ninewestnederland.com/
196.242.179.141301 Moved Permanently 242 B IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21ffb5325d0af69ff65bfc0597b32a29
54d237d1f654fd5a5e0d0cf90baea1eeaa759ff8
0b67121b23768628b9107830584a7236c61fa8bf527a1e0a7f51f5712a32301b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 20:34:26 GMT
Server: Apache
Location: https://www.ninewestnederland.com/
Content-Length: 242
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4080
Expires: Wed, 01 Feb 2023 21:42:26 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11037
Expires: Wed, 01 Feb 2023 23:38:23 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 19:36:02 GMT
content-type: application/json
age: 3504
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8959
Expires: Wed, 01 Feb 2023 23:03:45 GMT
Date: Wed, 01 Feb 2023 20:34:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PqxN1Xv5O8RNfz0xVq7xx7Nz6oyZk1z/A8pIsbUumR5hBBN+diebUB/x6bN/NjWp/dB0HTgWEPM=
x-amz-request-id: ZWVXNXRW37NA7VDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 20:22:48 GMT
age: 698
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 20:34:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 19:41:42 GMT
age: 3165
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8448
Expires: Wed, 01 Feb 2023 22:55:15 GMT
Date: Wed, 01 Feb 2023 20:34:27 GMT
Connection: keep-alive
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KM6qtXZeAixN/bepyEIPJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3eS0EQHcfKrKN+IvhHVilxosPXY=
www.ninewestnederland.com/
196.242.179.141200 OK 30 kB URL HTTP/1.1 www.ninewestnederland.com/
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2997), with CRLF, LF line terminators
Hash 132047a2c7052b45412b059099193b00
580d86c0d7ecd9cd20a338e2088270776ce0b0fe
276412ef965202fc60d9251926ac2759f2a71e8d8581d6f48def950c958b6d8d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:27 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=qik36glovh8ffo779c44ut4is5; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheet.css
196.242.179.141200 OK 0 B URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheet.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheet.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetpSDgf.css
196.242.179.141200 OK 4.5 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetpSDgf.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b11b62e48c05feaacabdbd6cc2137426
9f8a5730f7c0ff877a410177bf658fc39a51f35b
0da43d748ae5e944752bef69e89c0ac7ce934b4e4bfc18a6b9b8a6976277769d
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetpSDgf.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 4486
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css
196.242.179.141200 OK 4.1 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash 3ba8b935597566dd8b2a6564193c958b
a6168560efb70c329a881b877e5474f3e9be7aa4
037b28cb9b61ac35a35b6c9cbc0d91a1303bc1e916103352ca357ad80d6e6d52
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetYvlG9.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 4120
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetiTynF.css
196.242.179.141200 OK 178 B URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetiTynF.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash 3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetiTynF.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetFP9DL.css
196.242.179.141200 OK 2.3 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetFP9DL.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash 77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetFP9DL.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 20:17:14 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetmYrbR.css
196.242.179.141200 OK 11 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetmYrbR.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash 4f62a22fc42ef6d5ac22cb65b6fb6d83
8b4f82a6148e8abff0519451d1923290facfca82
6a46deca71f0eeea0be4353f25d290deb64e86a9fc59a9c4d3d4323533978b43
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetmYrbR.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 22:02:22 GMT
Accept-Ranges: bytes
Content-Length: 11378
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheettNqzY.css
196.242.179.141200 OK 0 B URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheettNqzY.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheettNqzY.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetDL0bW.css
196.242.179.141200 OK 17 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetDL0bW.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (876), with CRLF line terminators
Hash 38b1c16001a92c94f104cf5254607e3f
a0030a7050e2f3b95ffc08b799a74a27bf803478
8dc2cc2ee26bb5cbca5fdb2ab26d7261dc9d9800f22ec31870ddc4ef336ca08f
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetDL0bW.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 16803
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetuwDhl.css
196.242.179.141200 OK 2.4 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetuwDhl.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash 4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetuwDhl.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:23:52 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4805
Expires: Wed, 01 Feb 2023 21:54:34 GMT
Date: Wed, 01 Feb 2023 20:34:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 81791
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:25 GMT
age: 81784
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 45679
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:57:42 GMT
age: 81407
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:15:18 GMT
age: 47951
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 81046
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js
196.242.179.141200 OK 9.7 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ISO-8859 text, with very long lines (8513), with CRLF line terminators
Hash 08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 21 Nov 2010 12:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js
196.242.179.141200 OK 86 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_jquery.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_jquery.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 19:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetwdi0p.css
196.242.179.141200 OK 99 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetwdi0p.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type assembler source, ASCII text, with CRLF line terminators
Hash 40c364f96f5bf37c7d033aca0cefd20d
30476c80747fffb3fa8e2422c5d4c2f0d2643669
1c603dd7d173a8e937995d1a7dc25cf8efa737351dbd4de2369f72928c7c6a8c
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/stylesheetwdi0p.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 14:24:58 GMT
Accept-Ranges: bytes
Content-Length: 98822
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js
196.242.179.141200 OK 20 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_lightbox.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ISO-8859 text, with very long lines (797), with CRLF line terminators
Hash 3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_lightbox.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 24 Oct 2010 07:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js
196.242.179.141200 OK 86 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (32069)
Hash 93c4b563622d278b1065690a3d93709e
f00d128cf399f17322b1d4ee02fa8cd892e081bd
601c06474a16936670a0477da2a777ccfca3301e3857204ec9b55dfa2c45287e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2020 03:10:10 GMT
Accept-Ranges: bytes
Content-Length: 85588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js
196.242.179.141200 OK 143 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type Unicode text, UTF-8 text, with very long lines (522)
Size 143 kB (142713 bytes)
Hash 674b896ffae27a70571b1fc5bd65919d
63c8c73c7e5ba15aa940aba8f1c43b6150a9f941
a7c32e459eae73c136b6eb07711a69b2cc7b557c085fc232dd42db7fb50e9374
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_2.2.0.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:28 GMT
Server: Apache
Last-Modified: Fri, 24 Jul 2020 21:30:22 GMT
Accept-Ranges: bytes
Content-Length: 142713
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/facebox/css/font-awesome.min.css
196.242.179.141200 OK 32 kB URL HTTP/1.1 www.ninewestnederland.com/facebox/css/font-awesome.min.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (402)
Hash 0557ee20cbec5ddc14ba0481a4ae9ca8
b95de7bc2822aebad9564b64fd10ed69c60f611c
c6d652d309878c531875964ca66aa28c95a80204df250b89ef04d90be6c4f50d
Analyzer Verdict Alert quad9 Sinkholed
GET /facebox/css/font-awesome.min.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Sun, 10 May 2020 14:08:48 GMT
Accept-Ranges: bytes
Content-Length: 31725
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.ninewestnederland.com/js/slick_new.js
196.242.179.141200 OK 1.9 kB URL HTTP/1.1 www.ninewestnederland.com/js/slick_new.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (1920), with no line terminators
Hash cf6a546feff6db84279ebdd4d2230f7b
dcfdde09278b7489541dc105c9350c7c8cccd24c
8b68bcff5c356392e2462cafe1b8deea01b92aaf65965390ad59c6065ef13f04
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/slick_new.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Tue, 10 Nov 2020 17:34:06 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/js/jquery.jxa.js
196.242.179.141200 OK 2.7 kB URL HTTP/1.1 www.ninewestnederland.com/js/jquery.jxa.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with CRLF line terminators
Hash ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxa.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 17:46:06 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/js/jquery.mmenu.min.all.js
196.242.179.141200 OK 39 kB URL HTTP/1.1 www.ninewestnederland.com/js/jquery.mmenu.min.all.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (401)
Hash 5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 19:51:20 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/js/jquery-1.7.2.min.js
196.242.179.141200 OK 158 kB URL HTTP/1.1 www.ninewestnederland.com/js/jquery-1.7.2.min.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (749)
Size 158 kB (157648 bytes)
Hash 6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 20:22:20 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js
196.242.179.141200 OK 89 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/jscript/jscript_slick.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash 5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /includes/templates/ninewestnederland/jscript/jscript_slick.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 04 Oct 2017 05:49:30 GMT
Accept-Ranges: bytes
Content-Length: 88955
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ninewestnederland.com/includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css
196.242.179.141200 OK 773 B URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Hash bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/print_stylesheetyHZXp.css HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 10 Apr 2014 07:36:02 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
142.250.74.35200 OK 59 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 59000, version 1.0\012- data
Hash 1750b32ed292c226aab4d340d0b5d5c6
6bb0d8cecc8438110f6ea3d2f7fe4f71a193bd49
f84eeec1a9a9760a55c720a15dff039b52b8ed2ecae60fa2b6951c47b5e95cbd
GET /s/materialicons/v43/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ninewestnederland.com
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 09:16:26 GMT
expires: Fri, 26 Jan 2024 09:16:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 05 Feb 2019 18:09:49 GMT
content-type: font/woff2
age: 559083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ninewestnederland.com/js/jquery.jxb.js
196.242.179.141200 OK 158 kB URL HTTP/1.1 www.ninewestnederland.com/js/jquery.jxb.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type ASCII text, with very long lines (749)
Size 158 kB (157648 bytes)
Hash 6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.jxb.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 22:03:44 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 20:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ninewestnederland.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
196.242.179.141200 OK 77 kB URL HTTP/1.1 www.ninewestnederland.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /facebox/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ninewestnederland.com/facebox/css/font-awesome.min.css
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2016 20:51:44 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Mules.jpg
196.242.179.141200 OK 240 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/Mules.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 240 kB (240447 bytes)
Hash 7cd4ed6ebf2c33b4e15e3453f55957b5
d724fa09843f9d9801eb10b634e8349e8c36cc84
97b090bc32e473bcc64414a20966652cfaeabb823c967507a9bac4baf9a82094
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/Mules.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:19:48 GMT
Accept-Ranges: bytes
Content-Length: 240447
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/includes/templates/ninewestnederland/images/ninewest_subbanne.jpg
196.242.179.141200 OK 271 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/ninewest_subbanne.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x475, components 3\012- data
Size 271 kB (271025 bytes)
Hash 792dd3d8e7c6deb6113f58863de3ac7c
615242a2cd547237dbe9a525d6042ad76ae0b93f
ed43e86838630fedeb47c4cdebf69cb051a634cfa75b7ef73865933ae6449e98
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/ninewest_subbanne.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:11:48 GMT
Accept-Ranges: bytes
Content-Length: 271025
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Pumps.jpg
196.242.179.141200 OK 356 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/Pumps.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 356 kB (355804 bytes)
Hash f46cb831522793989e87fe4a786fc70a
2cda5373b2529bc45b5aa354e800b9fdee79b9c5
038ad800159aa53244bde0d6ebcac9373714d18127b76d076b88c40cff7978fd
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/Pumps.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:22:34 GMT
Accept-Ranges: bytes
Content-Length: 355804
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg
196.242.179.141200 OK 96 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash bbb828d693374718f455a61f6af419c8
7a360c52ac0780d360ccf09d33367fe77ee16cbe
e872f50de0aa1ba4c04de4ccf2181ee756856785d560d46e5b36743b48875a68
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Maybe%20Espadrilles%20Zilver%20N%2033_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:05:46 GMT
Accept-Ranges: bytes
Content-Length: 96104
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Slippersbanner.jpg
196.242.179.141200 OK 269 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/Slippersbanner.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1438x810, components 3\012- data
Size 269 kB (268747 bytes)
Hash d400b24a93aa8300737bd7ea2b4dbdfd
0128a3c14ef1a339617e80457d1fb5fe31d9d22c
f6fa1b6ca1028e75a23e2eec6c64f4f614db15a2a82da85fbbae18cab690cffa
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/Slippersbanner.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:18:44 GMT
Accept-Ranges: bytes
Content-Length: 268747
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg
196.242.179.141200 OK 38 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 03eeb75f5c95a023d016808b46a51b6e
726132fce4e1fb0346ce3da212588ea597f71c80
069a7b1683329f94648605c07c710f2a123189ac7b1ea48766f60ea7e5c0995c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Ali%20Pointy%20Toe%20Mules%20Geel%20%2074_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:06:18 GMT
Accept-Ranges: bytes
Content-Length: 38483
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg
196.242.179.141200 OK 64 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash b2819270f91d8e34a5442807a79b1d24
a96b2c1548cac46721269e3797e7845f1bde2843
b23823cc3a72d4329ba42a42c9935c9e57fe26d9b2773537fae5f278ffd1b668
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Dance%20Ankle%20Strap%20Sandalen%20320_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:52 GMT
Accept-Ranges: bytes
Content-Length: 63809
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/includes/templates/ninewestnederland/images/flag/EUR.gif
196.242.179.141200 OK 1.2 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/flag/EUR.gif
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type GIF image data, version 89a, 26 x 17\012- data
Hash 9f620c391bc99cb47e4afb10b1b322ab
b802fc483b5982cc0b359679a655495cd7742fca
d1a4d74882ada5e6b77269361ddc0e2313d31adee86086c7c71b3f491f03f995
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/flag/EUR.gif HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Tue, 09 Jul 2019 21:02:22 GMT
Accept-Ranges: bytes
Content-Length: 1225
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg
196.242.179.141200 OK 80 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 4c0dd5a6e13252b7d9f584bd25274e19
1a36b086c72efa490b01502e1522ce29ccc6d45d
3a7bb880b21f849c72fa186c65ba676a5de6f3f01f92b31cc0068f326197f623
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Candid%20Ankle%20Wrap%20Sandalen%20324_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:54 GMT
Accept-Ranges: bytes
Content-Length: 80087
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/includes/templates/ninewestnederland/images/nwlogo.jpg
196.242.179.141200 OK 8.4 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/nwlogo.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 240x40, components 3\012- data
Hash 4559ecab409c481d16c5d6622ab01bbd
e1507265af4af82ebb33f4ba882904f1a64674a0
f71e400089b6d167dc049dca13e4624c9f778f67787f6fea4c77d255fa8b7a52
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/nwlogo.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:11:20 GMT
Accept-Ranges: bytes
Content-Length: 8402
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg
196.242.179.141200 OK 55 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash ed48c942ec7cd294a9ab3558915bcd9e
6e4f5c695cc763551fec678f4ec623df2434696d
506980c417b6676a3c03fcb254430eb86ce69e49a366126d11f05905993a8c12
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Agnes%20Ankle%20Wrap%20Sandalen%20%20327_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:56 GMT
Accept-Ranges: bytes
Content-Length: 55424
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg
196.242.179.141200 OK 43 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash e1ac3ff640f4977d777723108b52a027
ef0639d7437901acd26410eb9d057c39571b78c3
4967031a64a35e3b93f45b39657a4f59e0598d71d087369fcf0291a7c032908d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Amore%20d%20Orsay%20Ballerina%20Sc%20469_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:12:52 GMT
Accept-Ranges: bytes
Content-Length: 43013
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg
196.242.179.141200 OK 70 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash b46f48911e168332dab1ac76feb08642
e657cc391a9d3121e7fa0dcde1459f7d745662d9
c5be57f88e8cd499b39cbd42830dce4a6efeebe7fd072adaa704cc13d1572fe3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20After%20Slingback%20Pumps%20Zwar%201033_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:07:08 GMT
Accept-Ranges: bytes
Content-Length: 69648
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg
196.242.179.141200 OK 55 kB URL HTTP/1.1 www.ninewestnederland.com/images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1000x1000, components 3\012- data
Hash 9558ea8f120780240f4f5332d24261ab
667f14649db190e4b7efc1f60b744cdc751c2175
1ea72e4fab9e86301853aa97245d676f3bbf2df6644293a90039061017c9b382
Analyzer Verdict Alert quad9 Sinkholed
GET /images/large/ninewestnederland/Nine%20West%20Abaline%20Pointy%20Toe%20Pumps%20Z%201042_ZOOM.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:07:16 GMT
Accept-Ranges: bytes
Content-Length: 54620
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/ORIGINAL.png
196.242.179.141200 OK 2.5 kB URL HTTP/1.1 www.ninewestnederland.com/images/ORIGINAL.png
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash a91fcaeb8986e1edae219812dd585931
8556e94d75d10026ac45f4c0467d13a00c6b09fd
c04d4f5e34c73dc797704c7157364d6be610885487b2051e324cb71012fb1d31
Analyzer Verdict Alert quad9 Sinkholed
GET /images/ORIGINAL.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:38 GMT
Accept-Ranges: bytes
Content-Length: 2523
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.ninewestnederland.com/includes/templates/ninewestnederland/images/Laarzen.jpg
196.242.179.141200 OK 419 kB URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/images/Laarzen.jpg
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 419 kB (419161 bytes)
Hash 9ca0655e7940347b5c439eadc064421a
a5bc651d92c7804a0ee40ff1f0f5f5fad7e5c73b
0b517a1b3b68b69c5774e5dd53a5342608ca0aae4318e5ac1595324310e76ed4
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/images/Laarzen.jpg HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Mon, 26 Jul 2021 22:22:50 GMT
Accept-Ranges: bytes
Content-Length: 419161
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.ninewestnederland.com/images/Secure.png
196.242.179.141200 OK 2.7 kB URL HTTP/1.1 www.ninewestnederland.com/images/Secure.png
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash 51e854c83b40ecb8c5e355cc4dfc75b2
55d162a1cf70fa51dc337fef5144586b31244060
9206f76f5e88f58197a85385054cbb6eaba2ef7f0c6e45bbfe74c174ccc0bde2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Secure.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:20 GMT
Accept-Ranges: bytes
Content-Length: 2727
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.ninewestnederland.com/images/Delivery.png
196.242.179.141200 OK 2.6 kB URL HTTP/1.1 www.ninewestnederland.com/images/Delivery.png
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash 42474a3bbf43b1087ae478d8232b2702
4a48ab0aa1f82b1c1b43237348a8f2620b70e73e
cdc2f853e31e8a6a775a402148aa66010365c019b9667b24eb25010b64ba04f0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Delivery.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:28 GMT
Accept-Ranges: bytes
Content-Length: 2583
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.ninewestnederland.com/images/Returns.png
196.242.179.141200 OK 2.4 kB URL HTTP/1.1 www.ninewestnederland.com/images/Returns.png
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash df64d174eb5bbd739ca13d6793c124e2
673f2147663de84fbd952f6925db786c4c1d4844
e2e36228f72c0c09f2a8415bcfdfc2d994389e013af7416f8095a9e04ffde8e0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/Returns.png HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 23 Jun 2021 18:11:48 GMT
Accept-Ranges: bytes
Content-Length: 2378
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.ninewestnederland.com/favicon.ico
196.242.179.141200 OK 1.2 kB URL HTTP/1.1 www.ninewestnederland.com/favicon.ico
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash b78d86c84067e8044d9bbc8675b60a93
56d0069d116fd6841e092745bd10a3d4ca611d31
dffec1c58067932d4660d1bbc4c433b8ec25e5e683e7951f21b1b62e5a3bc95b
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Last-Modified: Wed, 14 Jul 2021 13:10:28 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/x-icon
www.ninewestnederland.com/includes/templates/ninewestnederland/css/ajax-loader.gif
196.242.179.141404 Not Found 0 B URL HTTP/1.1 www.ninewestnederland.com/includes/templates/ninewestnederland/css/ajax-loader.gif
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Analyzer Verdict Alert quad9 Sinkholed
GET /includes/templates/ninewestnederland/css/ajax-loader.gif HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/includes/templates/ninewestnederland/css/stylesheetYvlG9.css
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 01 Feb 2023 20:34:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
www.ninewestnederland.com/js/slick.js
196.242.179.141200 OK 0 B URL HTTP/1.1 www.ninewestnederland.com/js/slick.js
IP 196.242.179.141:0
ASN #58065 Packet Exchange Limited
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/slick.js HTTP/1.1
Host: www.ninewestnederland.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ninewestnederland.com/
Cookie: zenid=qik36glovh8ffo779c44ut4is5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 20:34:29 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 20:55:30 GMT
Accept-Ranges: bytes
Content-Length: 87042
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript