knowledgesharing.be/
91.183.128.209301 Moved Permanently 151 B IP 91.183.128.209:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa0b0aa10dc83d000a1d3bf7ac4bad2b
ed8f18f09bd82cdab9d926d35e407a7c75ff269d
2e279a9b5fb031288d39c42fad7fc3bb9709573ca3f3d488e91e0808db6e43ea
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://knowledgesharing.be/
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:36 GMT
Content-Length: 151
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3850
Expires: Thu, 01 Dec 2022 16:09:48 GMT
Date: Thu, 01 Dec 2022 15:05:38 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6234
Cache-Control: max-age=162568
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:38 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:15:06 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9291
Expires: Thu, 01 Dec 2022 17:40:29 GMT
Date: Thu, 01 Dec 2022 15:05:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 14:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2752
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kkUnjKgaFa51zdKXDVAH6yCIK7W/uv3XjC1cc+V3Btfmw7XtkiJvxohM11eJtbjtyukYXdiWwAs=
x-amz-request-id: XHWT4HBKG4JM1XKV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 14:45:42 GMT
age: 1196
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 15:05:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 8577c453397c46d07010b498ad4499f9
60749644bd58aa1fd94ccd909f56adbe6cfb0326
77e0f00735fab6c666d9f9f62cbc17879884eccc299461e55dc514825cfb8c2d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 15:05:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Dec 2022 13:55:16 GMT
Expires: Fri, 02 Dec 2022 13:55:16 GMT
ETag: "60749644bd58aa1fd94ccd909f56adbe6cfb0326"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 14:08:56 GMT
cache-control: public,max-age=3600
age: 3403
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6234
Cache-Control: max-age=157504
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:39 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:50:43 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
knowledgesharing.be/
91.183.128.209200 OK 24 kB IP 91.183.128.209:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6572), with CRLF line terminators
Hash 724afde43642acf84637d3874f0645ac
aba1299167b0b9ce35133ae2182f39ef75541482
a4ad550a0307982fe7495df5c61907d5e5813c1a2d014c6f4f4a44ce2a338033
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Set-Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; expires=Thu, 09-Feb-2023 01:45:38 GMT; path=/; HttpOnly
ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak; path=/; HttpOnly; SameSite=Lax
TrStat1=; expires=Wed, 30-Nov-2022 15:05:38 GMT; path=/
TrStat1=; expires=Wed, 30-Nov-2022 15:05:38 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 23957
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: abBA+4v9syRtyNkFAR8DqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sSvbpLmclUs4auRJk1pWD1Gek7c=
knowledgesharing.be/assets/frameworks/bootflat/css/bootstrap.min.css
91.183.128.209200 OK 26 kB URL HTTP/1.1 knowledgesharing.be/assets/frameworks/bootflat/css/bootstrap.min.css
IP 91.183.128.209:0
File type ASCII text, with very long lines (65371)
Hash 6b1accfa219c61b88a18a776d02de73f
9888a5eb40937859fa37a28a6b11f02597d4fbcf
cfc7c7d6ddbbc7baa61d7381a5484239cc94ece458e6173a0c953f43ce3e3ba3
GET /assets/frameworks/bootflat/css/bootstrap.min.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 11 Jan 2016 10:24:30 GMT
Accept-Ranges: bytes
ETag: "037e415a4cd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 26329
knowledgesharing.be/assets/common/ui/base/base.css
91.183.128.209200 OK 3.5 kB URL HTTP/1.1 knowledgesharing.be/assets/common/ui/base/base.css
IP 91.183.128.209:0
File type ASCII text, with CRLF line terminators
Hash 0adc912de783a8c026ea5b72abe504d0
b161c7af9232b28ecda86acec740ac47f73e4317
8c2cfa25166acc91d0918bd56d787e1b0dfe32dc4b0e8a4292a750089fddf39a
GET /assets/common/ui/base/base.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 14 Jun 2016 06:56:06 GMT
Accept-Ranges: bytes
ETag: "0478ed29c6d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 3481
knowledgesharing.be/assets/scripts/topbar/topbar.css
91.183.128.209200 OK 5.8 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/topbar/topbar.css
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f320a6bd5a883bcdc61e12cae013f001
f06acb2da70fbfa40a104650548fcb7167e0cd4f
1500123567d5e0216780ecafd15b7269cbf44fab4b3e606d8023b4fb74aa7ea0
GET /assets/scripts/topbar/topbar.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 18 May 2020 11:24:05 GMT
Accept-Ranges: bytes
ETag: "ff4fe9d662dd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 5826
knowledgesharing.be/assets/scripts/animate/animate.css
91.183.128.209200 OK 8.0 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/animate/animate.css
IP 91.183.128.209:0
Hash 2217085d9057c33afbeea7478154516c
e7a503ca5f74bb954a03050c8b667b3f61912f57
871a128ce61204610de3fcf953281b8c3735b8d2ab0c65d35e78ac622f03ed5e
GET /assets/scripts/animate/animate.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 22 Jun 2016 12:54:38 GMT
Accept-Ranges: bytes
ETag: "0fb23c85ccd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 7986
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.132200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.132:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 01 Dec 2022 15:05:39 GMT
date: Thu, 01 Dec 2022 15:05:39 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
knowledgesharing.be/assets/scripts/cookieconsent/light-bottom.css
91.183.128.209200 OK 1.8 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/cookieconsent/light-bottom.css
IP 91.183.128.209:0
File type ASCII text, with CRLF line terminators
Hash 8594f13f4c22036bbd6932a521d1c256
d2d0984d5f08a76d7e60db6e1a2cc590dda5b73b
8593372732d54241d20e5b14122a9ada751e4c94d84ad5639a1895e842198d9e
GET /assets/scripts/cookieconsent/light-bottom.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 21 Jan 2020 09:26:13 GMT
Accept-Ranges: bytes
ETag: "176f34d33cd0d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 1838
knowledgesharing.be/assets/minimalist-basic/content-bootstrap.css
91.183.128.209200 OK 5.9 kB URL HTTP/1.1 knowledgesharing.be/assets/minimalist-basic/content-bootstrap.css
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 5503e38b452acad75d55b546b16382fe
b4ab3a5fe222b710ea98a5dc9b362cf620801e1e
3a2e60512f75c55997e4fdb10f39b6aeb386de55de385d0ebfdeb59fe73e7631
GET /assets/minimalist-basic/content-bootstrap.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 06 Apr 2022 14:43:24 GMT
Accept-Ranges: bytes
ETag: "4b8e2eabc449d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 5858
knowledgesharing.be/assets/common/ui/box/box.css
91.183.128.209200 OK 5.9 kB URL HTTP/1.1 knowledgesharing.be/assets/common/ui/box/box.css
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3845), with CRLF line terminators
Hash 40483169c93e4eca14775a3381d88b96
bb3b9a55b4043909afc2bf0891614dd6f419f369
950be2ce2eac819a4d1cb703e65f615ae4c04a95a4e377365c2a1c653f79201f
GET /assets/common/ui/box/box.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 07 Nov 2019 14:23:49 GMT
Accept-Ranges: bytes
ETag: "f0462ff97695d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 5918
knowledgesharing.be/App_Themes/default-bootstrap/StyleSheet.css
91.183.128.209200 OK 2.6 kB URL HTTP/1.1 knowledgesharing.be/App_Themes/default-bootstrap/StyleSheet.css
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF, LF line terminators
Hash 3a76270528c2e07cc07bcd7f8cac9db2
94cc4c24f675ca394ed4a332f33715a2e094b7b5
997c255c0532b92b13d33f5c2f8343a178fad8f9d4b7423579c2a26f6116ed69
GET /App_Themes/default-bootstrap/StyleSheet.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 06 Nov 2019 11:16:48 GMT
Accept-Ranges: bytes
ETag: "27e27dae9394d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 2569
knowledgesharing.be/assets/frameworks/bootflat/js/bootstrap.min.js
91.183.128.209200 OK 9.4 kB URL HTTP/1.1 knowledgesharing.be/assets/frameworks/bootflat/js/bootstrap.min.js
IP 91.183.128.209:0
File type ASCII text, with very long lines (32044)
Hash 8ee1e05c6ace987f1e339434cfc72149
80a07bdbe6de872a6d0cf57bad20155218d330ac
630960246ff39cadaf893e1d0bafcf8aea3c30fd5b7cec2cc0416dd6b86fc221
Analyzer Verdict Alert fortinet Phishing
GET /assets/frameworks/bootflat/js/bootstrap.min.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Mon, 11 Jan 2016 10:24:32 GMT
Accept-Ranges: bytes
ETag: "030af425a4cd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 9436
knowledgesharing.be/WebResource.axd?d=01YizIXIyY-gAugvjscb1NxQn_T9G4PBu-xQFm3qVSTyVD4idq5Sm_bbKTeK8CVBc6cJha6c13vbguA-3oawZc5JcTc1&t=637814689746327080
91.183.128.209200 OK 6.0 kB URL HTTP/1.1 knowledgesharing.be/WebResource.axd?d=01YizIXIyY-gAugvjscb1NxQn_T9G4PBu-xQFm3qVSTyVD4idq5Sm_bbKTeK8CVBc6cJha6c13vbguA-3oawZc5JcTc1&t=637814689746327080
IP 91.183.128.209:0
File type ASCII text, with CRLF line terminators
Hash 06fd446079195e9866f38728a31b8416
bce7935598a51703a7077dd75e1d30882533c6e1
5466d19b6349cc09de47de356c3195b2fd367a5ab8f1c55e8aaf2f296915d46d
GET /WebResource.axd?d=01YizIXIyY-gAugvjscb1NxQn_T9G4PBu-xQFm3qVSTyVD4idq5Sm_bbKTeK8CVBc6cJha6c13vbguA-3oawZc5JcTc1&t=637814689746327080 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Thu, 30 Nov 2023 11:03:53 GMT
Last-Modified: Sat, 26 Feb 2022 09:42:54 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 6007
knowledgesharing.be/ScriptResource.axd?d=4CxXn-4LDea-j-N5NxzS9v7I9zB41lyqyLzoe8GL7ZbPqtqp7pUdA4chYDKUCmpu2c6883au6h_LBbM680sv81UU-3gqkr8-2CytlU3-6rWmt3_bFEx2Grxdqz4RmpQfUHMyjMuzxzSLyMgQnsvBiPHeTbE1&t=14d69f50
91.183.128.209200 OK 5.5 kB URL HTTP/1.1 knowledgesharing.be/ScriptResource.axd?d=4CxXn-4LDea-j-N5NxzS9v7I9zB41lyqyLzoe8GL7ZbPqtqp7pUdA4chYDKUCmpu2c6883au6h_LBbM680sv81UU-3gqkr8-2CytlU3-6rWmt3_bFEx2Grxdqz4RmpQfUHMyjMuzxzSLyMgQnsvBiPHeTbE1&t=14d69f50
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash cd81a5effc23af770be1c6ad035a5e4e
ec3cdf31293e2e43fb1f189decc18019cd3d2f23
0bbe6b1d897c994aa54d02d1692b8dd4d64a2f28d809f954ce6ba356c7d16abb
GET /ScriptResource.axd?d=4CxXn-4LDea-j-N5NxzS9v7I9zB41lyqyLzoe8GL7ZbPqtqp7pUdA4chYDKUCmpu2c6883au6h_LBbM680sv81UU-3gqkr8-2CytlU3-6rWmt3_bFEx2Grxdqz4RmpQfUHMyjMuzxzSLyMgQnsvBiPHeTbE1&t=14d69f50 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Thu, 30 Nov 2023 11:03:53 GMT
Last-Modified: Wed, 30 Nov 2022 11:03:53 GMT
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 5479
knowledgesharing.be/assets/scripts/simplelightbox/simplelightbox.css
91.183.128.209200 OK 1.4 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/simplelightbox/simplelightbox.css
IP 91.183.128.209:0
Hash 54e9c34aadd0367ed19d87a4ac02804c
7ebf0e3ec6cd169b9c6b34612c503078fd08e4ef
d18b4066cc6f259aec708db2f06b5dcd4e2ecf45aca8f5dac30385773f3b12fe
GET /assets/scripts/simplelightbox/simplelightbox.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 19 Jul 2017 14:14:48 GMT
Accept-Ranges: bytes
ETag: "0bcec60990d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 1359
knowledgesharing.be/ScriptResource.axd?d=ev7motOdpNJ7skRll2K7F1Z3-IeIhLO7rxeIwnn13chfqFtnGWI8NpV0U7yWC5TBUoSXXMsYoMXPUL3KiLdJaZ3ZJIyNWJBTcWKQeNzZyr_yQC4ZMtRQAT6x6UiW55e-pzgkQHExY2McKgenZcZWyFFi1QcFSXrY7tELh0D6Mbm6Xxy20&t=49337fe8
91.183.128.209200 OK 10 kB URL HTTP/1.1 knowledgesharing.be/ScriptResource.axd?d=ev7motOdpNJ7skRll2K7F1Z3-IeIhLO7rxeIwnn13chfqFtnGWI8NpV0U7yWC5TBUoSXXMsYoMXPUL3KiLdJaZ3ZJIyNWJBTcWKQeNzZyr_yQC4ZMtRQAT6x6UiW55e-pzgkQHExY2McKgenZcZWyFFi1QcFSXrY7tELh0D6Mbm6Xxy20&t=49337fe8
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (39257), with CRLF line terminators
Hash 027a7d52e1ceed8aef7dc13505b81d36
33cf0bce6a4c8b44b4a80b3116c978c12ee93fd0
29061464fb6fce2326b952eacaa95c3c6183bfea74c3851390e9838720d372a6
GET /ScriptResource.axd?d=ev7motOdpNJ7skRll2K7F1Z3-IeIhLO7rxeIwnn13chfqFtnGWI8NpV0U7yWC5TBUoSXXMsYoMXPUL3KiLdJaZ3ZJIyNWJBTcWKQeNzZyr_yQC4ZMtRQAT6x6UiW55e-pzgkQHExY2McKgenZcZWyFFi1QcFSXrY7tELh0D6Mbm6Xxy20&t=49337fe8 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Thu, 30 Nov 2023 11:03:53 GMT
Last-Modified: Wed, 30 Nov 2022 11:03:53 GMT
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 9984
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/WebResource.axd?d=o_53hSVjxuzaYwUm3bcQNWWYVeEtOWWmtGLFCJQ6WDf0RSzRWrzDfZtWbbKAYOTqxqc5zqXqEj_8I5MAxSrI0YwGINs1&t=637814689746327080
91.183.128.209200 OK 978 B URL HTTP/1.1 knowledgesharing.be/WebResource.axd?d=o_53hSVjxuzaYwUm3bcQNWWYVeEtOWWmtGLFCJQ6WDf0RSzRWrzDfZtWbbKAYOTqxqc5zqXqEj_8I5MAxSrI0YwGINs1&t=637814689746327080
IP 91.183.128.209:0
File type ASCII text, with CRLF line terminators
Hash 790ed473fc0c045924ae3ccc79fa9846
0a8bc0f0258709303294568e80a66e63b7a2fbc2
a19c0a9160296330f353ac9fff3f79a048fb87e657657d626e690a680ee29a43
GET /WebResource.axd?d=o_53hSVjxuzaYwUm3bcQNWWYVeEtOWWmtGLFCJQ6WDf0RSzRWrzDfZtWbbKAYOTqxqc5zqXqEj_8I5MAxSrI0YwGINs1&t=637814689746327080 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Thu, 30 Nov 2023 11:03:53 GMT
Last-Modified: Sat, 26 Feb 2022 09:42:54 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 978
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 1d718f0ec4e43fb02fcc6d4ee63ca670
db8c9c34e9cc731509f2453dfb6777519b7d3558
dc074773ffa595a39c97bd77f8d062fe519daa2f95d5ea95aa09347c7498e5bd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 15:05:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 20:55:27 GMT
Expires: Thu, 01 Dec 2022 20:55:27 GMT
ETag: "db8c9c34e9cc731509f2453dfb6777519b7d3558"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
knowledgesharing.be/systems/scripts/jquery.min.js
91.183.128.209200 OK 34 kB URL HTTP/1.1 knowledgesharing.be/systems/scripts/jquery.min.js
IP 91.183.128.209:0
File type ASCII text, with very long lines (32060)
Hash 088c856339a9a86f99ae998e150dcf50
367a30eb85f405a051a5b9c8830b961c81ea7773
24965ae161a733d48bb217ca05e4295343734a373fad60029e3d026c645b2166
Analyzer Verdict Alert fortinet Phishing
GET /systems/scripts/jquery.min.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Wed, 17 Feb 2016 10:16:46 GMT
Accept-Ranges: bytes
ETag: "0fb354e6c69d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 33920
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/assets/frameworks/bootflat/css/site.min.css
91.183.128.209200 OK 41 kB URL HTTP/1.1 knowledgesharing.be/assets/frameworks/bootflat/css/site.min.css
IP 91.183.128.209:0
File type ASCII text, with very long lines (65078)
Hash 1146437aec4975e866d8abb454cecc20
8e0b9fa074562c0eaf7c7e823565fbe254691d5c
33820120cffed6ffdcb2bfadc3ffd7fb9949fd8902977f22beb33ef3f1fb2409
GET /assets/frameworks/bootflat/css/site.min.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 22 Oct 2018 10:41:50 GMT
Accept-Ranges: bytes
ETag: "147d21d7f369d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 40838
knowledgesharing.be/assets/common/ui/base/base.js
91.183.128.209200 OK 2.9 kB URL HTTP/1.1 knowledgesharing.be/assets/common/ui/base/base.js
IP 91.183.128.209:0
File type ASCII text, with CRLF line terminators
Hash ad16c2cf3fb2919eef85f00337a1ae1f
d5aaf2a932acbdedb7ee69b5cfd7c542750759e4
1e59956553205f9a22a6edd0f1c985c4b4185877c84ff8cd041de6320f048a46
Analyzer Verdict Alert fortinet Phishing
GET /assets/common/ui/base/base.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Tue, 02 Aug 2016 20:36:52 GMT
Accept-Ranges: bytes
ETag: "04ab399fdecd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 2853
knowledgesharing.be/assets/scripts/topbar/topbar.js
91.183.128.209200 OK 2.4 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/topbar/topbar.js
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f62b279812aff22cf33d764251368c1e
55662139686eff5adf48ce9631f15135be8a13d4
795378218238d3a4cb2b97ae99a7ce73e4f27a4c9378c10ee4fa0906d3a80bcb
Analyzer Verdict Alert fortinet Phishing
GET /assets/scripts/topbar/topbar.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Thu, 30 Jun 2016 07:51:38 GMT
Accept-Ranges: bytes
ETag: "021313ba4d2d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 2440
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 1d718f0ec4e43fb02fcc6d4ee63ca670
db8c9c34e9cc731509f2453dfb6777519b7d3558
dc074773ffa595a39c97bd77f8d062fe519daa2f95d5ea95aa09347c7498e5bd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 15:05:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 20:55:27 GMT
Expires: Thu, 01 Dec 2022 20:55:27 GMT
ETag: "db8c9c34e9cc731509f2453dfb6777519b7d3558"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
legaloffice.be/systems/scripts/popup/js/corner-popup.js
91.183.128.209301 Moved Permanently 190 B URL HTTP/1.1 legaloffice.be/systems/scripts/popup/js/corner-popup.js
IP 91.183.128.209:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 30174272615742228f99281377fe9643
26a8a1f8a2bfe6c5c8d225efad831b93c0693fa5
d77dc787c3df492ee6e8ea063bae8b0479af151ba57285412af8b8b1cab9cf7a
GET /systems/scripts/popup/js/corner-popup.js HTTP/1.1
Host: legaloffice.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.legaloffice.be/systems/scripts/popup/js/corner-popup.js
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 190
knowledgesharing.be/assets/scripts/cookieconsent/cookieconsent.min.js
91.183.128.209200 OK 9.0 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/cookieconsent/cookieconsent.min.js
IP 91.183.128.209:0
File type ASCII text, with very long lines (23512), with no line terminators
Hash 2e0c63e62f4fb763dd1b878f44b04d5f
922247e9a333d58d399693a37b1450cf2e0b3c69
f7cbf8429298eae721fae639c1acf5fb8fc0a1e28589dc38e6d6b50701497cd9
Analyzer Verdict Alert fortinet Phishing
GET /assets/scripts/cookieconsent/cookieconsent.min.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Wed, 15 Jul 2020 06:05:17 GMT
Accept-Ranges: bytes
ETag: "cc1b0ea6d5ad61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 9040
knowledgesharing.be/assets/common/ui/box/box.js
91.183.128.209200 OK 18 kB URL HTTP/1.1 knowledgesharing.be/assets/common/ui/box/box.js
IP 91.183.128.209:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (32012), with CRLF, LF line terminators
Hash ccf697a856ef8382005cd9bd5dded919
69f4c6c5cc46bba9ce7b3951e9cad8d2464b1b2f
008b87d5c80ceb008b058ff12692a0a72a13ea2275bd3065771f1a71af8e3406
Analyzer Verdict Alert fortinet Phishing
GET /assets/common/ui/box/box.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Wed, 29 Nov 2017 21:22:16 GMT
Accept-Ranges: bytes
ETag: "0b443215869d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 18154
knowledgesharing.be/assets/scripts/simplelightbox/simple-lightbox.min.js
91.183.128.209200 OK 4.1 kB URL HTTP/1.1 knowledgesharing.be/assets/scripts/simplelightbox/simple-lightbox.min.js
IP 91.183.128.209:0
File type Unicode text, UTF-8 text, with very long lines (9020)
Hash 23837f2a80f5911eb45d34b42e9830b9
448c4b19f2baebf4206f8a7245d0ba6cba420de3
8ab97e88ee2924f0ad229565767b7a7537ddfdc91120918f8ca6436ca60a0298
Analyzer Verdict Alert fortinet Phishing
GET /assets/scripts/simplelightbox/simple-lightbox.min.js HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Wed, 19 Jul 2017 14:14:48 GMT
Accept-Ranges: bytes
ETag: "0bcec60990d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 4117
knowledgesharing.be/assets/icons/css/fontello.css
91.183.128.209200 OK 1.3 kB URL HTTP/1.1 knowledgesharing.be/assets/icons/css/fontello.css
IP 91.183.128.209:0
Hash b40e6d66d94c67770c1eb72f243d725b
1bf9b6163dbdd43e6422e58d2ad2945c606422df
6a6a558517b43309325b468c23196aad3424d9b3169378863a4e7b621647a126
GET /assets/icons/css/fontello.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/assets/minimalist-basic/content-bootstrap.css
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 09 Aug 2015 07:14:00 GMT
Accept-Ranges: bytes
ETag: "02ca7f672d2d01:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 1261
legaloffice.be/systems/scripts/popup/css/corner-popup.css
91.183.128.209301 Moved Permanently 192 B URL HTTP/1.1 legaloffice.be/systems/scripts/popup/css/corner-popup.css
IP 91.183.128.209:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash bd8776c93ae2a2e090a082702c33b54b
f035b8b94bb8f0cd5ddfe4ccfe1115e3b7ee0d57
4ea6bfb85138d851c030a60d37e8d39d7298136213b7a3ef429f3b62ba172ec4
GET /systems/scripts/popup/css/corner-popup.css HTTP/1.1
Host: legaloffice.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.legaloffice.be/systems/scripts/popup/css/corner-popup.css
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 192
knowledgesharing.be/assets/ionicons/css/ionicons.min.css
91.183.128.209200 OK 11 kB URL HTTP/1.1 knowledgesharing.be/assets/ionicons/css/ionicons.min.css
IP 91.183.128.209:0
File type Unicode text, UTF-8 text, with very long lines (50806)
Hash 21da1d752cc5e6fd965d680f615250cc
9db5bf214fb8a9386a33e24172c434ecab7098f8
201e1199dd1177cb8fe1bc1247b1cf50a032a0d134b8f0686b21e21a95850737
GET /assets/ionicons/css/ionicons.min.css HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/assets/minimalist-basic/content-bootstrap.css
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 13 Feb 2016 17:44:26 GMT
Accept-Ranges: bytes
ETag: "0b95d2e8666d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 10637
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/resources/site1/General/LEI_LogoV2B_White_Transparant.png
91.183.128.209200 OK 5.5 kB URL HTTP/1.1 knowledgesharing.be/resources/site1/General/LEI_LogoV2B_White_Transparant.png
IP 91.183.128.209:0
File type PNG image data, 394 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 8efb1c032150905fd28533592a9c3b47
dd39afafbeffff344698915233e1a1c872be76cc
d0546435d6697434783c9690f2493d604c6c2522a1efb42b2fc7b7062dd792e7
GET /resources/site1/General/LEI_LogoV2B_White_Transparant.png HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 21 Jan 2021 15:36:52 GMT
Accept-Ranges: bytes
ETag: "b0d8933dbf0d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 5542
knowledgesharing.be/resources/templates/2/076pg154125.png
91.183.128.209200 OK 4.5 kB URL HTTP/1.1 knowledgesharing.be/resources/templates/2/076pg154125.png
IP 91.183.128.209:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash fb06b74b2e406494154a0a75bda69e12
e4a1a52a925b77734fd92f41fec019d0d29a2f66
52110cabc9308342669c606c77016e908e0fc48073a3ef67889e02a3ad419151
GET /resources/templates/2/076pg154125.png HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 28 Jun 2022 13:41:25 GMT
Accept-Ranges: bytes
ETag: "10a1d4c2f48ad81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 4524
knowledgesharing.be/resources/uploads/1/standard-logo_rgb_purple_2021-plazk1-JUqBp1.png
91.183.128.209200 OK 18 kB URL HTTP/1.1 knowledgesharing.be/resources/uploads/1/standard-logo_rgb_purple_2021-plazk1-JUqBp1.png
IP 91.183.128.209:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ff78a6c0ba3c4e1cc4b8629e3821fae
07622340aefd281c7a6fd20261ac62c9115e6bf5
7c85927d4988e7817d4c491a47cbcb0e1795be031ccfe28c7a3bc3e4997b93a8
GET /resources/uploads/1/standard-logo_rgb_purple_2021-plazk1-JUqBp1.png HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 28 Jun 2022 13:41:51 GMT
Accept-Ranges: bytes
ETag: "29c096d2f48ad81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 18320
www.legaloffice.be/systems/scripts/popup/css/corner-popup.css
91.183.128.209200 OK 1.6 kB URL HTTP/1.1 www.legaloffice.be/systems/scripts/popup/css/corner-popup.css
IP 91.183.128.209:0
Hash 10831757adabfd0f97a79dc8e3c56cc5
20e067cebd230d68e4875b60caeb1ed040e5f388
502234672d9705733af0fc8e5e5506b26d654d1be812f82ce3785da0be10c287
GET /systems/scripts/popup/css/corner-popup.css HTTP/1.1
Host: www.legaloffice.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://knowledgesharing.be/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 26 Aug 2019 11:16:36 GMT
Accept-Ranges: bytes
ETag: "023fb9ff5bd51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 1617
fonts.googleapis.com/css?family=Montserrat:400,500,600
142.250.74.106200 OK 3.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,500,600
IP 142.250.74.106:0
File type Unicode text, UTF-8 text, with very long lines (396)
Hash 27a428eae8a9b3d2cff1bca31f174382
c817c4eea4cf131305fd001ca78413fa1d7e265e
6b4eea8cbf784d356cb2edc35d9f391cb4296e00916606af124410b0e68c8123
GET /css?family=Montserrat:400,500,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 15:05:40 GMT
date: Thu, 01 Dec 2022 15:05:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
knowledgesharing.be/resources/internal/file_views/1213/2_CaluwaertsUytterhoeven_opletten%20vertegenwoordiging%20vennootschappen.png
91.183.128.209200 OK 206 kB URL HTTP/1.1 knowledgesharing.be/resources/internal/file_views/1213/2_CaluwaertsUytterhoeven_opletten%20vertegenwoordiging%20vennootschappen.png
IP 91.183.128.209:0
File type PNG image data, 1680 x 890, 8-bit/color RGBA, non-interlaced\012- data
Size 206 kB (205625 bytes)
Hash e0886d5056b19a7a59cf116f7bedc25c
033da3ef0912ffa657fc2b566d4303547977daba
30660d3d21ff0ac7fc1c2547a503c54cd9981cd14c8029e51fc744f6999ee25a
GET /resources/internal/file_views/1213/2_CaluwaertsUytterhoeven_opletten%20vertegenwoordiging%20vennootschappen.png HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Tue, 29 Nov 2022 11:16:52 GMT
Accept-Ranges: bytes
ETag: "1cbcc14e43d91:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 205625
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://knowledgesharing.be
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:30:11 GMT
expires: Sat, 25 Nov 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 549329
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/resources/uploads/1/490bk11168.jpg
91.183.128.209200 OK 137 kB URL HTTP/1.1 knowledgesharing.be/resources/uploads/1/490bk11168.jpg
IP 91.183.128.209:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1000x667, components 3\012- data
Size 137 kB (137431 bytes)
Hash 59e5a6d05789194905f5a6c2e24a6ab4
30e41f5c1aceece2290ad51f515300275b0452fe
1cd2a0069b582151a59655a7db54207c9054b09c6c1ac5106efa7b39120bf1ab
GET /resources/uploads/1/490bk11168.jpg HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Mon, 04 Nov 2019 10:16:12 GMT
Accept-Ranges: bytes
ETag: "0fe16e2f892d51:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 137431
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/resources/uploads/1/JS6nP124532.jpg
91.183.128.209200 OK 70 kB URL HTTP/1.1 knowledgesharing.be/resources/uploads/1/JS6nP124532.jpg
IP 91.183.128.209:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1680x890, components 3\012- data
Hash dfcc9f9855cfdbadc38563b78f611158
c51d9fee275bb019a0a97db21813772253bd4ab9
c51fba149e570dd1c64e89b3c856007eb57f575eea2f0c591eccaebac5b73302
GET /resources/uploads/1/JS6nP124532.jpg HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Mon, 22 Oct 2018 10:45:32 GMT
Accept-Ranges: bytes
ETag: "ec6a4b5bf469d41:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 70376
legaloffice.be/systems/scripts/popup/img/mail.jpg
91.183.128.209301 Moved Permanently 184 B URL HTTP/1.1 legaloffice.be/systems/scripts/popup/img/mail.jpg
IP 91.183.128.209:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 53fc62dde72c608f7db3ccd6fb39bf4d
176ac22e93750dde43f19d45898eab2e52f88ac1
409c5323a01d98577c28a4bfd746c4d60842d6220e84104c86bd4ac0dc84dce3
GET /systems/scripts/popup/img/mail.jpg HTTP/1.1
Host: legaloffice.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.legaloffice.be/systems/scripts/popup/img/mail.jpg
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 184
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/assets/frameworks/bootflat/angularicons/angularicons.woff
91.183.128.209200 OK 114 kB URL HTTP/1.1 knowledgesharing.be/assets/frameworks/bootflat/angularicons/angularicons.woff
IP 91.183.128.209:0
File type Web Open Font Format, TrueType, length 114544, version 0.0\012- data
Size 114 kB (114544 bytes)
Hash 15863270c59eec2ce0c9889c7f220449
ce429340f66ccaacdc1b4ca4ede123a823e3ab88
fe6bf738e7d620e7fd18998c30678a9ca319c26fe6b121b20dc379e7aa1b597a
Analyzer Verdict Alert fortinet Phishing
GET /assets/frameworks/bootflat/angularicons/angularicons.woff HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://knowledgesharing.be/assets/frameworks/bootflat/css/site.min.css
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/font-woff
Last-Modified: Wed, 22 Jun 2016 12:10:40 GMT
Accept-Ranges: bytes
ETag: "020a4177fccd11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 114544
www.googletagmanager.com/gtm.js?id=GTM-5BLT745
142.250.74.40200 OK 47 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5BLT745
IP 142.250.74.40:0
File type ASCII text, with very long lines (2794)
Hash a87bcdfb05422fe5a99366cca32cbf20
a13981d02bc11f76817a8b505985732707c5f7e9
456f09f1941ea5d80745e36c1c2f46f8e64f42951b864f6bbf43e44531037032
GET /gtm.js?id=GTM-5BLT745 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 15:05:40 GMT
expires: Thu, 01 Dec 2022 15:05:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47271
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.legaloffice.be/systems/scripts/popup/img/mail.jpg
91.183.128.209200 OK 4.5 kB URL HTTP/1.1 www.legaloffice.be/systems/scripts/popup/img/mail.jpg
IP 91.183.128.209:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 126x129, components 3\012- data
Hash 09a11d83495c643d6c6bda091e5b40c5
b4d0fce2943377bab6332d3a5723c83e2cbf5db5
e196be4a9c9bff16cbb342f03b017c4d49f1fdfa9e9ffeddacb3afe73b8a419c
GET /systems/scripts/popup/img/mail.jpg HTTP/1.1
Host: www.legaloffice.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://knowledgesharing.be/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Tue, 13 Aug 2019 13:44:23 GMT
Accept-Ranges: bytes
ETag: "eb7a2837dd51d51:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:40 GMT
Content-Length: 4475
knowledgesharing.be/assets/ionicons/fonts/ionicons.ttf?v=2.0.0
91.183.128.209200 OK 188 kB URL HTTP/1.1 knowledgesharing.be/assets/ionicons/fonts/ionicons.ttf?v=2.0.0
IP 91.183.128.209:0
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 188 kB (188508 bytes)
Hash 24712f6c47821394fba7942fbb52c3b2
1b0a0de084905946a20300ca8c354865dec46764
2ba7f20b1d8990e17a47fe3d88e4c766628aaa2baf1dd30fca0a0db59836f5f9
Analyzer Verdict Alert fortinet Phishing
GET /assets/ionicons/fonts/ionicons.ttf?v=2.0.0 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/assets/ionicons/css/ionicons.min.css
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/x-font-ttf
Last-Modified: Sat, 13 Feb 2016 17:44:26 GMT
Accept-Ranges: bytes
ETag: "0b95d2e8666d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 188508
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
knowledgesharing.be/resources/internal/file_views/1188/7_publicatiesoverheidsopdrachten.png
91.183.128.209200 OK 1.4 MB URL HTTP/1.1 knowledgesharing.be/resources/internal/file_views/1188/7_publicatiesoverheidsopdrachten.png
IP 91.183.128.209:0
File type PNG image data, 1680 x 890, 8-bit/color RGBA, non-interlaced\012- data
Size 1.4 MB (1417136 bytes)
Hash 553e17b3e5522f27391da70bbd10329f
f07346403f6d8d39f9e935f3a71f9a788b70f4d0
3071f15e709d01adbb37706e590d214d3ea91e9765136338b14bb55367e4fe25
GET /resources/internal/file_views/1188/7_publicatiesoverheidsopdrachten.png HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Mon, 19 Sep 2022 14:14:50 GMT
Accept-Ranges: bytes
ETag: "4415802e32ccd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 1417136
knowledgesharing.be/favicon.ico
91.183.128.209200 OK 1.2 kB URL HTTP/1.1 knowledgesharing.be/favicon.ico
IP 91.183.128.209:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 6ff6313d6c716f98c9d58ef6192687f5
d6bdd27edeb4a8deb151b2bca4f1d6fa19077c50
984fe41555a36851ea6e2ffd12288aa98064589c35162d1155507a5e3d82b08a
GET /favicon.ico HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/x-icon
Last-Modified: Thu, 15 Nov 2018 08:42:23 GMT
Accept-Ranges: bytes
ETag: "9b584521bf7cd41:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:40 GMT
Content-Length: 1150
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3986
Expires: Thu, 01 Dec 2022 16:12:06 GMT
Date: Thu, 01 Dec 2022 15:05:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3986
Expires: Thu, 01 Dec 2022 16:12:06 GMT
Date: Thu, 01 Dec 2022 15:05:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6509
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 15:05:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6509
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 15:05:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6509
Expires: Thu, 01 Dec 2022 16:54:09 GMT
Date: Thu, 01 Dec 2022 15:05:40 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 01 Dec 2022 14:46:55 GMT
expires: Thu, 01 Dec 2022 16:46:55 GMT
cache-control: public, max-age=7200
age: 1125
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:57 GMT
age: 61963
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 9e243a73-18ff-4abf-9b9c-442719960125
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpppFXjoAMFehg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bca3-47620f39181264772d2fb52d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:13:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _v5hatZyEWVRB4Tebygbb-QfE02oaFxE8CRfQsUY7I_ektxE3YeIpw==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 17:08:01 GMT
age: 79059
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://knowledgesharing.be
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 244543
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 62020
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 72454
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 33624
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 62290
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=372804785&t=pageview&_s=1&dl=https%3A%2F%2Fknowledgesharing.be%2F&ul=en-us&de=UTF-8&dt=Caluwaerts%20Uytterhoeven%20Advocaten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1145620021&gjid=1290561290&cid=1833012015.1669907139&tid=UA-23016841-1&_gid=43769462.1669907139&_r=1>m=2wgbu05BLT745&z=1222008769
216.239.32.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=372804785&t=pageview&_s=1&dl=https%3A%2F%2Fknowledgesharing.be%2F&ul=en-us&de=UTF-8&dt=Caluwaerts%20Uytterhoeven%20Advocaten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1145620021&gjid=1290561290&cid=1833012015.1669907139&tid=UA-23016841-1&_gid=43769462.1669907139&_r=1>m=2wgbu05BLT745&z=1222008769
IP 216.239.32.178:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=372804785&t=pageview&_s=1&dl=https%3A%2F%2Fknowledgesharing.be%2F&ul=en-us&de=UTF-8&dt=Caluwaerts%20Uytterhoeven%20Advocaten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1145620021&gjid=1290561290&cid=1833012015.1669907139&tid=UA-23016841-1&_gid=43769462.1669907139&_r=1>m=2wgbu05BLT745&z=1222008769 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://knowledgesharing.be
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://knowledgesharing.be
date: Thu, 01 Dec 2022 15:05:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&gjid=1290561290&_gid=43769462.1669907139&_u=YEBAAEAAAAAAACAAI~&z=1681059505
74.125.131.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&gjid=1290561290&_gid=43769462.1669907139&_u=YEBAAEAAAAAAACAAI~&z=1681059505
IP 74.125.131.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&gjid=1290561290&_gid=43769462.1669907139&_u=YEBAAEAAAAAAACAAI~&z=1681059505 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://knowledgesharing.be
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://knowledgesharing.be
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 01 Dec 2022 15:05:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 580658
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&_u=YEBAAEAAAAAAACAAI~&z=446754725
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&_u=YEBAAEAAAAAAACAAI~&z=446754725
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23016841-1&cid=1833012015.1669907139&jid=1145620021&_u=YEBAAEAAAAAAACAAI~&z=446754725 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 15:05:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:05:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
seal.godaddy.com/images/3/en/siteseal_gd_3_h_l_m.gif
173.201.249.4200 OK 3.8 kB URL HTTP/1.1 seal.godaddy.com/images/3/en/siteseal_gd_3_h_l_m.gif
IP 173.201.249.4:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 131 x 32\012- data
Hash 966145b89f41de3ee21476a8cfd7c7fc
0bca107221d908cc4ed81d75edf47f8ec46008f3
1449346947ba3d2266f702cc5488e1a0fb75ef67cdb105d5dbe178eff0af14b2
GET /images/3/en/siteseal_gd_3_h_l_m.gif HTTP/1.1
Host: seal.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://knowledgesharing.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 15:05:42 GMT
Server: Apache
Accept-Ranges: bytes
Content-Length: 3827
Cache-Control: max-age=86400
Expires: Fri, 02 Dec 2022 15:05:42 GMT
Content-Type: image/gif
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 5e9a0bf2674d0445308f5683d7e9a813
c34c47522891e257bd5c6d979ae575b0de70e6df
be996c3f51d2f8d115f1f9d5caa43f3c800b0e84e0f1c94d54bdefbb3761b449
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 15:05:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 20:37:30 GMT
Expires: Thu, 01 Dec 2022 20:37:30 GMT
ETag: "c34c47522891e257bd5c6d979ae575b0de70e6df"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
knowledgesharing.be/resources/site1/General/CUA2101_Bedrijfsvideo_1920x1080_LQ1_V17.mp4
91.183.128.209206 Partial Content 0 B URL HTTP/1.1 knowledgesharing.be/resources/site1/General/CUA2101_Bedrijfsvideo_1920x1080_LQ1_V17.mp4
IP 91.183.128.209:0
Analyzer Verdict Alert fortinet Phishing
GET /resources/site1/General/CUA2101_Bedrijfsvideo_1920x1080_LQ1_V17.mp4 HTTP/1.1
Host: knowledgesharing.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://knowledgesharing.be/
Cookie: .ASPXANONYMOUS=KUrkNSg82QEkAAAANzg0NzdlNjktYmI2MS00OThhLTkxY2QtMWMyMjQwYWMwZDQ5mO8eWRwjJXT-kyYXW9jehsvT2nE1; ASP.NET_SessionId=os3n0gmbneo3q04ttys1elak
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 206 Partial Content
Cache-Control: max-age=2592000
Content-Type: video/mp4
Last-Modified: Fri, 27 May 2022 11:30:41 GMT
Accept-Ranges: bytes
ETag: "465a7e32bd71d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 15:05:38 GMT
Content-Length: 17095248
Content-Range: bytes 0-17095247/17095248