Report - ninewestnederland.com/

Report Overview

Submitted URL
ninewestnederland.com/
IP
196.242.179.141
ASN
#58065 Packet Exchange Limited
Submitted
2023-02-01 20:34:38
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
124

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	62 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.38.227.80
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	509 B	60 kB	142.250.74.35
ninewestnederland.com	unknown	2021-07-26T14:30:41Z	2023-01-19T10:56:17Z	353 B	495 B	196.242.179.141
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.77.32
www.ninewestnederland.com	unknown	2021-07-26T14:30:41Z	2022-12-27T06:31:23Z	23 kB	3.2 MB	196.242.179.141
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	216.58.211.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	ninewestnederland.com/	Phishing
2023-02-01	medium	www.ninewestnederland.com/	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/slick_new.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/jquery.jxa.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/jquery.mmenu.min.all.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/jquery-1.7.2.min.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/jquery.jxb.js	Phishing
2023-02-01	medium	www.ninewestnederland.com/js/slick.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed
2023-02-01	medium	ninewestnederland.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js	86 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:20:56 Times Seen17886 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js	20 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:28 Times Seen4053 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 01:37:16 Times Seen37107886 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js	89 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:31 Times Seen8149 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	www.ninewestnederland.com/	44 B	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:30 Times Seen4091 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.ninewestnederland.com/js/slick_new.js	1.9 kB	2023-03-07	2024-04-24
Pretty URL www.ninewestnederland.com/js/slick_new.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:00:43 Last Seen2024-04-24 19:43:13 Times Seen227 Hash cf6a546feff6db84279ebdd4d2230f7b dcfdde09278b7489541dc105c9350c7c8cccd24c 8b68bcff5c356392e2462cafe1b8deea01b92aaf65965390ad59c6065ef13f04 Loading...

	www.ninewestnederland.com/	21 B	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:01:46 Times Seen2894 Hash 5a9b4911bc66f9e2f54bd20a9c333f26 8f357fb053913c958e71d7167e56aa68a698f1e4 2412af640fa9ba9f1a38f46e8b58e00b2cdd73ab4bd327a7d79be4132d960c65 Loading...

	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js	86 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:31 Times Seen7071 Hash 93c4b563622d278b1065690a3d93709e f00d128cf399f17322b1d4ee02fa8cd892e081bd 601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e Loading...

	www.ninewestnederland.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/js/jquery.mmenu.min.all.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:31 Times Seen7481 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.ninewestnederland.com/js/jquery.jxa.js	2.7 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/js/jquery.jxa.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:31 Times Seen7377 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js	143 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-04-26 23:05:31 Times Seen3495 Hash 674b896ffae27a70571b1fc5bd65919d 63c8c73c7e5ba15aa940aba8f1c43b6150a9f941 a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374 Loading...

	www.ninewestnederland.com/js/jquery.jxb.js	158 kB	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/js/jquery.jxb.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:31 Times Seen13177 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	www.ninewestnederland.com/	449 B	2023-03-07	2024-04-07
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:25 Last Seen2024-04-07 19:12:58 Times Seen169 Hash 78f303c4cbeba2a77ec955055403c756 1dd2aee66477111955b7d3246cbf4a4e9d18fb05 0ae545af0c27cd04f2e04057a525dc9097f37df4674315ca9b785d36f7ef397c Loading...

	www.ninewestnederland.com/js/slick.js	87 kB	2023-03-10	2024-04-07
Pretty URL www.ninewestnederland.com/js/slick.js IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:03:16 Last Seen2024-04-07 19:12:58 Times Seen16 Hash cc4f8f51d3500710c5142dac4a5b5dba 9c31948851ddc409154454ea43cc7eb88ff94f37 6df58658fd3620ffe585646e0cad296a0099613152a4b70b9a50ec98931343f4 Loading...

	www.ninewestnederland.com/	530 B	2023-03-10	2024-04-07
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:31:41 Last Seen2024-04-07 19:12:58 Times Seen17 Hash 9a7c8ce49b739e4ee22b0762edcb1c7c eac35dc5649c09f1df1d55ede35192d93a19f34b 2afb8cc48cccfc17df44c02eed25da561f3d4152535b052483ba772b30bc2997 Loading...

	www.ninewestnederland.com/	311 B	2023-03-07	2024-04-26
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-04-26 23:05:30 Times Seen1352 Hash d70835bbf8fe8ba2123a94e4d82f747f 75de4d4e1704be292925f155abc7514d2d164617 17e98b785268fe290b82a465cc6f8c2084e98ebde2f80edd10c676a552dc2a31 Loading...

	www.ninewestnederland.com/	200 B	2023-03-07	2024-04-24
Pretty URL www.ninewestnederland.com/ IP 196.242.179.141 ASN #58065 Packet Exchange Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-24 19:43:12 Times Seen190 Hash 23062f26c9727722dfeb562f0eadfb94 744f17ede953c9b2ec5d36c2215c29a780909fc0 471a3fd3356c2c097a8f09e1472779910a36c31a753752858975963a0f52d035 Loading...

		Size	First Seen	Last Seen
	#1 Eval - abf4a875d5948c9b1b39999a48ff7e87	13 kB	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 23:05:30 Times Seen3792 Hash abf4a875d5948c9b1b39999a48ff7e87 e686ced083517764a0dd7424d84ac5fa1b52f20b a824a97e1e060dcfc3950a4231c4510e369c17c0c8694340e873ff5bdc8397ea Loading...

HTTP Transactions (70)

URL IP Response Size

ninewestnederland.com/

196.242.179.141

301 Moved Permanently

242 B

URL HTTP/1.1
ninewestnederland.com/
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
242 B (242 bytes)
Hash
21ffb5325d0af69ff65bfc0597b32a29
54d237d1f654fd5a5e0d0cf90baea1eeaa759ff8
0b67121b23768628b9107830584a7236c61fa8bf527a1e0a7f51f5712a32301b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 20:34:26 GMT
Server: Apache
Location: https://www.ninewestnederland.com/
Content-Length: 242
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4080
Expires: Wed, 01 Feb 2023 21:42:26 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11037
Expires: Wed, 01 Feb 2023 23:38:23 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 19:36:02 GMT
content-type: application/json
age: 3504
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8959
Expires: Wed, 01 Feb 2023 23:03:45 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PqxN1Xv5O8RNfz0xVq7xx7Nz6oyZk1z/A8pIsbUumR5hBBN+diebUB/x6bN/NjWp/dB0HTgWEPM=
x-amz-request-id: ZWVXNXRW37NA7VDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 20:22:48 GMT
age: 698
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 20:34:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 19:41:42 GMT
age: 3165
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8448
Expires: Wed, 01 Feb 2023 22:55:15 GMT
Date: Wed, 01 Feb 2023 20:34:27 GMT
Connection: keep-alive

push.services.mozilla.com/

52.38.227.80

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.227.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KM6qtXZeAixN/bepyEIPJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3eS0EQHcfKrKN+IvhHVilxosPXY=

www.ninewestnederland.com/

196.242.179.141

200 OK

30 kB

URL HTTP/1.1
www.ninewestnederland.com/
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2997), with CRLF, LF line terminators
Size
30 kB (30413 bytes)
Hash
132047a2c7052b45412b059099193b00
580d86c0d7ecd9cd20a338e2088270776ce0b0fe
276412ef965202fc60d9251926ac2759f2a71e8d8581d6f48def950c958b6d8d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:27 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=qik36glovh8ffo779c44ut4is5; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheet.css

196.242.179.141

200 OK

0 B

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheet.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheet.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetpSDgf.css

196.242.179.141

200 OK

4.5 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetpSDgf.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
4.5 kB (4486 bytes)
Hash
b11b62e48c05feaacabdbd6cc2137426
9f8a5730f7c0ff877a410177bf658fc39a51f35b
0da43d748ae5e944752bef69e89c0ac7ce934b4e4bfc18a6b9b8a6976277769d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetpSDgf.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 4486
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css

196.242.179.141

200 OK

4.1 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with CRLF line terminators
Size
4.1 kB (4120 bytes)
Hash
3ba8b935597566dd8b2a6564193c958b
a6168560efb70c329a881b877e5474f3e9be7aa4
037b28cb9b61ac35a35b6c9cbc0d91a1303bc1e916103352ca357ad80d6e6d52

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetYvlG9.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 4120
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetiTynF.css

196.242.179.141

200 OK

178 B

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetiTynF.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text
Size
178 B (178 bytes)
Hash
3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetiTynF.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetFP9DL.css

196.242.179.141

200 OK

2.3 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetFP9DL.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetFP9DL.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 20:17:14 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetmYrbR.css

196.242.179.141

200 OK

11 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetmYrbR.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with CRLF line terminators
Size
11 kB (11378 bytes)
Hash
4f62a22fc42ef6d5ac22cb65b6fb6d83
8b4f82a6148e8abff0519451d1923290facfca82
6a46deca71f0eeea0be4353f25d290deb64e86a9fc59a9c4d3d4323533978b43

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetmYrbR.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 22:02:22 GMT
Accept-Ranges: bytes
Content-Length: 11378
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheettNqzY.css

196.242.179.141

200 OK

0 B

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheettNqzY.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheettNqzY.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetDL0bW.css

196.242.179.141

200 OK

17 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetDL0bW.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (876), with CRLF line terminators
Size
17 kB (16803 bytes)
Hash
38b1c16001a92c94f104cf5254607e3f
a0030a7050e2f3b95ffc08b799a74a27bf803478
8dc2cc2ee26bb5cbca5fdb2ab26d7261dc9d9800f22ec31870ddc4ef336ca08f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetDL0bW.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 16803
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetuwDhl.css

196.242.179.141

200 OK

2.4 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetuwDhl.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetuwDhl.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8735 bytes)
Hash
23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 81791
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6819 bytes)
Hash
ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:25 GMT
age: 81784
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8597 bytes)
Hash
27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 45679
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5736 bytes)
Hash
2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:57:42 GMT
age: 81407
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:15:18 GMT
age: 47951
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 81046
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js

196.242.179.141

200 OK

9.7 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2010 12:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js

196.242.179.141

200 OK

86 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_jquery.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 19:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetwdi0p.css

196.242.179.141

200 OK

99 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetwdi0p.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
assembler source, ASCII text, with CRLF line terminators
Size
99 kB (98822 bytes)
Hash
40c364f96f5bf37c7d033aca0cefd20d
30476c80747fffb3fa8e2422c5d4c2f0d2643669
1c603dd7d173a8e937995d1a7dc25cf8efa737351dbd4de2369f72928c7c6a8c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/stylesheetwdi0p.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:24:58 GMT
Accept-Ranges: bytes
Content-Length: 98822
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js

196.242.179.141

200 OK

20 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_lightbox.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 24 Oct 2010 07:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js

196.242.179.141

200 OK

86 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (32069)
Size
86 kB (85588 bytes)
Hash
93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 03:10:10 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js

196.242.179.141

200 OK

143 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
Unicode text, UTF-8 text, with very long lines (522)
Size
143 kB (142713 bytes)
Hash
674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Fri, 24 Jul 2020 21:30:22 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/facebox/css/font-awesome.min.css

196.242.179.141

200 OK

32 kB

URL HTTP/1.1
www.ninewestnederland.com/facebox/css/font-awesome.min.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (402)
Size
32 kB (31725 bytes)
Hash
0557ee20cbec5ddc14ba0481a4ae9ca8
b95de7bc2822aebad9564b64fd10ed69c60f611c
c6d652d309878c531875964ca66aa28c95a80204df250b89ef04d90be6c4f50d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /facebox/css/font-awesome.min.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 10 May 2020 14:08:48 GMT
Accept-Ranges: bytes
Content-Length: 31725
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.ninewestnederland.com/js/slick_new.js

196.242.179.141

200 OK

1.9 kB

URL HTTP/1.1
www.ninewestnederland.com/js/slick_new.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (1920), with no line terminators
Size
1.9 kB (1920 bytes)
Hash
cf6a546feff6db84279ebdd4d2230f7b
dcfdde09278b7489541dc105c9350c7c8cccd24c
8b68bcff5c356392e2462cafe1b8deea01b92aaf65965390ad59c6065ef13f04

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/slick_new.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Tue, 10 Nov 2020 17:34:06 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/js/jquery.jxa.js

196.242.179.141

200 OK

2.7 kB

URL HTTP/1.1
www.ninewestnederland.com/js/jquery.jxa.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 17:46:06 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/js/jquery.mmenu.min.all.js

196.242.179.141

200 OK

39 kB

URL HTTP/1.1
www.ninewestnederland.com/js/jquery.mmenu.min.all.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 19:51:20 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/js/jquery-1.7.2.min.js

196.242.179.141

200 OK

158 kB

URL HTTP/1.1
www.ninewestnederland.com/js/jquery-1.7.2.min.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 20:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js

196.242.179.141

200 OK

89 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text
Size
89 kB (88955 bytes)
Hash
5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/jscript/jscript_slick.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 04 Oct 2017 05:49:30 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ninewestnederland.com/includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css

196.242.179.141

200 OK

773 B

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text
Size
773 B (773 bytes)
Hash
bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

142.250.74.35

200 OK

59 kB

URL HTTP/2
fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 59000, version 1.0\012- data
Size
59 kB (59000 bytes)
Hash
1750b32ed292c226aab4d340d0b5d5c6
6bb0d8cecc8438110f6ea3d2f7fe4f71a193bd49
f84eeec1a9a9760a55c720a15dff039b52b8ed2ecae60fa2b6951c47b5e95cbd

HTTP Headers

GET /s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ninewestnederland.com
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 09:16:26 GMT
expires: Fri, 26 Jan 2024 09:16:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 05 Feb 2019 18:09:49 GMT
content-type: font/woff2
age: 559083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.ninewestnederland.com/js/jquery.jxb.js

196.242.179.141

200 OK

158 kB

URL HTTP/1.1
www.ninewestnederland.com/js/jquery.jxb.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 22:03:44 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ninewestnederland.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0

196.242.179.141

200 OK

77 kB

URL HTTP/1.1
www.ninewestnederland.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /facebox/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ninewestnederland.com/facebox/css/font-awesome.min.css
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2016 20:51:44 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2

www.ninewestnederland.com/includes/templates/ninewestnederland/images/Mules.jpg

196.242.179.141

200 OK

240 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Mules.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
240 kB (240447 bytes)
Hash
7cd4ed6ebf2c33b4e15e3453f55957b5
d724fa09843f9d9801eb10b634e8349e8c36cc84
97b090bc32e473bcc64414a20966652cfaeabb823c967507a9bac4baf9a82094

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/Mules.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:19:48 GMT
Accept-Ranges: bytes
Content-Length: 240447
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/includes/templates/ninewestnederland/images/ninewest_subbanne.jpg

196.242.179.141

200 OK

271 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/ninewest_subbanne.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x475, components 3\012- data
Size
271 kB (271025 bytes)
Hash
792dd3d8e7c6deb6113f58863de3ac7c
615242a2cd547237dbe9a525d6042ad76ae0b93f
ed43e86838630fedeb47c4cdebf69cb051a634cfa75b7ef73865933ae6449e98

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/ninewest_subbanne.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:11:48 GMT
Accept-Ranges: bytes
Content-Length: 271025
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/includes/templates/ninewestnederland/images/Pumps.jpg

196.242.179.141

200 OK

356 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Pumps.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
356 kB (355804 bytes)
Hash
f46cb831522793989e87fe4a786fc70a
2cda5373b2529bc45b5aa354e800b9fdee79b9c5
038ad800159aa53244bde0d6ebcac9373714d18127b76d076b88c40cff7978fd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/Pumps.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:22:34 GMT
Accept-Ranges: bytes
Content-Length: 355804
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg

196.242.179.141

200 OK

96 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
96 kB (96104 bytes)
Hash
bbb828d693374718f455a61f6af419c8
7a360c52ac0780d360ccf09d33367fe77ee16cbe
e872f50de0aa1ba4c04de4ccf2181ee756856785d560d46e5b36743b48875a68

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:05:46 GMT
Accept-Ranges: bytes
Content-Length: 96104
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/includes/templates/ninewestnederland/images/Slippersbanner.jpg

196.242.179.141

200 OK

269 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Slippersbanner.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1438x810, components 3\012- data
Size
269 kB (268747 bytes)
Hash
d400b24a93aa8300737bd7ea2b4dbdfd
0128a3c14ef1a339617e80457d1fb5fe31d9d22c
f6fa1b6ca1028e75a23e2eec6c64f4f614db15a2a82da85fbbae18cab690cffa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/Slippersbanner.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:18:44 GMT
Accept-Ranges: bytes
Content-Length: 268747
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg

196.242.179.141

200 OK

38 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
38 kB (38483 bytes)
Hash
03eeb75f5c95a023d016808b46a51b6e
726132fce4e1fb0346ce3da212588ea597f71c80
069a7b1683329f94648605c07c710f2a123189ac7b1ea48766f60ea7e5c0995c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:06:18 GMT
Accept-Ranges: bytes
Content-Length: 38483
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg

196.242.179.141

200 OK

64 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
64 kB (63809 bytes)
Hash
b2819270f91d8e34a5442807a79b1d24
a96b2c1548cac46721269e3797e7845f1bde2843
b23823cc3a72d4329ba42a42c9935c9e57fe26d9b2773537fae5f278ffd1b668

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:52 GMT
Accept-Ranges: bytes
Content-Length: 63809
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/includes/templates/ninewestnederland/images/flag/EUR.gif

196.242.179.141

200 OK

1.2 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/flag/EUR.gif
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
GIF image data, version 89a, 26 x 17\012- data
Size
1.2 kB (1225 bytes)
Hash
9f620c391bc99cb47e4afb10b1b322ab
b802fc483b5982cc0b359679a655495cd7742fca
d1a4d74882ada5e6b77269361ddc0e2313d31adee86086c7c71b3f491f03f995

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/flag/EUR.gif HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Tue, 09 Jul 2019 21:02:22 GMT
Accept-Ranges: bytes
Content-Length: 1225
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg

196.242.179.141

200 OK

80 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
80 kB (80087 bytes)
Hash
4c0dd5a6e13252b7d9f584bd25274e19
1a36b086c72efa490b01502e1522ce29ccc6d45d
3a7bb880b21f849c72fa186c65ba676a5de6f3f01f92b31cc0068f326197f623

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:54 GMT
Accept-Ranges: bytes
Content-Length: 80087
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/includes/templates/ninewestnederland/images/nwlogo.jpg

196.242.179.141

200 OK

8.4 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/nwlogo.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x40, components 3\012- data
Size
8.4 kB (8402 bytes)
Hash
4559ecab409c481d16c5d6622ab01bbd
e1507265af4af82ebb33f4ba882904f1a64674a0
f71e400089b6d167dc049dca13e4624c9f778f67787f6fea4c77d255fa8b7a52

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/nwlogo.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:11:20 GMT
Accept-Ranges: bytes
Content-Length: 8402
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg

196.242.179.141

200 OK

55 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
55 kB (55424 bytes)
Hash
ed48c942ec7cd294a9ab3558915bcd9e
6e4f5c695cc763551fec678f4ec623df2434696d
506980c417b6676a3c03fcb254430eb86ce69e49a366126d11f05905993a8c12

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:56 GMT
Accept-Ranges: bytes
Content-Length: 55424
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg

196.242.179.141

200 OK

43 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
43 kB (43013 bytes)
Hash
e1ac3ff640f4977d777723108b52a027
ef0639d7437901acd26410eb9d057c39571b78c3
4967031a64a35e3b93f45b39657a4f59e0598d71d087369fcf0291a7c032908d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:12:52 GMT
Accept-Ranges: bytes
Content-Length: 43013
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg

196.242.179.141

200 OK

70 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
70 kB (69648 bytes)
Hash
b46f48911e168332dab1ac76feb08642
e657cc391a9d3121e7fa0dcde1459f7d745662d9
c5be57f88e8cd499b39cbd42830dce4a6efeebe7fd072adaa704cc13d1572fe3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:07:08 GMT
Accept-Ranges: bytes
Content-Length: 69648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg

196.242.179.141

200 OK

55 kB

URL HTTP/1.1
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Size
55 kB (54620 bytes)
Hash
9558ea8f120780240f4f5332d24261ab
667f14649db190e4b7efc1f60b744cdc751c2175
1ea72e4fab9e86301853aa97245d676f3bbf2df6644293a90039061017c9b382

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:07:16 GMT
Accept-Ranges: bytes
Content-Length: 54620
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/ORIGINAL.png

196.242.179.141

200 OK

2.5 kB

URL HTTP/1.1
www.ninewestnederland.com/images/ORIGINAL.png
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Size
2.5 kB (2523 bytes)
Hash
a91fcaeb8986e1edae219812dd585931
8556e94d75d10026ac45f4c0467d13a00c6b09fd
c04d4f5e34c73dc797704c7157364d6be610885487b2051e324cb71012fb1d31

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/ORIGINAL.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:38 GMT
Accept-Ranges: bytes
Content-Length: 2523
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

www.ninewestnederland.com/includes/templates/ninewestnederland/images/Laarzen.jpg

196.242.179.141

200 OK

419 kB

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Laarzen.jpg
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
419 kB (419161 bytes)
Hash
9ca0655e7940347b5c439eadc064421a
a5bc651d92c7804a0ee40ff1f0f5f5fad7e5c73b
0b517a1b3b68b69c5774e5dd53a5342608ca0aae4318e5ac1595324310e76ed4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/images/Laarzen.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:22:50 GMT
Accept-Ranges: bytes
Content-Length: 419161
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.ninewestnederland.com/images/Secure.png

196.242.179.141

200 OK

2.7 kB

URL HTTP/1.1
www.ninewestnederland.com/images/Secure.png
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Size
2.7 kB (2727 bytes)
Hash
51e854c83b40ecb8c5e355cc4dfc75b2
55d162a1cf70fa51dc337fef5144586b31244060
9206f76f5e88f58197a85385054cbb6eaba2ef7f0c6e45bbfe74c174ccc0bde2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/Secure.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:20 GMT
Accept-Ranges: bytes
Content-Length: 2727
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.ninewestnederland.com/images/Delivery.png

196.242.179.141

200 OK

2.6 kB

URL HTTP/1.1
www.ninewestnederland.com/images/Delivery.png
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Size
2.6 kB (2583 bytes)
Hash
42474a3bbf43b1087ae478d8232b2702
4a48ab0aa1f82b1c1b43237348a8f2620b70e73e
cdc2f853e31e8a6a775a402148aa66010365c019b9667b24eb25010b64ba04f0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/Delivery.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:28 GMT
Accept-Ranges: bytes
Content-Length: 2583
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

www.ninewestnederland.com/images/Returns.png

196.242.179.141

200 OK

2.4 kB

URL HTTP/1.1
www.ninewestnederland.com/images/Returns.png
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Size
2.4 kB (2378 bytes)
Hash
df64d174eb5bbd739ca13d6793c124e2
673f2147663de84fbd952f6925db786c4c1d4844
e2e36228f72c0c09f2a8415bcfdfc2d994389e013af7416f8095a9e04ffde8e0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/Returns.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:48 GMT
Accept-Ranges: bytes
Content-Length: 2378
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.ninewestnederland.com/favicon.ico

196.242.179.141

200 OK

1.2 kB

URL HTTP/1.1
www.ninewestnederland.com/favicon.ico
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
b78d86c84067e8044d9bbc8675b60a93
56d0069d116fd6841e092745bd10a3d4ca611d31
dffec1c58067932d4660d1bbc4c433b8ec25e5e683e7951f21b1b62e5a3bc95b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:28 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/x-icon

www.ninewestnederland.com/includes/templates/ninewestnederland/css/ajax-loader.gif

196.242.179.141

404 Not Found

0 B

URL HTTP/1.1
www.ninewestnederland.com/includes/templates/ninewestnederland/css/ajax-loader.gif
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /includes/templates/ninewestnederland/css/ajax-loader.gif HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.ninewestnederland.com/js/slick.js

196.242.179.141

200 OK

0 B

URL HTTP/1.1
www.ninewestnederland.com/js/slick.js
IP
196.242.179.141:0
ASN
#58065 Packet Exchange Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /js/slick.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 20:55:30 GMT
Accept-Ranges: bytes
Content-Length: 87042
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL