu, 05 Jan 2023 16:50:42 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2710
Expires: Thu, 05 Jan 2023 17:35:52 GMT
Date: Thu, 05 Jan 2023 16:50:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ce88a04d7f32ce0497bd84db44da8d4
761049019c342553004815ea394dcf282f2cc613
038aa4e5da1428524de833071814998d6c1d8b8b60d4e9c10e60d8a75f7b88fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F038e46b4-c5e2-4f46-817c-434795e1e545.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5601
x-amzn-requestid: 54813ea9-9435-4355-910b-5b4d1eadf2ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGlhgHU1oAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b282d6-17e772ae5b70371367792063;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 07:08:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pigrktUzOcu_-Z-HnUPOnmF7yhHIdOv9bB9x7VVONHr7YZXwZAEvZA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 06:44:19 GMT
age: 36383
etag: "761049019c342553004815ea394dcf282f2cc613"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cecd6a1a228ac55f193a180229d3a33
9e5fd5a101828d5491305deb539dc5836c5b3065
7bbd9e261625c2d2a700a817c2f10b779c8463baacda02f9f34161c08487ca31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa32e61e5-fcf0-4825-a1bf-ea145dd3ae6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8721
x-amzn-requestid: 1c24289e-6169-4088-a2b8-311e3640e4bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eAA7IGTdIAMFzCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afe1e0-561d5981260c41511219c673;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:16:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: qoxCvnR2nVjlCdQJ6Wyq_Ot0p1SVdhl71LEKAm0-tkPMxWHGdIl42w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 07:31:55 GMT
age: 33527
etag: "9e5fd5a101828d5491305deb539dc5836c5b3065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 008614d302ad57bc6502ad5e07652378
968bc262d2939ec6f0dce9d852682c0aaf86d3d7
5eab9a2591f0f9761ba3b90a5a191b79b6326cccb1ee6b586b00dfc1517c8db6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F343434d9-f716-41aa-8934-1a5f79402aa1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4248
x-amzn-requestid: 41ee9ad4-ddfd-42a5-b66c-167c4bda9153
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eCvUGHnlIAMFw8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b0f8e6-4ac2abc739dc4ff640301707;Sampled=0
x-amzn-remapped-date: Sun, 01 Jan 2023 03:07:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVwr9xaKtzkI-Lnp683K6kKaWfnnmPs0o6HG7PBuAc9QbcMqczguNw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 06:16:00 GMT
age: 38082
etag: "968bc262d2939ec6f0dce9d852682c0aaf86d3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 23:39:12 GMT
age: 61890
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1b2573cd90d9c94112bc677d90d8a7
52830fa620718a629970f4ca9df109ea1d979f2d
f869d532534d81fd1335a9182409f9f1dda1ec7e8dba6445bcd219aec5f5d1e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f013561-93d6-474a-8f03-299013f0ba30.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7367
x-amzn-requestid: 24c48b0b-7f01-4f67-b37e-8bc7ed792c36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eGlAJEqsIAMFeIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b28200-0813561555102cf079fd916a;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 07:04:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pV_OpUPGuj1flqeUn8cyGYgNqGEKQrNgI9wjEhSotuT-jI0QElreQw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 07:59:31 GMT
age: 31871
etag: "52830fa620718a629970f4ca9df109ea1d979f2d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7711a1490729319952a150b84e91a5d6
11fda31d48a4df3fd6346d92f45a680f500bff64
e9663e981c6716c243b58ac99549dfbe6dd8371c42d50add46457b5911f63529
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb16f641-0924-4c5c-9f83-6779c59c746a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11381
x-amzn-requestid: f30a66f8-72cb-44a6-b87d-55d501050dcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ePKzmH6soAMFZOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b5f1b0-6fc1643036a4012935a38bb3;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 21:37:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iJNA1pytmUSUBG4YeU7rcEKCs04k9rPEuQ6o6FP5bWaQ25M7yGrySA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 21:49:59 GMT
age: 68443
etag: "11fda31d48a4df3fd6346d92f45a680f500bff64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
46.250.220.133404 Not Found 15 kB URL HTTP/2 123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
IP 46.250.220.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11993)
Hash 578aee301c020ce72820b3048659d40f
750c96a81c5fb93d182c95f95e08f82b83dc97f6
ec0e76bda5afc2d01ee9042ccc7a945bd79c091dab0908b84f5a9db2d41dd463
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.24
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://123taxi.be/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: cb1_HTTP.404,cb1_404,cb1_URL.1b69413e43407c50a812c550f8e9eb7a,cb1_guest,cb1_,cb1_MIN.65094be163b4b99a39bd45efe2b0a226.js
x-litespeed-cache: miss
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:43 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a430d46fb27196c8b03f382c1bafbb23
0b31940d1067eb87c24c6d356689d7f9f90231a6
3e9cd331b1c2c1eca94ff12ec1b685e1c1c1909e30e8b3cf4493dc6eac786df8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-79847376-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-79847376-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 252ad23eda7dda6bb9f2a485df47065e
dd329c74f609984e1b514afff2f8855e9e8ade16
938a503b9a5d9f944a620fcb4bc4a1591e6df45798fafaa7baa491ed8ff32ede
GET /gtag/js?id=UA-79847376-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 05 Jan 2023 16:50:43 GMT
expires: Thu, 05 Jan 2023 16:50:43 GMT
cache-control: private, max-age=900
last-modified: Thu, 05 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43584
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a430d46fb27196c8b03f382c1bafbb23
0b31940d1067eb87c24c6d356689d7f9f90231a6
3e9cd331b1c2c1eca94ff12ec1b685e1c1c1909e30e8b3cf4493dc6eac786df8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7c8811382bcd40ec65e7a6e339e94904
38d741442c52bcdde863d1a2d593ce0c81c7efbd
ce5c1060c028784381224586783b9b0943fd14947bb15bb38e6d401a1a221c23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ff3b4cd0aa28a61ef1a039c7ff73ce71
1081a41936a63ccdf3e9ebc021835a19c4125a87
367f96729ad2d9dbe57a5881a37c0bc7893ad0858af6fff7f8b565204eae3a1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 561e959ce9eff04b09da6f3def82f549
7866f989cdfb160709f4c93b767fd01e5553d75b
9076b4ae1a34ab02b362ffa44ecbf6d579f82042cfd7e7138977477ea5bd3e61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 16:11:03 GMT
expires: Thu, 05 Jan 2023 17:11:03 GMT
cache-control: public, max-age=3600
age: 2380
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 561e959ce9eff04b09da6f3def82f549
7866f989cdfb160709f4c93b767fd01e5553d75b
9076b4ae1a34ab02b362ffa44ecbf6d579f82042cfd7e7138977477ea5bd3e61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
123taxi.be/wp-content/litespeed/js/65094be163b4b99a39bd45efe2b0a226.js?ver=87120
46.250.220.133200 OK 21 kB URL HTTP/2 123taxi.be/wp-content/litespeed/js/65094be163b4b99a39bd45efe2b0a226.js?ver=87120
IP 46.250.220.133:0
File type Unicode text, UTF-8 text, with very long lines (40973)
Hash 46e9a9908470786f1ad705312aa3efa3
eb4fe39bda8598e8776960c8c379ee7e23f2aeb0
3ed80b041e4b322f335d736ac7ccfbe585a3c7a5f6b9da1f1cdf0cb3f619e875
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/65094be163b4b99a39bd45efe2b0a226.js?ver=87120 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:43 GMT
last-modified: Tue, 03 Jan 2023 19:35:58 GMT
etag: "31412-63b4839e-a6f45850b1fd7ca4;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-qc-cache: miss
content-length: 20677
content-encoding: br
date: Thu, 05 Jan 2023 16:50:43 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
46.250.220.133404 Not Found 86 kB URL HTTP/2 123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
IP 46.250.220.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (43169), with CRLF, LF line terminators
Hash 3f504f0b6febc44cee97d798a39a83cb
1f5429174e8f5fd792f26ebe9d75778d5ec9f12c
96f6703ae214615b0a272c08f428285a864057e67de864e51e51f5be6bcba29a
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.24
x-dns-prefetch-control: on
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://123taxi.be/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: cb1_HTTP.404,cb1_404,cb1_URL.1b69413e43407c50a812c550f8e9eb7a,cb1_,cb1_CCSS.e81103001a2857519e28ac21efd325a4,cb1_MIN.c8f3b9149de8586c64edac51b42e3fdf.css
x-litespeed-cache: miss
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
123taxi.be/wp-content/litespeed/css/c8f3b9149de8586c64edac51b42e3fdf.css?ver=87120
46.250.220.133200 OK 26 kB URL HTTP/2 123taxi.be/wp-content/litespeed/css/c8f3b9149de8586c64edac51b42e3fdf.css?ver=87120
IP 46.250.220.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb7c46d5fde1ab77b15dc943282b8dba
0dcf9f0c4e56fa4d5baa1cecbd1781ce897e2747
3eb413fdffb18be2e9e4d6e263a369b3a274a1edce7464ff1f25ec097b2a5719
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/c8f3b9149de8586c64edac51b42e3fdf.css?ver=87120 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Tue, 03 Jan 2023 19:27:24 GMT
etag: "424fd-63b4819c-45daf429c71201d8;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_CSS
x-qc-cache: miss
content-length: 26500
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
123taxi.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
46.250.220.133200 OK 30 kB URL HTTP/2 123taxi.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 46.250.220.133:0
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Sat, 05 Nov 2022 11:39:29 GMT
etag: "15e54-63664b71-62feeb7cf2e74253;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_JS
x-qc-cache: miss
content-length: 30075
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
123taxi.be/wp-content/plugins/google-language-translator/images/flags18.png
46.250.220.133200 OK 42 kB URL HTTP/2 123taxi.be/wp-content/plugins/google-language-translator/images/flags18.png
IP 46.250.220.133:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash e87c3f6109f5a5db4a1da94a8f709103
8037ff4f34e9d0b7fefc2a32af1fdc674a869e73
2aa94c1fd0a7d0644b70648ecb0d25386817b658e3cb4e5a635b7d929fd3f654
GET /wp-content/plugins/google-language-translator/images/flags18.png HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/litespeed/css/c8f3b9149de8586c64edac51b42e3fdf.css?ver=87120
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Fri, 30 Dec 2022 15:00:05 GMT
etag: "a446-63aefcf5-d54cd995d47d201a;;;"
accept-ranges: bytes
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_IMG
x-qc-cache: miss
content-length: 42054
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 05 Jan 2023 15:34:02 GMT
expires: Thu, 05 Jan 2023 17:34:02 GMT
cache-control: public, max-age=7200
age: 4602
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
123taxi.be/wp-content/themes/thesis/lib/images/favicon.ico
46.250.220.133200 OK 121 B URL HTTP/2 123taxi.be/wp-content/themes/thesis/lib/images/favicon.ico
IP 46.250.220.133:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash c045f83333eae2202fe985bb3af1a51a
f65d23aaedf2488dbdf1a12e8086c308c79a972d
816412195252d14c14d8bcdf25a885f03f3fe1ee10dd8a16e4daf2e36d1468c5
GET /wp-content/themes/thesis/lib/images/favicon.ico HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Fri, 03 Dec 2021 21:07:05 GMT
etag: "47e-61aa86f9-9481707661140465;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-qc-cache: miss
content-length: 121
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
123taxi.be/wp-content/litespeed/js/56f80da23ed9e4b91a68713722ff8c0a.js?ver=2f3cc
46.250.220.133200 OK 3.5 kB URL HTTP/2 123taxi.be/wp-content/litespeed/js/56f80da23ed9e4b91a68713722ff8c0a.js?ver=2f3cc
IP 46.250.220.133:0
File type ASCII text, with very long lines (1864)
Hash 646109bb78dabbd1ca26cec1c33c30fc
d0e2bdc6c5cb5c80a9d54366abba38195c2ebc1f
8c01c711fc3c40b92fe88a6aaef8af76599e51c4d0e25c68d424ae1524a15654
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/56f80da23ed9e4b91a68713722ff8c0a.js?ver=2f3cc HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Thu, 05 Jan 2023 16:50:44 GMT
etag: "213a-63b6ffe4-8ffb8409921e78c4;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_JS
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.35200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.35:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 12:32:37 GMT
expires: Fri, 05 Jan 2024 12:32:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 15487
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5dcd3e3f6440384500af24c809a3f175
3a5df7e2369c9d65865d73410b0cac87e1b5a54c
b7c5a41dbd443dcb04231372b9ac63a3853d57e43941af5b22073693291099df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.35200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.35:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 17:45:56 GMT
expires: Thu, 04 Jan 2024 17:45:56 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 83089
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5dcd3e3f6440384500af24c809a3f175
3a5df7e2369c9d65865d73410b0cac87e1b5a54c
b7c5a41dbd443dcb04231372b9ac63a3853d57e43941af5b22073693291099df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 05 Jan 2023 16:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
123taxi.be/wp-content/litespeed/js/3670ed2476e95ce581ad00caaf13a425.js?ver=2778e
46.250.220.133200 OK 5.5 kB URL HTTP/2 123taxi.be/wp-content/litespeed/js/3670ed2476e95ce581ad00caaf13a425.js?ver=2778e
IP 46.250.220.133:0
File type ASCII text, with very long lines (2945)
Hash a493563299e580fe004350c46702f34c
ee30235e77bb0363f192e32109d57f23ce10a8e1
10b92446f24274e8e7dd0c073e816e1c0c577227aee5370f566ffbeb8e5f7f0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/3670ed2476e95ce581ad00caaf13a425.js?ver=2778e HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Thu, 05 Jan 2023 16:50:44 GMT
etag: "ba6-63b6ffe4-ef8514d6b79bb34c;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_JS
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
123taxi.be/wp-content/uploads/2015/10/BCMC_consumer_logo_52px.png
46.250.220.133200 OK 909 B URL HTTP/2 123taxi.be/wp-content/uploads/2015/10/BCMC_consumer_logo_52px.png
IP 46.250.220.133:0
File type PNG image data, 87 x 60, 8-bit colormap, non-interlaced\012- data
Hash e5ec20a8c4083561ec3fd671bcdf9223
e741af47c88562c758888e15e1f644916ae887df
0dbe2afc29640af0f62beecd92942d55c25e979092bb86e20b675209595f87e6
GET /wp-content/uploads/2015/10/BCMC_consumer_logo_52px.png HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706; _ga=GA1.2.1528711685.1672937435; _gid=GA1.2.170453445.1672937435; _gat_gtag_UA_79847376_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:45 GMT
last-modified: Fri, 30 Dec 2022 15:30:22 GMT
etag: "38d-63af040e-805773d311b13a00;;;"
accept-ranges: bytes
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-qc-cache: miss
content-length: 909
date: Thu, 05 Jan 2023 16:50:45 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
142.250.74.110200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit
IP 142.250.74.110:0
GET /translate_a/element.js?cb=GoogleLanguageTranslatorInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 05 Jan 2023 16:50:43 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+457; expires=Sat, 04-Jan-2025 16:50:43 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
123taxi.be/wp-content/litespeed/js/bdacb22429c38d8bf3985fa89c3c44f4.js?ver=49883
46.250.220.133200 OK 0 B URL HTTP/2 123taxi.be/wp-content/litespeed/js/bdacb22429c38d8bf3985fa89c3c44f4.js?ver=49883
IP 46.250.220.133:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/bdacb22429c38d8bf3985fa89c3c44f4.js?ver=49883 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Thu, 05 Jan 2023 16:50:44 GMT
etag: "2bd8-63b6ffe4-e91c54cb27b8480e;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_JS
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
123taxi.be/wp-content/litespeed/js/0ce8dec9c53251743ec514cb7051ecbe.js?ver=fd456
46.250.220.133200 OK 0 B URL HTTP/2 123taxi.be/wp-content/litespeed/js/0ce8dec9c53251743ec514cb7051ecbe.js?ver=fd456
IP 46.250.220.133:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/js/0ce8dec9c53251743ec514cb7051ecbe.js?ver=fd456 HTTP/1.1
Host: 123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/bf466b16b0216cc6a59703664b8d8bdb/login.htm?cmd=login_submit&id=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8&session=0544baa77a8e80e8752b641874a99fe80544baa77a8e80e8752b641874a99fe8
Cookie: _lscache_vary=44fd8a788ce6d985dc970624ab824706
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
cache-control: public, max-age=31557600
expires: Fri, 05 Jan 2024 22:50:44 GMT
last-modified: Thu, 05 Jan 2023 16:50:44 GMT
etag: "3371-63b6ffe4-b0e205a5c2640e4e;br"
accept-ranges: bytes
vary: Accept-Encoding
platform: hostinger
content-security-policy: upgrade-insecure-requests
x-litespeed-tag: 2708897_JS
x-qc-cache: miss
content-encoding: br
date: Thu, 05 Jan 2023 16:50:44 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2