Report - www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

Report Overview

Submitted URL
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2023-03-31 06:40:48
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
primary.jwwb.nl	unknown	2023-01-12T13:26:21Z	2023-03-31T23:31:03Z	2.0 kB	371 kB	151.101.193.91
plausible.io	48197	2019-02-01T09:53:03Z	2023-04-01T07:42:24Z	840 B	1.4 kB	195.181.166.158
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
www.jouwweb.nl	198344	2012-09-30T02:09:37Z	2023-03-29T19:30:28Z	386 B	2.4 kB	34.90.225.198
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	385 B	21 kB	142.250.74.110
www.fritsheirmantransport.be	unknown	2017-02-09T08:41:04Z	2023-03-31T06:26:39Z	1.6 kB	1.4 kB	35.204.150.5
gfonts.jwwb.nl	unknown	2022-11-01T10:44:25Z	2023-03-31T23:31:03Z	2.0 kB	54 kB	151.101.1.91
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.7 kB	9.8 kB	95.101.11.115
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
assets.jwwb.nl	unknown	2022-06-17T16:52:38Z	2023-03-31T23:31:03Z	5.5 kB	229 kB	151.101.193.91
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	686 B	1.4 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	56 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email	Phishing
2023-03-31	medium	www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email	Phishing
2023-03-31	medium	www.fritsheirmantransport.be/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.fritsheirmantransport.be/	162 B	2023-03-10	2023-04-21
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:32:02 Last Seen2023-04-21 14:16:24 Times Seen17 Hash 6afbeabaef93f081a5a28a5771a0bfcc bb95dddb4240ea91000db0dfd6c76c113bc80a4a 0ad424297db69fde46b5d2cece5483c2318a5bd6707c0dfe6191b9f1743e0097 Loading...

	assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js	21 kB	2023-03-12	2023-08-07
Pretty URL assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js IP 151.101.193.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:54:41 Last Seen2023-08-07 04:23:37 Times Seen137 Hash 2f00ef63f493540ebc32c0267812aaf3 95a915152603ee779ee19de8d0ecfb84f43c4f31 1b6f8375518ed13731e4eb8dff2584e4b38cfc1f6b45c246879ca5c48a8a46bd Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.fritsheirmantransport.be/	1.1 kB	2023-04-01	2023-04-01
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:49:48 Last Seen2023-04-01 10:49:48 Times Seen1 Hash 461628ad18cea8e536525e3f7deff927 e1d7d24cb3caa1e62fdd692099c7bfda28b4f471 a624ace10258202c87dc12db7a0054887a75942b30ab7f23f060e4d303c2b3c7 Loading...

	plausible.io/js/script.manual.js	981 B	2023-03-14	2023-05-21
Pretty URL plausible.io/js/script.manual.js IP 195.181.166.158 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 18:43:11 Last Seen2023-05-21 02:28:30 Times Seen62 Hash 157030cb0455324177e5c42beeed018a 04f98155161c9079000405f9ba429a3123b23f7a f5833e2be2e45f13d4d4f02701ea27ae2aaa0e87cad50d4f74987a8802d5f097 Loading...

	assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7	6.2 kB	2023-03-29	2023-04-07
Pretty URL assets.jwwb.nl/assets/website-rendering/runtime.5ff57052abeedc285f36.js?bust=989228d90a298ceee8e7 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-07 02:22:38 Times Seen12 Hash 989228d90a298ceee8e7a05b16749227 5820b751744f67645f978286a4fb59482e5e2745 fe89ee3a9fca628e823241da553a2c3a1febf9d7c421ce8e5bd0ebaf5eeb78e7 Loading...

	www.fritsheirmantransport.be/	3.1 kB	2023-03-10	2023-12-30
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 16:01:28 Last Seen2023-12-30 06:36:32 Times Seen45 Hash 26ac787b45796f4d3cd98616d40601bd 8313b53dd01b2c739ab168323771ef88c2d8f9a6 662c65a6481de5498e9286c3400b2f857b891d524aa83b4ec5fbaad6512dedc0 Loading...

	www.fritsheirmantransport.be/	199 B	2023-03-29	2023-04-21
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-21 14:16:24 Times Seen17 Hash f894a22325c904d3fd2a2ed4b4cb9dd1 4c9694540c25b485a7be190cf9517d34af3bcdf6 486f05e1a51a6025eabf926f6bd1b18a9ee0f70936945674054785fda6f2541e Loading...

	www.jouwweb.nl/v2/unsafe-token/2829439	106 B	2023-04-01	2023-04-01
Pretty URL www.jouwweb.nl/v2/unsafe-token/2829439 IP 34.90.225.198 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:49:48 Last Seen2023-04-01 10:49:48 Times Seen1 Hash 474943d78df875ce2874765f45c5eeaa 0146ac0099ee580f1e1e8504f4bacd1f575abe0a 407647e97b467bd9a9fe89fa569ac469f8c441043b5bcf30285da06f4113a126 Loading...

	assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js	39 kB	2023-03-14	2023-08-02
Pretty URL assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js IP 151.101.193.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 12:13:07 Last Seen2023-08-02 12:41:08 Times Seen30 Hash 8f31e14bdebacf5b2fdeccead8f1061f 65bdae915593a662cd7bff2e21456e4d871be8a8 cc4053075eeb2205f1d90ef9f449a45976d18964db628be8052de08e3fd65d31 Loading...

	www.fritsheirmantransport.be/	4.0 kB	2023-04-01	2023-04-01
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:49:48 Last Seen2023-04-01 10:51:39 Times Seen2 Hash 79ebc4fa09604018672355da5dafcdb7 9c72436790fad82398187e5eb597fa89fe658be6 cf4d8052b34358cc95d0425431cf09d512e52f067ecde630a94b95e48ec6f965 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 07:11:53 Times Seen37086029 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea	33 kB	2023-03-29	2023-04-21
Pretty URL assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea IP 151.101.193.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:38:25 Last Seen2023-04-21 14:16:24 Times Seen23 Hash 5d72c5fd2260c5328fea9c0404d1e36e c4ec6f6b2449a12f737dccccd49cb0fea245f27e c43884bcfc6554eebb9917b3830a6ebef38f6e1dfe9de814dc2c28be3ed917ef Loading...

	www.fritsheirmantransport.be/	419 B	2023-03-08	2024-01-08
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:51:16 Last Seen2024-01-08 11:07:51 Times Seen35 Hash d7b566c8779a1b746169ee715db70ea8 430b103314e0115863e3275494da6d527c7cc41e b588b82fef3dd5f86fba924dbd83699f26f3fe5ce16f4f3bacbe7d0c57854edb Loading...

	www.fritsheirmantransport.be/	119 B	2023-03-26	2023-04-05
Pretty URL www.fritsheirmantransport.be/ IP 35.204.150.5 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:18:24 Last Seen2023-04-05 01:34:25 Times Seen15 Hash 514ea6249074b0f7df3c1f4fd637bcd6 bd84f7b933620fd4a91e47f86a288ef04f6386a4 db884af69a8d62ca8914076a04a1af6dc0f5c337e0ef53abf6cb097011c2515c Loading...

HTTP Transactions (51)

URL IP Response Size

www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

35.204.150.5

301 Moved Permanently

0 B

URL HTTP/1.1
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
connection: close

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13475
Expires: Fri, 31 Mar 2023 10:25:12 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2714
Expires: Fri, 31 Mar 2023 07:25:51 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 06:16:09 GMT
content-type: application/json
age: 1468
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13925
Expires: Fri, 31 Mar 2023 10:32:42 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: pp5KmzHDiDohchRinrwuYIujD9jPgRGMA3tsfPxuXvj4IYJmrfVkxXV2m7u+q2s2kl+n6Od3gB0=
x-amz-request-id: X598XBGZY0Z4KC26
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 06:03:14 GMT
age: 2243
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 06:40:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
07b903b699b9a76aaf7f7049dfe60196
e731b226b45e89f3b5ab07f03c5d94188e8553a8
3a13a2bfc503cf053b2557ada168e40520da43c359c7ad43ad81a978b3502a3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A13A2BFC503CF053B2557ADA168E40520DA43C359C7AD43AD81A978B3502A3E"
Last-Modified: Thu, 30 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Fri, 31 Mar 2023 12:40:10 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17546
Expires: Fri, 31 Mar 2023 11:33:03 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DU9nybXz01Z0vPaSoeOluA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QURZT9z0SAchJEo44pVc38r0g/Q=
Date: Fri, 31 Mar 2023 06:40:37 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Backoff, Cache-Control, Last-Modified, Content-Length, Retry-After, Pragma, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 06:14:39 GMT
age: 1558
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
122619b1108306cee2b2b18c5526976c
c99d80fc758d118c969ff9309ae0a7a42050e2ed
f968732d602137b5142f60bd260aaabae228541bf7e62422a0a4fc4c8fb99176

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F968732D602137B5142F60BD260AAABAE228541BF7E62422A0A4FC4C8FB99176"
Last-Modified: Tue, 28 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13897
Expires: Fri, 31 Mar 2023 10:32:14 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885

151.101.193.91

200 OK

13 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size
13 kB (13388 bytes)
Hash
9f358998ba9114a78d69b3a7a98c9f44
ec75b2f7cada428cf9f01939380cb89d95c117fd
8922580307efbd08576940f0111f7a06777e9de6f567201b38a8c782568be396

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/style.css?bust=1679581885 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 14:31:25 GMT
etag: "69fce371b656aeedb77a8c205d3acb3e"
content-type: text/css
server: UploadServer
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 661869
vary: Accept-Encoding
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 13388
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0

151.101.193.91

200 OK

36 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65415)
Size
36 kB (35979 bytes)
Hash
e980218ec00ae034e1adf38765ce2050
db6b662302dcfe8d86042f92aa5a6a9d81db4308
23d68b7665f4e70f27dbb1fa5c9da163334979d1d5ed8a2615c7d42ba2a44682

HTTP Headers

GET /assets/website-rendering/main.990a0e12f7e514643cfb.js?bust=11f4eac8f93d45c07dc0 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 17:14:56 GMT
etag: "e980218ec00ae034e1adf38765ce2050"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 48282
vary: Accept-Encoding
content-length: 35979
X-Firefox-Spdy: h2

gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic

151.101.1.91

200 OK

601 B

URL HTTP/2
gfonts.jwwb.nl/css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
ASCII text
Size
601 B (601 bytes)
Hash
2d5795d09aba8e19ecc20a3441c729e1
06cd35a249fb78fec3fe205328f103cb3acb419f
fc49c5ec5c03ab19af0e99c5ccc69d5ad0c3f27044a5206e424c54e5c2fc0dde

HTTP Headers

GET /css?display=fallback&family=Lato%3A400%2C700%2C400italic%2C700italic%7CMaven+Pro%3A400%2C700%2C400italic%2C700italic HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 111807
vary: Accept-Encoding
content-length: 601
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9

151.101.193.91

200 OK

11 kB

URL HTTP/2
assets.jwwb.nl/assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 10756, version 1.0\012- data
Size
11 kB (10756 bytes)
Hash
8491e4ff84bdcb0358c9e47841089e8c
1350d58ae33ae8a2297917eb9d4b74ff9c23c8a4
3b3753f0e60df50ca1108c7e3ec16a03334092fbb1068eef671c0c6482e3220d

HTTP Headers

GET /assets/fonts/website-rendering/font/website-rendering.woff2?bust=8491e4ff84bdcb0358c9 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 19 May 2022 08:52:19 GMT
etag: "8491e4ff84bdcb0358c9e47841089e8c"
content-type: application/octet-stream
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 2088560
content-length: 10756
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea

151.101.193.91

200 OK

7.3 kB

URL HTTP/2
assets.jwwb.nl/assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (31289)
Size
7.3 kB (7278 bytes)
Hash
84282451757320000424fbc0cee4e050
41fb6b0f15d404d94ab60fbc51fb47832b3d7ce7
f02a404f648dc9368f905fed95d2e26b3afd1c2e94702076586b934e599cca1f

HTTP Headers

GET /assets/build/website-rendering/nl-BE.js?bust=5d72c5fd2260c5328fea HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:52:34 GMT
etag: "84282451757320000424fbc0cee4e050"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 1411295
vary: Accept-Encoding
content-length: 7278
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1

151.101.193.91

200 OK

101 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (55894), with LF, NEL line terminators
Size
101 kB (101325 bytes)
Hash
0609b28d5d3949147cf0242425f591e9
367c22394cbe9b574c49f0ff52296eaca9f93f57
c068baea2e13a7984dc25da3d01fca32d24122a8acaeea705e2c808f9d2f5104

HTTP Headers

GET /assets/website-rendering/435.7d4e37647df50a377c60.js?bust=3e67bd8db23de70647e1 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 15 Mar 2023 13:08:26 GMT
etag: "0609b28d5d3949147cf0242425f591e9"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 1359077
vary: Accept-Encoding
content-length: 101325
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc

151.101.193.91

200 OK

20 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (59107)
Size
20 kB (19982 bytes)
Hash
750a8cacb2221805f00005717eeea089
d9c49f3fa5f62878b5fbc7418a6d0de55dc8f3e6
ee80b6146d170c274629e01b280d87e226f33bddef94018dc55c5daf7b9e4f0e

HTTP Headers

GET /assets/website-rendering/styles.356188caf6923f3234fc.css?bust=356188caf6923f3234fc HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 13:29:48 GMT
etag: "750a8cacb2221805f00005717eeea089"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 61789
vary: Accept-Encoding
content-length: 19982
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc94336886a22a083f520c3a5af766c3
871e9fd233b8c7b001442adceda65fb1d2a0d163
dbfa3639b0df15752a471ecb04c087e56e9b8224d0ddc986ddd3b4eaa564f847

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBFA3639B0DF15752A471ECB04C087E56E9B8224D0DDC986DDD3B4EAA564F847"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1296
Expires: Fri, 31 Mar 2023 07:02:13 GMT
Date: Fri, 31 Mar 2023 06:40:37 GMT
Connection: keep-alive

gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2

151.101.193.91

200 OK

18 kB

URL HTTP/2
gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 18168, version 1.0\012- data
Size
18 kB (18168 bytes)
Hash
81d8f4a725af0b4f9b269315a711ca9a
e78b07fc2326248b245dae27757d844d800c700f
373a0ae4f0e8c76c27466ad213c8743e62bc971acd8bb33588855cc8c18acc26

HTTP Headers

GET /s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Mon, 11 Jul 2022 21:23:16 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 3910725
content-length: 18168
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2

151.101.193.91

200 OK

14 kB

URL HTTP/2
gfonts.jwwb.nl/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 13976, version 1.0\012- data
Size
14 kB (13976 bytes)
Hash
e7e52c955aa33e618baf437a16539524
13ecb55bb760d6980a1b1331085630ef5ed84e9f
07c94892c3e0ac93d2bcb3a9cb88aa67ea47b3d1aa89bc39dfcc2b025dcd8988

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Tue, 26 Apr 2022 15:50:23 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 1857920
content-length: 13976
X-Firefox-Spdy: h2

gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2

151.101.193.91

200 OK

18 kB

URL HTTP/2
gfonts.jwwb.nl/s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 18168, version 1.0\012- data
Size
18 kB (18168 bytes)
Hash
81d8f4a725af0b4f9b269315a711ca9a
e78b07fc2326248b245dae27757d844d800c700f
373a0ae4f0e8c76c27466ad213c8743e62bc971acd8bb33588855cc8c18acc26

HTTP Headers

GET /s/mavenpro/v32/7Au9p_AqnyWWAxW2Wk3GzWQIElsO0w.woff2 HTTP/1.1
Host: gfonts.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://gfonts.jwwb.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
last-modified: Mon, 11 Jul 2022 21:23:16 GMT
content-type: font/woff2
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=86400
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:37 GMT
age: 3910725
content-length: 18168
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css

151.101.193.91

200 OK

2.9 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (15075)
Size
2.9 kB (2928 bytes)
Hash
21ef5024329aebca83d99e5d8e4c1dc1
7e43192d9f00e2681772b868f6f64d8271946219
1f805ba4a9ba5617d252520b4a031f9bdce89fce9c82ed3e7bca25195fb53a96

HTTP Headers

GET /assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 14:59:16 GMT
etag: "21ef5024329aebca83d99e5d8e4c1dc1"
content-type: text/css
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 5499581
vary: Accept-Encoding
content-length: 2928
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js

151.101.193.91

200 OK

16 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (38633)
Size
16 kB (15884 bytes)
Hash
167695b780a13fb0bd1b41274249dcab
a383080973526f4e9451137a6cdfe62355e54f2f
23462f6e7cbd3fc48a054dda0e666c48b92988cbb076ad9c6fdeba6c7f40f7a6

HTTP Headers

GET /assets/website-rendering/fotorama.994f0a677b469d5ea1a0.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Dec 2022 13:15:28 GMT
etag: "167695b780a13fb0bd1b41274249dcab"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 1493255
vary: Accept-Encoding
content-length: 15884
X-Firefox-Spdy: h2

www.jouwweb.nl/v2/unsafe-token/2829439

34.90.225.198

200 OK

1.8 kB

URL HTTP/2
www.jouwweb.nl/v2/unsafe-token/2829439
IP
34.90.225.198:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (7740), with no line terminators
Size
1.8 kB (1836 bytes)
Hash
6529bf646a8429df101c8b30cbeec657
cfed2788ee02a9af16cbf3a409a3abddbef917a8
07b0da61a943a0db055a732c206d4e102ebd70a1b5556b5cbad70eab3264068b

HTTP Headers

GET /v2/unsafe-token/2829439 HTTP/1.1
Host: www.jouwweb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 06:40:37 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: JWSESSION=ofln8g5lno5j3v076lfke3rse22o9bts; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
x-robots-tag: noindex
content-security-policy: frame-ancestors 'self';
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js

151.101.193.91

200 OK

7.0 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (20868)
Size
7.0 kB (6964 bytes)
Hash
b0b6ccb0944039d492dd4a9b4a12983b
79ae9d54aed2f251f33b15712b2e23c637cb628d
24752abac2a8bfc9166cf0f6bf03c4ff204fd6996474a64c597f09ba453b6736

HTTP Headers

GET /assets/website-rendering/cookieconsent.fbd84c284f87f97f448a.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 10:40:15 GMT
etag: "b0b6ccb0944039d492dd4a9b4a12983b"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 6720386
vary: Accept-Encoding
content-length: 6964
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3

151.101.193.91

200 OK

3.2 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
PNG image data, 96 x 160, 8-bit colormap, non-interlaced\012- data
Size
3.2 kB (3223 bytes)
Hash
e95aace1dffd7b8683b30639b59614e2
34ccbdde6325c703ac48591c20b233ce6f9acf10
b94efaf1044e2ba8fc2fb41f5ab2022410086fe50b729b8c95321573b88e8a78

HTTP Headers

GET /assets/website-rendering/module-files/fotorama/fotorama.png?bust=e95aace1dffd7b8683b3 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.jwwb.nl/assets/website-rendering/fotorama.d3763d9d05447b85fcd4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
last-modified: Tue, 28 Jul 2020 10:03:58 GMT
etag: "e95aace1dffd7b8683b30639b59614e2"
content-type: image/png
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 2089677
content-length: 3223
X-Firefox-Spdy: h2

plausible.io/api/event

195.181.166.158

202 Accepted

2 B

URL HTTP/2
plausible.io/api/event
IP
195.181.166.158:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /api/event HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 118
Origin: https://www.fritsheirmantransport.be
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Fri, 31 Mar 2023 06:40:38 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: BunnyCDN-SE1-725
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: must-revalidate, max-age=0, private
application: 10.0.1.5
permissions-policy: interest-cohort=()
x-request-id: F1FtxyMUfqNaQT8kW7UF
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 202
cdn-cachedat: 03/31/2023 06:40:38
cdn-edgestorageid: 725
cdn-requestid: 1fdf727e9f7a9e9edee92fbebb4e10a3
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

116 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
116 kB (115716 bytes)
Hash
e2f151470d01c50beed2dfe3fcef7c56
9946faeffb74d9711eb0a2426118a680599be993
9511b5afed2eb9ad5b74493eeae6f3081319bfffe2e63af3dfa8318b04f8bef7

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/ldm2xl/img_20200923_042509.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "Rq0MkPqH7foUHj5sw/ANbgxohiru5fmWRq9KQVJFTQs"
fastly-io-info: ifsz=556466 idim=1920x1440 ifmt=jpeg ofsz=115716 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 677845
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 115716
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

155 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
155 kB (155214 bytes)
Hash
8641ef146c923186e7353c43867f0f3c
569656fd8737cce13cf3a490baea7c02ed9b92f6
8dd7c597b468c0b40ab9fec4c7d916d6cdb6c123c0e3923395b316c845d438bc

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/jin2vh/img_20201009_121631.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "5PZWo2p3srklvrv70g3QkinQ32ICG8JqN5b5euk/GVs"
fastly-io-info: ifsz=681160 idim=1920x1440 ifmt=jpeg ofsz=155214 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 429944
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 155214
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8

151.101.193.91

200 OK

3.2 kB

URL HTTP/2
assets.jwwb.nl/assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3234 bytes)
Hash
532fe2902564480b64d881ff908e700d
ef25788e5d7eda04bb1df729d73e16d8227361c8
1cf65375bf5eb2144182098b7d31180477e8099b93a589633bc80ff5315f1ec0

HTTP Headers

GET /assets/brand/jouwweb/icon/favicon.png?bust=532fe2902564480b64d8 HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 01 Dec 2021 16:00:41 GMT
etag: "532fe2902564480b64d881ff908e700d"
content-type: image/png
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 6720386
content-length: 3234
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 06:40:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 06:05:11 GMT
expires: Fri, 31 Mar 2023 08:05:11 GMT
cache-control: public, max-age=7200
age: 2127
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 06:40:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.jwwb.nl/assets/website-rendering/667.24a5c65f1f36b6672ae5.js

151.101.193.91

200 OK

15 kB

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/667.24a5c65f1f36b6672ae5.js
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
HTML document, ASCII text, with very long lines (41455)
Size
15 kB (15310 bytes)
Hash
4b9efef2f4b44bbccacb3b45e7a6a578
01a27d294351022fbeb07c7c2838c0139bb074a2
76c05395b4e4d23132113f42ba3d76e1afddb7228a8fef54eb2a6ac736f14ac7

HTTP Headers

GET /assets/website-rendering/667.24a5c65f1f36b6672ae5.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 10:21:31 GMT
etag: "4b9efef2f4b44bbccacb3b45e7a6a578"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 1492934
vary: Accept-Encoding
content-length: 15310
X-Firefox-Spdy: h2

assets.jwwb.nl/assets/website-rendering/photoswipe.4554209f4935f8f690bb.js

151.101.193.91

200 OK

112 B

URL HTTP/2
assets.jwwb.nl/assets/website-rendering/photoswipe.4554209f4935f8f690bb.js
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
ec0667e442882f141abf0bf766f4101c
296fd71e9b0e68b53f384e8e7fb53021dd14e7b4
79fe6be2cad5b38102ac93c66c6fbcdc1e507c140f0f37db08daa726a71ca2aa

HTTP Headers

GET /assets/website-rendering/photoswipe.4554209f4935f8f690bb.js HTTP/1.1
Host: assets.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 15 Nov 2021 10:21:31 GMT
etag: "ec0667e442882f141abf0bf766f4101c"
content-type: application/javascript
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
x-jw-backend-healthy: true
cache-control: public, max-age=11232000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:38 GMT
age: 3908375
vary: Accept-Encoding
content-length: 112
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Fri, 31 Mar 2023 12:40:28 GMT
Date: Fri, 31 Mar 2023 06:40:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Fri, 31 Mar 2023 12:40:28 GMT
Date: Fri, 31 Mar 2023 06:40:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Fri, 31 Mar 2023 12:40:28 GMT
Date: Fri, 31 Mar 2023 06:40:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21589
Expires: Fri, 31 Mar 2023 12:40:28 GMT
Date: Fri, 31 Mar 2023 06:40:39 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11061 bytes)
Hash
39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:08 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 31891
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5806 bytes)
Hash
8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 32046
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4370 bytes)
Hash
41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: opMjAWEDBvz7pKcnuQrmD_7njQ0X28fR3Ngnoe7WI96zNNNt9oQL5A==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:43:37 GMT
age: 32222
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9471 bytes)
Hash
809c8ac4f4ec3c118e43e401ff7f1570
5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29
5c8e37e45cabe2b53d654fb01f869846c282f53b36a8fdb3521992aedc96cf70

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9471
x-amzn-requestid: 3882bb5f-32d0-451d-aeb2-ff6474747a14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVE_Gx_oAMFmsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6426021f-486afb1d6942e493158fe68a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:51 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Xfe4nK7qR9dZMWpLgTzWWNahRgBatgegu_hUkG6hX-VHhZaCxauudg==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:27 GMT
age: 32052
etag: "5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10490 bytes)
Hash
0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: AdbJgoCBGJGvjP53lBj3_GWyuRF8O_fgNTPPEjUmFmyRxMQl2pgTzw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:29 GMT
age: 31570
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1749551-ae7f-47d1-b675-e56a19378714.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8381 bytes)
Hash
49f153b3f552ca9991afe6d69c0ac2a6
573395cedc3beced82e039dc3ff5e1e8df07c4b0
fa3f5c543bb7ddeeff2ba3932a52df53c2c4d078f33634d7af26ab1807ed87c0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1749551-ae7f-47d1-b675-e56a19378714.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: 1900be69-807e-4c35-a0fa-0cffd1d78b4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmFg4IAMF4fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3e0650ab64d45305476554f4;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pNQlsLKFCpn9LJLjWvjIW8eF9P0Rt_0jmHPLDv2_duOQQRjx77T06w==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:32 GMT
age: 31567
etag: "573395cedc3beced82e039dc3ff5e1e8df07c4b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361

151.101.193.91

200 OK

84 kB

URL HTTP/2
primary.jwwb.nl/public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1070x803, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
84 kB (84358 bytes)
Hash
d50d4618b8f906d16d0c9e585d5c80a0
c156df1713ad84adfe091ff81a4acd22b9fc758e
c2bea60e09cf65dcefb9fa30a9ea9f590c4bbc126b9cb175b03811607cee9f0f

HTTP Headers

GET /public/g/q/e/temp-inkjekbibncjfkzxlrin/w9iytd/img_20220203_165908_0547331.jpg?enable-io=true&enable=upscale&fit=cover&width=1070&height=361 HTTP/1.1
Host: primary.jwwb.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/webp
etag: "v1x4vDBjLYC7MFFQQ+Ci96xP4dQ56aBaEfOx37YufBg"
fastly-io-info: ifsz=455554 idim=1920x1440 ifmt=jpeg ofsz=84358 odim=1070x803 ofmt=webp
fastly-stats: io=1
server: UploadServer
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=7776000
accept-ranges: bytes
date: Fri, 31 Mar 2023 06:40:43 GMT
age: 2462751
vary: Accept
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-length: 84358
X-Firefox-Spdy: h2

www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email

35.204.150.5

301 Moved Permanently

0 B

URL HTTP/2
www.fritsheirmantransport.be/media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/dhlmmp/rocovery/cmd-login=421b0bb34445aaeca8034a475d86fc55/auth.php?email HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 31 Mar 2023 06:40:37 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
location: https://www.fritsheirmantransport.be/
content-security-policy: frame-ancestors 'self';
set-cookie: JWSESSION=uvnk587kkf749o8bk26kke6h9flhgl5s; path=/; secure; HttpOnly
JwStickySession=TfG3mtYfXH4zQWUe%2F577%2BDLOaWyJkLTe; Expires=Sun, 30-Apr-2023 06:40:37 GMT; Path=/; Secure; HttpOnly
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.fritsheirmantransport.be/

35.204.150.5

200 OK

0 B

URL HTTP/2
www.fritsheirmantransport.be/
IP
35.204.150.5:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.fritsheirmantransport.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: JWSESSION=uvnk587kkf749o8bk26kke6h9flhgl5s; JwStickySession=TfG3mtYfXH4zQWUe%2F577%2BDLOaWyJkLTe
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 06:40:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
content-security-policy: frame-ancestors 'self';
set-cookie: JwStickySession=TfG3mtYfXH4zQWUe%2F577%2BDLOaWyJkLTe; Expires=Sun, 30-Apr-2023 06:40:37 GMT; Path=/; Secure; HttpOnly
cache-control: no-store, no-cache, must-revalidate, no-transform
x-ua-compatible: IE=Edge
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

plausible.io/js/script.manual.js

195.181.166.158

200 OK

0 B

URL HTTP/2
plausible.io/js/script.manual.js
IP
195.181.166.158:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/script.manual.js HTTP/1.1
Host: plausible.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fritsheirmantransport.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 31 Mar 2023 06:40:37 GMT
content-type: application/javascript
server: BunnyCDN-SE1-725
cdn-pullzone: 682664
cdn-uid: 153cb5b1-399a-48ef-b5bf-098c03770254
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
cache-control: public, must-revalidate, max-age=86400
application: 10.0.1.5
cross-origin-resource-policy: cross-origin
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/30/2023 12:24:46
cdn-edgestorageid: 725
cdn-status: 200
cdn-requestid: 0ab1dde5eff952a144feeebd1a0abb73
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML