e-parentheses.be/
176.31.66.138301 Moved Permanently 162 B IP 176.31.66.138:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 29 Jan 2023 04:12:07 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.e-parentheses.be/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17593
Expires: Sun, 29 Jan 2023 09:05:21 GMT
Date: Sun, 29 Jan 2023 04:12:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19676
Expires: Sun, 29 Jan 2023 09:40:04 GMT
Date: Sun, 29 Jan 2023 04:12:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12713
Expires: Sun, 29 Jan 2023 07:44:01 GMT
Date: Sun, 29 Jan 2023 04:12:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 03:35:33 GMT
content-type: application/json
age: 2195
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8qteyR+3LVr9dbDDZwihAeYmVMHr/QfoIE3xdQQDqkTNEqokC7iPgOrjU69dwYNzKHcfUzh+1mAM8XMB5sh7Sw==
x-amz-request-id: G165XMCBHE8ZZ4SD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 03:21:14 GMT
age: 3054
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7a49434a72eb6ed0a98d62c29e103553
8ee646c75693e77494c9e75c915320b97704710e
8a59b1abb7a41452acf2c3048c9b6e6425d73a6a3e396c4d48128a1b69736e64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A59B1ABB7A41452ACF2C3048C9B6E6425D73A6A3E396C4D48128A1B69736E64"
Last-Modified: Thu, 26 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Sun, 29 Jan 2023 10:11:10 GMT
Date: Sun, 29 Jan 2023 04:12:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 03:41:41 GMT
age: 1827
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18504
Expires: Sun, 29 Jan 2023 09:20:32 GMT
Date: Sun, 29 Jan 2023 04:12:08 GMT
Connection: keep-alive
www.e-parentheses.be/
176.31.66.138200 OK 13 kB IP 176.31.66.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7966), with CRLF, LF line terminators
Hash 06944b0b033d70ca9c9cff890078f027
d7b83c00f0ceabc7c3e9b18db608ce599a7a933b
23c9157e444d1cf786f6c4e647ed67b06bbba575ee08b4642f139228c229a652
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:08 GMT
content-type: text/html; charset=utf-8
content-length: 12757
p3p: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
powered-by: PrestaShop
set-cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH; expires=Sat, 18-Feb-2023 04:12:08 GMT; Max-Age=1728000; path=/; domain=www.e-parentheses.be; secure; HttpOnly
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.e-parentheses.be/img/e-parentheses-logo-1662043480.jpg
176.31.66.138200 OK 14 kB URL HTTP/2 www.e-parentheses.be/img/e-parentheses-logo-1662043480.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 300x300, components 3\012- data
Hash b9933a5c0d098d9b174aae393f43f1d5
c62f462647e7b69db86a6dcc1e5bf0848da4c98d
a0ca4da65c08830fb50b91fd635163f66c90460ab78e2e14b00ba57795b5fa10
GET /img/e-parentheses-logo-1662043480.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 13835
last-modified: Thu, 01 Sep 2022 14:44:40 GMT
etag: "6310c558-360b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.e-parentheses.be/themes/default-bootstrap/cache/v_17_2150a51b0823c6abb32adacac5e7674f_all.css
176.31.66.138200 OK 45 kB URL HTTP/2 www.e-parentheses.be/themes/default-bootstrap/cache/v_17_2150a51b0823c6abb32adacac5e7674f_all.css
IP 176.31.66.138:0
File type ASCII text, with very long lines (65518)
Hash 042b2e20e4d8b0d58bcdfcc7eae9e85d
1306c03b9808d5f7ad3f104c49b7d4fabae6c01c
0610fc7d61ac79019d8a63888b480e5d9c5e3a0d2b13af85ce9810b2b42b5615
GET /themes/default-bootstrap/cache/v_17_2150a51b0823c6abb32adacac5e7674f_all.css HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 17:27:52 GMT
vary: Accept-Encoding
etag: W/"63824c98-44c0d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/homeslider/images/6c04d5698aa3d75f84046a05c0f75b8dba00fc8a_thumbnail_IMG_0205.jpg
176.31.66.138200 OK 30 kB URL HTTP/2 www.e-parentheses.be/modules/homeslider/images/6c04d5698aa3d75f84046a05c0f75b8dba00fc8a_thumbnail_IMG_0205.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 320x240, components 3\012- data
Hash 9635e8fbc108db91d4e3a4b768596b0e
d0586be5c147dcd1a4f6c1cf315d05922f1b43ae
7328f0b3560447cd8f68559fbf9d704fc9e0b768485aaa45c3a853d43d72488b
GET /modules/homeslider/images/6c04d5698aa3d75f84046a05c0f75b8dba00fc8a_thumbnail_IMG_0205.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 29621
last-modified: Sat, 26 Nov 2022 13:55:43 GMT
etag: "63821adf-73b5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/homeslider/images/23e2d69c5eb5a9e7a96d9c855a01ed18d058273b_309778950_1153580728899855_6714512709014031675_n.jpg
176.31.66.138200 OK 396 kB URL HTTP/2 www.e-parentheses.be/modules/homeslider/images/23e2d69c5eb5a9e7a96d9c855a01ed18d058273b_309778950_1153580728899855_6714512709014031675_n.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 1536x2048, components 3\012- data
Size 396 kB (395807 bytes)
Hash 9467a9e9c141083be57b609579f573ee
d35467a599b0e439035f28ac29d74d59f7ac95fc
c40e409123997761eba11212aa3b024ad55eacdccf3304fb3412b99399047e4f
GET /modules/homeslider/images/23e2d69c5eb5a9e7a96d9c855a01ed18d058273b_309778950_1153580728899855_6714512709014031675_n.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 395807
last-modified: Sat, 26 Nov 2022 14:32:20 GMT
etag: "63822374-60a1f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.34.31.66101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.31.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UGxJZNaIsWlTAJx+Y1CNyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3h4PYmMEvL1Ony+f6D9zu8VYTDI=
www.e-parentheses.be/modules/blockbanner/img/96260152da775d86379e0edaa5be9c00.gif
176.31.66.138200 OK 76 kB URL HTTP/2 www.e-parentheses.be/modules/blockbanner/img/96260152da775d86379e0edaa5be9c00.gif
IP 176.31.66.138:0
File type GIF image data, version 89a, 1170 x 65\012- data
Hash 1ea43828e288d4f045923494cf80fda5
4783556a41b42831167d0721204a2d7515033701
07203f170fee4ec905e4687b7657439a6a1d5806b1ee62483529f80502851893
GET /modules/blockbanner/img/96260152da775d86379e0edaa5be9c00.gif HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/gif
content-length: 76309
last-modified: Sun, 02 Oct 2022 16:03:30 GMT
etag: "6339b652-12a15"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.e-parentheses.be/15580-home_default/chalk-paint-fenouil-500-ml.jpg
176.31.66.138200 OK 40 kB URL HTTP/2 www.e-parentheses.be/15580-home_default/chalk-paint-fenouil-500-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 9df8bd71f65ad1386cf2dc0f712f2632
7754b7f93123314efe844ba99d068766345d4789
a392a2d1fe093f12e2dbdd93748d6823c871d1f1f8f2650ac646d4ea1c6fe4fe
GET /15580-home_default/chalk-paint-fenouil-500-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 40391
last-modified: Tue, 06 Dec 2022 17:28:10 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15581-home_default/chalk-paint-lin-500-ml.jpg
176.31.66.138200 OK 39 kB URL HTTP/2 www.e-parentheses.be/15581-home_default/chalk-paint-lin-500-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash a304f6927843b60010d9d1fd0bcbe42b
a3fc4fd23ab25bc6b01859508d24264bb81597c6
61ca2487e2dbaaf4bb8e06682c476cbcf04431138c4e5901a57dc1d2856a5e23
GET /15581-home_default/chalk-paint-lin-500-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 38635
last-modified: Tue, 06 Dec 2022 17:29:42 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15475-home_default/posh-chalk-patina-byzantine-gold-30-ml.jpg
176.31.66.138200 OK 14 kB URL HTTP/2 www.e-parentheses.be/15475-home_default/posh-chalk-patina-byzantine-gold-30-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 80725f1a46fec092c13c139ea1b5f7b0
101680d026af2c07ce4d4c1446a1fa78cd21fc4d
a724647012f58a28e1f11959bef38df54fc497cb8ca460894805dc08d1836464
GET /15475-home_default/posh-chalk-patina-byzantine-gold-30-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 14287
last-modified: Tue, 12 Jul 2022 16:41:00 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15582-home_default/chalk-paint-nude-500-ml.jpg
176.31.66.138200 OK 49 kB URL HTTP/2 www.e-parentheses.be/15582-home_default/chalk-paint-nude-500-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 999591c8bb2e875aa91ee09f9493e259
f2011bfb7aaf654ccb4fe109986bc31be9e5e995
3207b9ff80a470b7df2e3de7754fcce0db1150b16af6ea501e8b32760c8c3135
GET /15582-home_default/chalk-paint-nude-500-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 48739
last-modified: Tue, 06 Dec 2022 17:35:13 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15456-home_default/patine-d-or-bois-velours-taupe-250-ml.jpg
176.31.66.138200 OK 18 kB URL HTTP/2 www.e-parentheses.be/15456-home_default/patine-d-or-bois-velours-taupe-250-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash fbacfbca0ce90bbff3aa4de758c83774
c3a8ed52ebbb9c559dabfb7aea0cb64362368c8a
1f99cc6e6445c07cb3065ed0a87399e495fff23e0d0f65fada9e56323b44e70f
GET /15456-home_default/patine-d-or-bois-velours-taupe-250-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 17508
last-modified: Tue, 12 Jul 2022 15:05:11 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15571-home_default/decoratvie-chips-14x14-cm-christmas-rennes.jpg
176.31.66.138200 OK 17 kB URL HTTP/2 www.e-parentheses.be/15571-home_default/decoratvie-chips-14x14-cm-christmas-rennes.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 250x250, components 3\012- data
Hash 967fde053bfec153d52fff5f995eb30a
3b7911a0d13387e9da4c0d90287e4d2487b4a73d
680624a423aca8f132b826b0dd35e66e6c4fdd48a34d1644a084476d8f6a38e8
GET /15571-home_default/decoratvie-chips-14x14-cm-christmas-rennes.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 17412
last-modified: Thu, 27 Oct 2022 11:12:32 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/homeslider/images/b2b30856dca3c220aac178478c77de2fe5246b3e_boite%20a%20bijoux.jpg
176.31.66.138200 OK 388 kB URL HTTP/2 www.e-parentheses.be/modules/homeslider/images/b2b30856dca3c220aac178478c77de2fe5246b3e_boite%20a%20bijoux.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 960x1280, components 3\012- data
Size 388 kB (388349 bytes)
Hash 06cd14bab92504bb572e81901701ea8b
a5303d751991257c44ef4031593672f6ffaaeaef
cbd7fdd24a0cbb5dadfd26d6c2dfa9a997b02ecd6a069af9644600099da87401
GET /modules/homeslider/images/b2b30856dca3c220aac178478c77de2fe5246b3e_boite%20a%20bijoux.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 388349
last-modified: Sat, 26 Nov 2022 14:31:23 GMT
etag: "6382233b-5ecfd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.e-parentheses.be/15444-home_default/patine-d-or-bois-velours-bulles-de-champagne-250-ml.jpg
176.31.66.138200 OK 17 kB URL HTTP/2 www.e-parentheses.be/15444-home_default/patine-d-or-bois-velours-bulles-de-champagne-250-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash cd6b8d181a500346721041a920200fef
45129cd87c46563c233804826c8bd66758d0de3f
a7db81db3060eaf25576d92792b0a03c3d9ab2bcc228c90a54b6b0007828e705
GET /15444-home_default/patine-d-or-bois-velours-bulles-de-champagne-250-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 17176
last-modified: Tue, 12 Jul 2022 14:31:53 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15418-home_default/patine-d-or-bois-mat-cafe-creme-250-ml.jpg
176.31.66.138200 OK 18 kB URL HTTP/2 www.e-parentheses.be/15418-home_default/patine-d-or-bois-mat-cafe-creme-250-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash f349fe9a3f93c44560f65fccdb9117ed
020a26672177bb2c5257aaad3c8262f8e9c8bb79
92dc7095760d390cf759f5cdd5bdef8b8d28879d97e994baf57a9b66bdda2634
GET /15418-home_default/patine-d-or-bois-mat-cafe-creme-250-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 18380
last-modified: Mon, 04 Jul 2022 17:49:45 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15432-home_default/patine-d-or-bois-mat-terre-de-sienne-250-ml.jpg
176.31.66.138200 OK 17 kB URL HTTP/2 www.e-parentheses.be/15432-home_default/patine-d-or-bois-mat-terre-de-sienne-250-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 54e11a9214652d8d235d78a217b0b106
503e8929a4a95910fef59b094d66fb59bbdae44c
799b64515ccaf8d360a6b0117182c1acb049f2bcbf161d3dfc82b322f0609263
GET /15432-home_default/patine-d-or-bois-mat-terre-de-sienne-250-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 17013
last-modified: Mon, 11 Jul 2022 15:53:27 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15440-home_default/patine-d-or-bois-velours-blanc-de-gris-250-ml.jpg
176.31.66.138200 OK 18 kB URL HTTP/2 www.e-parentheses.be/15440-home_default/patine-d-or-bois-velours-blanc-de-gris-250-ml.jpg
IP 176.31.66.138:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 85b3987c71eed37b6051d67507210fbb
feabd3a41fab8008479cc870503322c55c6ebdb7
93c89ddace508fc67ca51a153b2ad7e06ab85688b41cd19d66b8055aef13a589
GET /15440-home_default/patine-d-or-bois-velours-blanc-de-gris-250-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 18173
last-modified: Tue, 12 Jul 2022 14:20:50 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/themeconfigurator/img/500c2c382c4ebf4b070c06ddb26888dd55e63bb2_30962127333517404250419564398705218913182645n.jpg
176.31.66.138200 OK 752 kB URL HTTP/2 www.e-parentheses.be/modules/themeconfigurator/img/500c2c382c4ebf4b070c06ddb26888dd55e63bb2_30962127333517404250419564398705218913182645n.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 2048x1536, components 3\012- data
Size 752 kB (751889 bytes)
Hash af3ea9b1e186d8ab3c92fae8a479573e
de66cff7867c30c0933337361ca817496cd1ce88
53272f3e26cf90d49319fa9e20ae1b8ca4ca91874cbdfc873a0fdd9a9633d110
GET /modules/themeconfigurator/img/500c2c382c4ebf4b070c06ddb26888dd55e63bb2_30962127333517404250419564398705218913182645n.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 751889
last-modified: Sun, 02 Oct 2022 15:28:37 GMT
etag: "6339ae25-b7911"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,600&subset=latin,latin-ext
142.250.74.106200 OK 45 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,600&subset=latin,latin-ext
IP 142.250.74.106:0
Hash 05693df487394dc3606d8cc67c1c34ea
f745c34fa912f3ebc1bcb069bc741254073b6e4a
c1d10d37e8d02ca8f3b3df81af5009a8ad7300179c852b94167e5e7b6287adaa
GET /css?family=Open+Sans:300,600&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 04:12:09 GMT
date: Sun, 29 Jan 2023 04:12:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.e-parentheses.be/themes/default-bootstrap/cache/v_17_fb10c57a51046c930a68876e560df12d.js
176.31.66.138200 OK 84 kB URL HTTP/2 www.e-parentheses.be/themes/default-bootstrap/cache/v_17_fb10c57a51046c930a68876e560df12d.js
IP 176.31.66.138:0
File type ASCII text, with very long lines (32341)
Hash 58c8a4f060d18141bae4ea5ae4f92d6f
50fa727be8052b4ce5bc4e770a49105820cfc255
39deb7537b9d54dc5827c539f62e746cf9bac94733ab643187133ea93628f8bb
Analyzer Verdict Alert fortinet Phishing
GET /themes/default-bootstrap/cache/v_17_fb10c57a51046c930a68876e560df12d.js HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 17:27:52 GMT
vary: Accept-Encoding
etag: W/"63824c98-47549"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto
142.250.74.106200 OK 595 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto
IP 142.250.74.106:0
Hash 5158732b9d9f0bc9b77df041f877ee4b
716dd913260344395810944ddf9f773460f4865c
d6b7b720ab444b1f717e3536b8690f091b9d625ce5135c6c0f8772664bace7b4
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 04:12:09 GMT
date: Sun, 29 Jan 2023 04:12:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.e-parentheses.be/15479-home_default/moule-pour-modelage-lady-vagabond.jpg
176.31.66.138200 OK 23 kB URL HTTP/2 www.e-parentheses.be/15479-home_default/moule-pour-modelage-lady-vagabond.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 270x270, components 3\012- data
Hash dac45d63a2bf4955bc250647d17fa0c6
a15a98270bf435405d16c9295a16d454818112cf
a53c82ac15497619b99b64d62167160a4dbf6d5b4e30046693b737cdd7494770
GET /15479-home_default/moule-pour-modelage-lady-vagabond.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 23410
last-modified: Thu, 14 Jul 2022 14:28:51 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/15490-home_default/gesso-platre-150-ml.jpg
176.31.66.138200 OK 24 kB URL HTTP/2 www.e-parentheses.be/15490-home_default/gesso-platre-150-ml.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 270x270, components 3\012- data
Hash 4590940417a4bc5bc9fb38071a4a54fd
5ff9d4d7ba6df58c0adc83f1ccbf97439073e158
c33c9c31dcb0a8b3882b748a305459b57e61ab59105ca4d9334f771d03e83198
GET /15490-home_default/gesso-platre-150-ml.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 23813
last-modified: Thu, 14 Jul 2022 17:17:09 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/themeconfigurator/img/e1579f524e7f7e3b022c2e776b3a23a23adcfc9d_3099850276334506650240498274117753487009748n.jpg
176.31.66.138200 OK 636 kB URL HTTP/2 www.e-parentheses.be/modules/themeconfigurator/img/e1579f524e7f7e3b022c2e776b3a23a23adcfc9d_3099850276334506650240498274117753487009748n.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 2048x1536, components 3\012- data
Size 636 kB (636146 bytes)
Hash e158c14e22f1d01b730dcf62d9dd2bf9
8784f8d9d077e4b1cae8a94982cd40616858033d
03e5d4d00c516aa8e642153295957319b32b2b4d674c147ac7fbc38ad1b1eed2
GET /modules/themeconfigurator/img/e1579f524e7f7e3b022c2e776b3a23a23adcfc9d_3099850276334506650240498274117753487009748n.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 636146
last-modified: Sun, 02 Oct 2022 15:33:52 GMT
etag: "6339af60-9b4f2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.e-parentheses.be/modules/themeconfigurator/img/a69a3f4d02e5f65185068f9f11fa9f4df4a6fae4_310226267490496549412396747036640861049210n.jpg
176.31.66.138200 OK 712 kB URL HTTP/2 www.e-parentheses.be/modules/themeconfigurator/img/a69a3f4d02e5f65185068f9f11fa9f4df4a6fae4_310226267490496549412396747036640861049210n.jpg
IP 176.31.66.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 2048x1536, components 3\012- data
Size 712 kB (711884 bytes)
Hash 22a358e73c1e99f3967b64811657d157
e84bc993a3e137f63fbb9fe58f943804743981a8
aa0d3627aa0698900cf7ea7cfd226c2e08d62d0e72b3777ca2ba4776ca9b3b20
GET /modules/themeconfigurator/img/a69a3f4d02e5f65185068f9f11fa9f4df4a6fae4_310226267490496549412396747036640861049210n.jpg HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/jpeg
content-length: 711884
last-modified: Sun, 02 Oct 2022 15:29:37 GMT
etag: "6339ae61-adccc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-parentheses.be
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 465568
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.e-parentheses.be
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 290295
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.e-parentheses.be/themes/default-bootstrap/fonts/fontawesome-webfont.woff2?v=4.3.0
176.31.66.138200 OK 57 kB URL HTTP/2 www.e-parentheses.be/themes/default-bootstrap/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 176.31.66.138:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /themes/default-bootstrap/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.e-parentheses.be/themes/default-bootstrap/cache/v_17_2150a51b0823c6abb32adacac5e7674f_all.css
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: font/woff2
content-length: 56780
last-modified: Mon, 24 Oct 2022 13:40:07 GMT
etag: "635695b7-ddcc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2585
Cache-Control: max-age=137659
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 18:26:28 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 8c425e99f86556d9331728a605f7f7b5
ccea314daae8fdfbaa6cbdb7b81a60458591bd52
fcc7986e65d7dd8124f372ab0247804333a077c84d04e53b74b27f5b13a6d24f
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d9070c7217332b2200ea4650d94dc6f3
etag: "059e90a24de9964ce93f6b82bf26b202"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 29 Jan 2023 04:27:00 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: jEJemfhlVtkzFyimBff3tQ==
x-fb-debug: FxMetOtIgvCQLTtKZNtxBl4I+VIqxMRPxEsChpK9qrpLjDijhmm1kIqbzdbLInTy3VOdNKaupOZiu4259sbM4g==
content-length: 1685
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.e-parentheses.be/img/favicon.ico?1668349931
176.31.66.138200 OK 894 B URL HTTP/2 www.e-parentheses.be/img/favicon.ico?1668349931
IP 176.31.66.138:0
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash 2c78ee74ed2ef7a09446044a48affbed
df46b00a76a54565c7af2f3c9aa937a7a4d54800
33136b6e2d7dc831ce4014f380492f0e3f748550cf2e4819181bb0edd7e9c409
Analyzer Verdict Alert fortinet Phishing
GET /img/favicon.ico?1668349931 HTTP/1.1
Host: www.e-parentheses.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Cookie: PrestaShop-14238928d7f9c8181f4c9ba00fe70965=50bf18d19af00745dba5548fd6b2e2efa08e0b8f7895bcd92ee5f90fc76a2e95%3ApXarTs0k%2BatungBvT2XXo%2B4JgRyTuK%2BEvqlA24QL3ElvizNwSNy%2B4ke4TAB5kD2JNvvdPM9t7cWFKoUpDx7bBn7k8f5ZLyYbJx5cjwu8uHn8IZDba0nD080aOTg4kjZlsywA%2B66LwOKOHHExtph0maQ2EkTr32hRrkOczS6oRsBST7B%2FeWXasJnrpUU8GyuH
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 04:12:09 GMT
content-type: image/vnd.microsoft.icon
content-length: 894
x-accel-version: 0.01
last-modified: Tue, 06 Mar 2018 21:03:17 GMT
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2585
Cache-Control: max-age=137659
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 04:12:09 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 18:26:28 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js?hash=af27ea9ace5a9ab1f10f8b5f9313bb09
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=af27ea9ace5a9ab1f10f8b5f9313bb09
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash 713ff3fc903885a3a2c3dd64b78bf58e
a138a07e13f8f8fb4b98e55d686501a270233032
517c949707c9256ec573f83e14e720a70ffbd457811342366535632a40d3d217
GET /en_US/all.js?hash=af27ea9ace5a9ab1f10f8b5f9313bb09 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.e-parentheses.be
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6f905da66b4a39061d94f2a31f8a7dd4
etag: "cfa734fd7c1961872c004c9c144735a5"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 29 Jan 2024 02:55:58 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: cT/z/JA4haOiw91kt4v1jg==
x-fb-debug: HdesFLIRJu+teDJ5E0iWNbs/gMFO1Nmlk3ZeOopYKcEF/HHt3Pag3nMwcGNrEJzeCg6ZGUhgm3/YM4vh/Uhf+A==
content-length: 88278
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:09 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/x/oauth/status?client_id=334341610034299&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.e-parentheses.be%2F&sdk=joey&wants_cookie_data=false
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=334341610034299&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.e-parentheses.be%2F&sdk=joey&wants_cookie_data=false
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=334341610034299&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.e-parentheses.be%2F&sdk=joey&wants_cookie_data=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.e-parentheses.be/
Origin: https://www.e-parentheses.be
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: https://www.e-parentheses.be
fb-s: unknown
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: bAeTkZ/yzCKnliIBX6LCJHBSrzu4zGcmh4n1SdkU4hHxYxFKYF8ukhafhc+sYSf0iHPajH6b/6wuTFZnMwimow==
content-length: 0
date: Sun, 29 Jan 2023 04:12:09 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash 399182b9034230c2ad272f905a9f9a92
a361cbbb9ed2b5ab8f7ba04b5237893dff19fdab
b33e1292301c35be9ad01dcdc3850fa69852475360c6dbfd3daede8eff34a6a4
GET /rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 18:33:55 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: OZGCuQNCMMKtJy+QWp+akg==
x-fb-debug: VBNBwhev9zbpyUuqP8NqrdHjALtFulDU2y1GsG6l6spJqGIPkxr11XQtMtFsaO/3QGptZ2CE67L9WVWDGFcKEg==
content-length: 5141
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 26 Jan 2024 00:57:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: Z2pO9y4UfTmCQb65q/+yFMrYZBAmTq+kzTlSyXb1TZ0Kg4hD/RhKDD5nu5ybszh8jXuQRjxBHHrWHpCpPfoF7A==
content-length: 830
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18622)
Hash 9290ac0bd9b4ab609f16d7e4285c267c
ee56180ad884dab1dbee0c4aa0fb3cb87c9fefe0
ce4e2c0fd3dd90d7e20ca4f70cf5488fc84a6b46f3953a4e7186fa0c82c1ea36
GET /rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 24 Jan 2024 23:26:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: kpCsC9m0q2CfFtfkKFwmfA==
x-fb-debug: iy2OovrFgOLYUcMd+WZ7z8v/Nt/RVDzdqQUT3B/peOxSM5bxE8gDXbyJ716jUad7Ofhs6+coFBnv/ufjWBVUfg==
priority: u=2
content-length: 85074
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 6e9da4ca37bd91ed4b55bdfd94d641e6
581d1c986cf5809cd2fc1859f732d936b53708a8
b24defbd5bcb2f39db991c8361c62e39b0f199d8d72fa9f023739defee55dbd3
GET /rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 24 Jan 2024 19:06:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: bp2kyje9ke1LVb39lNZB5g==
x-fb-debug: xkXsuZHR0BI1JoOb225mZ/G41QHABRao8+gBxLrsCVxh5uyNUgYb7UpUfUFQvmcUZW6Z5aNS8oh+FeijCaapMw==
content-length: 1649
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8848)
Hash 9734a0267b00a50c8eb7614bee9c6545
d8163bd9220aaa5674dbf00612b42505fb15f2cd
ca64b67c67b52c47e3a136997975c35e2a8c40751740bab7a88af53020dfcbe4
GET /rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 01:28:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: lzSgJnsApQyOt2FL7pxlRQ==
x-fb-debug: BATlYcVLyIBAh541jV8XRa/NqEaHn3WQGt3RJRnKe0WYnKUDqLS7mpP91ewWz+Bld/HQmmQ7jMcCHUn4AnACjA==
content-length: 16276
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42114)
Hash f8ca3ab8395af8fbd25391b445bb6670
12da1e04b1e26a8c7710ac93a66ab4fbbbc5026d
2f11cd57e135482fab0eb7606f056110bfd99d3a5afb47732cc4bab681fb54ed
GET /rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 17:49:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +Mo6uDla+PvSU5G0RbtmcA==
x-fb-debug: NqFoOHgQgGWyB2dxlQuzNL+2ntjVIAJdQKFIMKaHDUjnKvpv2bePvH/5h8JTEMN1wX3iXtaQc/zOFHtT8jZEhw==
content-length: 23510
x-fb-trip-id: 1904183273
date: Sun, 29 Jan 2023 04:12:10 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10797
Expires: Sun, 29 Jan 2023 07:12:07 GMT
Date: Sun, 29 Jan 2023 04:12:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 06:42:55 GMT
age: 77355
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61dd48155b70501a72ec13f79745433d
4efc3d15f04a290a590b54122822d55a9d3fa1ca
9345056c111439b34aff08323fc99a2d315fa91293039dc5acf67affb50636d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4202
x-amzn-requestid: d33bee10-9642-4138-8dde-3486ec7f6535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa9ABFFvIAMFbqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d441ff-3b3a99db469e3f8c068d553c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:28:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIvTaBE3RpB7sP9Bb1Ku1ItsiaCFKNmyHArESR1FuqDIHXt2uOLG6A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:22:38 GMT
age: 82172
etag: "4efc3d15f04a290a590b54122822d55a9d3fa1ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 655
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7433eb3123a1f9b14507c78e38e7b9
fef8b905b580999963758a56be9c3226697929a2
895298ddf6822e9f95e10fe17c1ade0b0782c3753e96eab8a3798df5ba969dbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6518
x-amzn-requestid: 6e9c624a-2036-4161-ad9e-1c66068e3eb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPHz0HmsoAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf867e-011e1c43072a8dfa22af6e88;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:19:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AxIaCwORa7FhDY5pxcNlrPMoam0z7DxSgKBytx5AG_qcKrxM8NnoOw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:36 GMT
age: 23134
etag: "fef8b905b580999963758a56be9c3226697929a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 26754
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57ff6665d99a17d06b75c8fe64c90ab3
05648eed6830a794aa7e30ba4da526ed4c45b0ca
728b809756a0faff1a55bb03f13f33e31518f321e50dd944a0267d585c09264c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: 8117f45b-926a-4cbe-b152-dae983bc3526
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOYdlG6XIAMF_vA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf3abd-7ce531f65f66ac3a73970841;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 01:56:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: naZHCCrUSwrLi2eWi3LOrir9zOGQcNUBJ1iS9wUewWoV3WM2E0kE2w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:47:00 GMT
age: 23110
etag: "05648eed6830a794aa7e30ba4da526ed4c45b0ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/plugins/like_box.php?app_id=334341610034299&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df322ea7feaa9822%26domain%3Dwww.e-parentheses.be%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.e-parentheses.be%252Ff2a4d16b4677edc%26relation%3Dparent.parent&color_scheme=light&container_width=330&header=false&href=https%3A%2F%2Fwww.facebook.com%2Fprofile.php%3Fid%3D100084837246092&locale=en_US&sdk=joey&show_border=false&show_faces=true&stream=false
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like_box.php?app_id=334341610034299&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df322ea7feaa9822%26domain%3Dwww.e-parentheses.be%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.e-parentheses.be%252Ff2a4d16b4677edc%26relation%3Dparent.parent&color_scheme=light&container_width=330&header=false&href=https%3A%2F%2Fwww.facebook.com%2Fprofile.php%3Fid%3D100084837246092&locale=en_US&sdk=joey&show_border=false&show_faces=true&stream=false
IP 31.13.72.36:0
GET /plugins/like_box.php?app_id=334341610034299&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df322ea7feaa9822%26domain%3Dwww.e-parentheses.be%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.e-parentheses.be%252Ff2a4d16b4677edc%26relation%3Dparent.parent&color_scheme=light&container_width=330&header=false&href=https%3A%2F%2Fwww.facebook.com%2Fprofile.php%3Fid%3D100084837246092&locale=en_US&sdk=joey&show_border=false&show_faces=true&stream=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.e-parentheses.be/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 9OziLlrJfhpyBzjJTRi/9eRwM+oxrMFIqZ8r13cBTAiveSZyZDXmGFvquIs5QaGPLWYy4c6R+CPZh8rsufs9Ow==
date: Sun, 29 Jan 2023 04:12:10 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2