| www.coronasneltestdronten.nl/ | 188.166.202.225 | 301 Moved Permanently | 162 B |
URL HTTP/1.1www.coronasneltestdronten.nl/ IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
NIDS | Severity | Alert | suricata | medium | ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M2 |
GET / HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Taivas-Webconsulting
Date: Tue, 28 Mar 2023 08:13:37 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://coronasneltestdronten.nl/
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5838
Expires: Tue, 28 Mar 2023 09:50:55 GMT
Date: Tue, 28 Mar 2023 08:13:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash911d74784325663a0d95b463b0e9ae9b 21e999229be584d8e42696bce71236ad5bcb9a25 f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3591
Expires: Tue, 28 Mar 2023 09:13:28 GMT
Date: Tue, 28 Mar 2023 08:13:37 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 07:15:48 GMT
content-type: application/json
age: 3469
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc0d9353dc46e88bf564ed464b0b073c7 0b5ce170e7db24267a3ba5b79a48548b1acd2e5b 7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15415
Expires: Tue, 28 Mar 2023 12:30:32 GMT
Date: Tue, 28 Mar 2023 08:13:37 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8alw9rVPSDh+5esc2Qt9rS4CpX51lAMbNlom6Ul8a9TTEFfMeHteQu3A80dPXPEywliNXc+8eXk=
x-amz-request-id: J6AT96HP7TY8D984
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 08:01:58 GMT
age: 699
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf986a8cecf9ffe6204a5c00d49ec8366 d266a012506d3a408de8543c45079a4c59d28931 061f2242f3488734ea59234ed368207b7e58d01ed990148ea26e2c16e52f0c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "061F2242F3488734EA59234ED368207B7E58D01ED990148EA26E2C16E52F0C6F"
Last-Modified: Mon, 27 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 28 Mar 2023 14:13:37 GMT
Date: Tue, 28 Mar 2023 08:13:37 GMT
Connection: keep-alive
|
|
| coronasneltestdronten.nl/ | 104.155.16.211 | 301 Moved Permanently | 178 B |
URL HTTP/2coronasneltestdronten.nl/ IP104.155.16.211:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashcd2e0e43980a00fb6a2742d3afd803b8 81ffbd1712afe8cdf138b570c0fc9934742c33c1 bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET / HTTP/1.1
Host: coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/html
content-length: 178
location: https://www.coronasneltestdronten.nl/
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 07:14:35 GMT
age: 3542
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.woff | 104.17.24.14 | 200 OK | 32 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.woff IP104.17.24.14:0
File typeWeb Open Font Format, TrueType, length 32020, version 0.0\012- data Hashda4fa13556b21375d2772c512fa17a83 b29ccdf05c69e905904bdc0a4e0a42bc1689dd16 4fc9cc26a4d380b75ff7d1a1f07b11e73ee320f9fa246f7cd888f9731d8871f6
GET /ajax/libs/foundicons/3.0.0/foundation-icons.woff HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Origin: https://www.coronasneltestdronten.nl
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 31590
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-7d14"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 469527
expires: Sun, 17 Mar 2024 08:13:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvQM8gc6uKNcYcxKT%2BXA7rDpHuiVx4r13wyHT%2BhsJewqWQkaT5Xsh2uKALhnqTZZ9QzC%2Fo9%2FdnFBkDwKzDvQWuBIO%2FHrZtFAmaNu9pmBAoJ0slGlTvs2E4VNROVI7LGf90T5NWy1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aee6a383b9fb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.5.0.3 | 104.17.24.14 | 200 OK | 2.9 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.5.0.3 IP104.17.24.14:0
Hashbf1391b615ae5584f9dd9ce0dadf80d8 5c1ac10b4ced91893f7ead8ccae6144b24e16005 61ed77d9060b46122faab2a431b523f33353943595600c7fed2238155fd462d5
GET /ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.5.0.3 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/css; charset=utf-8
content-length: 2855
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-4c34"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 981977
expires: Sun, 17 Mar 2024 08:13:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ivhwhs2n9EJXx6N4Vb9e9zU2BQm6JLQ1OzJoPyCqQ8VcrRJA7OPpYqKDKP54uuqjVDIopwe0XQnEcrCAiFOUHrNq1jFqvyf8%2FmZLj79AVpKLasIMoOupwDqp5sdoSjmx0rb9Uvhh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aee6a384f37b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-brands-400.woff2 | 188.166.202.225 | 200 OK | 77 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-brands-400.woff2 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeWeb Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data Hashf7307680c7fe85959f3ecf122493ea7d fce0da592a3e536d6d5df5b50cb513398d8c5161 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/octet-stream
content-length: 76764
last-modified: Fri, 22 Oct 2021 10:46:09 GMT
etag: "61729671-12bdc"
x-taivas-source: Taivas-webserver-4
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 20 Apr 2023 11:58:53 GMT
pragma: public
cache-control: max-age=2592000, public
x-cached-be: MISS
x-cached-fe: HIT
x-webpsupport-fe: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashda5340ee69a1000f751686df9e716663 a5da880a61ed119790a7990bbdcc0c97eecf04f2 d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16736
Expires: Tue, 28 Mar 2023 12:52:34 GMT
Date: Tue, 28 Mar 2023 08:13:38 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7e2d8156baac12231cc9cbfdefedacf1 62384d8842fb5b560ac39636bb519953e22dc664 ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-regular-400.woff2 | 188.166.202.225 | 200 OK | 13 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-regular-400.woff2 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeWeb Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data Hashf0f8230116992e521526097a28f54066 0447c6b10bbf73f97b23dcfd6e6a48510822cb6e 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/octet-stream
content-length: 13276
last-modified: Fri, 22 Oct 2021 10:46:10 GMT
etag: "61729672-33dc"
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 20 Apr 2023 11:58:53 GMT
pragma: public
cache-control: max-age=2592000, public
x-cached-be: MISS
x-cached-fe: HIT
x-webpsupport-fe: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/uploads/2020/10/LOGO-coronasneltest-Dronten.001-1-246x63.jpeg | 188.166.202.225 | 307 Temporary Redirect | 164 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/uploads/2020/10/LOGO-coronasneltest-Dronten.001-1-246x63.jpeg IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash813f9846b49c0ada805648edf1b2fdbd caa24890460f73e6a72bb49426351e67e83b053d 8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3
GET /wp-content/uploads/2020/10/LOGO-coronasneltest-Dronten.001-1-246x63.jpeg HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 307 Temporary Redirect
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/html
content-length: 164
location: https://image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/LOGO-coronasneltest-Dronten.001-1-246x63.jpeg.webp?doOptimise=1
expires: Thu, 27 Apr 2023 08:13:37 GMT
cache-control: max-age=2592000
link: <https://image-proxy.taivas.cloud>; rel=preconnect;
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-solid-900.woff2 | 188.166.202.225 | 200 OK | 78 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-solid-900.woff2 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeWeb Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data Hashe8a427e15cc502bef99cfd722b37ea98 a9922842a120a7f1eaced667480c5e185a106d69 d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
GET /wp-content/plugins/beaver-builder-lite-version/fonts/fontawesome/5.15.3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/octet-stream
content-length: 78196
last-modified: Fri, 22 Oct 2021 10:46:09 GMT
etag: "61729671-13174"
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 20 Apr 2023 11:58:53 GMT
pragma: public
cache-control: max-age=2592000, public
x-cached-be: MISS
x-cached-fe: HIT
x-webpsupport-fe: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-JRXYDG5FBW | 142.250.74.168 | 200 OK | 78 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-JRXYDG5FBW IP142.250.74.168:0
File typeASCII text, with very long lines (19390) Hash56b1d2b368f02fc3cae5e82f926720d3 00ceb2f8c6e52110a6459e302d239d09e3bef9d4 e2be1ee8aa3265ddf4d1e74895efb1e134feac8c9de736a9c7f6728bfc9986f3
GET /gtag/js?id=G-JRXYDG5FBW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Mar 2023 08:13:38 GMT
expires: Tue, 28 Mar 2023 08:13:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78232
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1 | 188.166.202.225 | 200 OK | 5.0 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-includes/js/wp-emoji-release.min.js?ver=5.8.1 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeASCII text, with very long lines (15224) Hashd4309b361cc112310f6783ba732dced7 335e8ba1f7d4e77a8e4ae0472c80b34956a5dceb 8342ecb4358a352cfadcdff36a6462eca8dd8589808fe59a287960119822334c
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.1 HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/javascript
last-modified: Fri, 22 Oct 2021 10:44:10 GMT
etag: W/"617295fa-4705"
x-taivas-source: Taivas-webserver-4
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
x-cached-be: MISS
pragma: public, public
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/7a27c.js | 188.166.202.225 | 200 OK | 2.0 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/7a27c.js IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeASCII text, with very long lines (2938) Hashb01ef3562848d3c8f161d7438e743fbd 6b162f311ff62876a2fe7c242407c95202a12e0c 9203ca9b0ef4aaba63d2a7fc50f829372312e5f47e4bca2dc706476fdb9b650b
GET /wp-content/cache/minify/7a27c.js HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 22 Oct 2021 10:46:47 GMT
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/dc8ba.js | 188.166.202.225 | 200 OK | 16 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/dc8ba.js IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeUnicode text, UTF-8 text, with very long lines (10594) Hasha926706bc35d1b3fe27a3e0353077847 34f4832620ee1100cc91b8c485730a9fc436a3cb 22560ea5dd49feeaaec8de65f1722ff52ffcffbe5aeb37c6d3f1ffa267e5fdce
GET /wp-content/cache/minify/dc8ba.js HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 01 Dec 2021 07:44:41 GMT
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j | 188.166.202.225 | 200 OK | 93 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Ultimate-Icons\012- data Hash4f52acd8464d9611fe731e6182f1986e a6367a5d19bd2b65265eee57e03068dca24be313 49f204eb11dd2940cb55d01fbe8f8f2fef9167ff1cb6e22bcecde06c0078f630
GET /wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronasneltestdronten.nl/wp-content/cache/minify/181fc.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/octet-stream
content-length: 93024
last-modified: Fri, 22 Oct 2021 10:48:34 GMT
etag: "61729702-16b60"
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Fri, 21 Apr 2023 12:04:11 GMT
pragma: public
cache-control: max-age=2592000, public
x-cached-be: MISS
x-cached-fe: HIT
x-webpsupport-fe: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Open+Sans%3Anormal%2C%2C600%2C400%2C700&display=fallback&ver=3.0.2 | 172.217.21.170 | 200 OK | 1.2 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans%3Anormal%2C%2C600%2C400%2C700&display=fallback&ver=3.0.2 IP172.217.21.170:0
Hashe2afd4e137a809987c5ee8cca9803268 b0fa3578fb0a6711da27a0a3af990ff79e64ac97 4d76ba0c0bd01b4126fdbdb31db883bc6c0f815d6d41fae2c28dd7fba42d44de
GET /css?family=Open+Sans%3Anormal%2C%2C600%2C400%2C700&display=fallback&ver=3.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Mar 2023 08:13:38 GMT
date: Tue, 28 Mar 2023 08:13:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/63a69.js | 188.166.202.225 | 200 OK | 46 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/63a69.js IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeASCII text, with very long lines (2139), with no line terminators Hashad9e95069734fda8958ca9a5f4cde135 fc76c0388524e0ff686c9c2ed297e5c96e969a53 7fd3348d08d0aad3b1265c5cdbb2987236f573eca5b6f921cebf2b0a41e1b5fc
GET /wp-content/cache/minify/63a69.js HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 22 Oct 2021 10:46:47 GMT
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/06c2e.css | 188.166.202.225 | 200 OK | 75 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/06c2e.css IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeASCII text, with very long lines (60421) Hash9de732b4060afc5193be2802dd577251 1fb005f624a7cc7b93595f8df0814791a68b7d2f 07f74cb44221a88bbddda15cb54e8e15a8db5e3cc075e3ad1e55f9016afa4cdc
GET /wp-content/cache/minify/06c2e.css HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-taivas-source: Taivas-webserver-4
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:37 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:13:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.191.130.48 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.191.130.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: S+amiH5PR4NVX42EevB0kg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Zy5d8AV79ZICO4C/it5W104Ir6g=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb41d15583d608aada7431b6980ee2a18 0bad51ba8ac597fc13989a3aa863e04d28210e2f b60a2232b723eb6f1cff1e38c1b3df0ec71c38d934a4ea171ea2260decd6e9ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B60A2232B723EB6F1CFF1E38C1B3DF0EC71C38D934A4EA171EA2260DECD6E9EC"
Last-Modified: Tue, 28 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16134
Expires: Tue, 28 Mar 2023 12:42:32 GMT
Date: Tue, 28 Mar 2023 08:13:38 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0a3633ef89de948eda286f3764b268c3 4204d82fa2b9d9ee2f645cdc9274db424a33c9ba ec1aed9689590827783c62108f40bc5cb3d2866f5d264a4607caa7e27d589b56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC1AED9689590827783C62108F40BC5CB3D2866F5D264A4607CAA7E27D589B56"
Last-Modified: Mon, 27 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16148
Expires: Tue, 28 Mar 2023 12:42:46 GMT
Date: Tue, 28 Mar 2023 08:13:38 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0a3633ef89de948eda286f3764b268c3 4204d82fa2b9d9ee2f645cdc9274db424a33c9ba ec1aed9689590827783c62108f40bc5cb3d2866f5d264a4607caa7e27d589b56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC1AED9689590827783C62108F40BC5CB3D2866F5D264A4607CAA7E27D589B56"
Last-Modified: Mon, 27 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16134
Expires: Tue, 28 Mar 2023 12:42:32 GMT
Date: Tue, 28 Mar 2023 08:13:38 GMT
Connection: keep-alive
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/dc06c.js | 188.166.202.225 | 200 OK | 6.5 kB |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/dc06c.js IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text, with very long lines (3037) Hashb0c4932e3dfe48e70dfa6e0a3d086908 7d995f121b7409968c42d81ef1d7930f21e8f05f 590dcbb7229e5a5cd7f3f5dbb21ed94c144904ebfb4c2b4b062ad15b3f52f66e
GET /wp-content/cache/minify/dc06c.js HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 22 Oct 2021 10:46:47 GMT
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-home-scaled.jpg.webp?doOptimise=1 | 188.166.202.225 | 200 OK | 126 kB |
URL HTTP/2image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-home-scaled.jpg.webp?doOptimise=1 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1620x1080, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size126 kB (126182 bytes) Hashef624740bc19fb1d0bdbb997ca5f7b7c 38b41dfbaab715a09a957e8ebffbe6c37afb1b2e 2abcd2c2bfa97f870b09539656dd8746c1822070ac559bd3f1b825bff2087750
GET /www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-home-scaled.jpg.webp?doOptimise=1 HTTP/1.1
Host: image-proxy.taivas.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: image/webp
content-length: 126182
x-taivas-weboptimiser: Image optimiser V1.0
x-cached-webp-be: EXPIRED
pragma: public, public, public
cache-control: max-age=2592000, public, public
x-cached-webp-fe: HIT
X-Firefox-Spdy: h2
|
|
| image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-kaart.png.webp?doOptimise=1 | 188.166.202.225 | 200 OK | 48 kB |
URL HTTP/2image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-kaart.png.webp?doOptimise=1 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeRIFF (little-endian) data, Web/P image\012- data Hash23135cd90257584b845806c17f0517be 0ff497aa6ddf5f016eadba358558d8f8e37af288 7700ebfa1c251222ae02281a110220e5d5ad3dd110a7a42cec3a73fe31cd4f20
GET /www.coronasneltestdronten.nl/wp-content/uploads/2020/10/afbeelding-kaart.png.webp?doOptimise=1 HTTP/1.1
Host: image-proxy.taivas.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: image/webp
content-length: 47584
x-taivas-weboptimiser: Image optimiser V1.0
x-cached-webp-be: EXPIRED
pragma: public, public, public
cache-control: max-age=2592000, public, public
x-cached-webp-fe: HIT
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg | 188.166.202.225 | 307 Temporary Redirect | 164 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash813f9846b49c0ada805648edf1b2fdbd caa24890460f73e6a72bb49426351e67e83b053d 8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3
GET /wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Cookie: _ga_JRXYDG5FBW=GS1.1.1679991238.1.0.1679991238.0.0.0; _ga=GA1.1.1648345109.1679991239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 307 Temporary Redirect
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: text/html
content-length: 164
location: https://image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg.webp?doOptimise=1
expires: Thu, 27 Apr 2023 08:13:38 GMT
cache-control: max-age=2592000
link: <https://image-proxy.taivas.cloud>; rel=preconnect;
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg | 188.166.202.225 | 307 Temporary Redirect | 164 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash813f9846b49c0ada805648edf1b2fdbd caa24890460f73e6a72bb49426351e67e83b053d 8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3
GET /wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Cookie: _ga_JRXYDG5FBW=GS1.1.1679991238.1.0.1679991238.0.0.0; _ga=GA1.1.1648345109.1679991239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 307 Temporary Redirect
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: text/html
content-length: 164
location: https://image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg.webp?doOptimise=1
expires: Thu, 27 Apr 2023 08:13:38 GMT
cache-control: max-age=2592000
link: <https://image-proxy.taivas.cloud>; rel=preconnect;
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 216.58.207.206 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP216.58.207.206:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 28 Mar 2023 08:05:11 GMT
expires: Tue, 28 Mar 2023 10:05:11 GMT
cache-control: public, max-age=7200
age: 507
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=391169583&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&ul=en-us&de=UTF-8&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=218038631&gjid=1794419909&cid=1648345109.1679991239&tid=G-JRXYDG5FBW&_gid=876931889.1679991239&_r=1&_slc=1&z=764123139 | 216.58.207.206 | 200 OK | 3 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j99&aip=1&a=391169583&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&ul=en-us&de=UTF-8&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=218038631&gjid=1794419909&cid=1648345109.1679991239&tid=G-JRXYDG5FBW&_gid=876931889.1679991239&_r=1&_slc=1&z=764123139 IP216.58.207.206:0
File typeASCII text, with no line terminators Hashdec002daa3f9abe33f5ab1a61ba58e91 b286614a767c86a75059fb1d4557be706e7c3812 1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26
POST /j/collect?v=1&_v=j99&aip=1&a=391169583&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&ul=en-us&de=UTF-8&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABAAAAACAAI~&jid=218038631&gjid=1794419909&cid=1648345109.1679991239&tid=G-JRXYDG5FBW&_gid=876931889.1679991239&_r=1&_slc=1&z=764123139 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.coronasneltestdronten.nl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.coronasneltestdronten.nl
date: Tue, 28 Mar 2023 08:13:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg.webp?doOptimise=1 | 188.166.202.225 | 200 OK | 374 B |
URL HTTP/2image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg.webp?doOptimise=1 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash40d373a52f322e081b5a8118ab8cf5a9 8dd7cabc72456faa08aefd765eb546eb01a91686 bf342bb9717a74eb788457b6e8f908dac93f9d431beb96ae537561ed681a7be7
GET /www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-32x32.jpeg.webp?doOptimise=1 HTTP/1.1
Host: image-proxy.taivas.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: image/webp
content-length: 374
x-taivas-weboptimiser: Image optimiser V1.0
x-cached-webp-be: EXPIRED
pragma: public, public, public
cache-control: max-age=2592000, public, public
x-cached-webp-fe: MISS
X-Firefox-Spdy: h2
|
|
| image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg.webp?doOptimise=1 | 188.166.202.225 | 200 OK | 1.8 kB |
URL HTTP/2image-proxy.taivas.cloud/www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg.webp?doOptimise=1 IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash1dad40ca2153bf599088fc33d7e3eb24 ebae6913456096fc2f65e52e3cff6ff668163e8e 056fb2fd8cd48f0b15a5c0a7f53c0dc16d601a6c39a5ace679c0e361b1de2a97
GET /www.coronasneltestdronten.nl/wp-content/uploads/2020/10/cropped-Favicon-corona-sneltest-Dronten.002-192x192.jpeg.webp?doOptimise=1 HTTP/1.1
Host: image-proxy.taivas.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:39 GMT
content-type: image/webp
content-length: 1840
x-taivas-weboptimiser: Image optimiser V1.0
x-cached-webp-be: EXPIRED
pragma: public, public, public
cache-control: max-age=2592000, public, public
x-cached-webp-fe: MISS
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-JRXYDG5FBW>m=45je33r0&_p=391169583&cid=1648345109.1679991239&ul=en-us&sr=1280x1024&_s=1&sid=1679991238&sct=1&seg=0&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-JRXYDG5FBW>m=45je33r0&_p=391169583&cid=1648345109.1679991239&ul=en-us&sr=1280x1024&_s=1&sid=1679991238&sct=1&seg=0&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JRXYDG5FBW>m=45je33r0&_p=391169583&cid=1648345109.1679991239&ul=en-us&sr=1280x1024&_s=1&sid=1679991238&sct=1&seg=0&dl=https%3A%2F%2Fwww.coronasneltestdronten.nl%2F&dt=Corona%20sneltest%20Dronten%20%7C%20testuitslag%20binnen%2015%20minuten&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Origin: https://www.coronasneltestdronten.nl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.coronasneltestdronten.nl
date: Tue, 28 Mar 2023 08:13:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9968
Expires: Tue, 28 Mar 2023 10:59:47 GMT
Date: Tue, 28 Mar 2023 08:13:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9968
Expires: Tue, 28 Mar 2023 10:59:47 GMT
Date: Tue, 28 Mar 2023 08:13:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbe1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9968
Expires: Tue, 28 Mar 2023 10:59:47 GMT
Date: Tue, 28 Mar 2023 08:13:39 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe7f11a7b2bcf82694495805df139feed 45e59e98fb4aeb3ca44c15e3e3bb77466cffe5e6 96ba810197f578fb975bd853acbe948c8e984a7b94d172305d411d4381cf80ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 7e76212a-4621-45ca-9212-da6957f4861f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdb5bGSiIAMFtoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220d08-507bf48c3eeba38b719de318;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:39:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Zy7ItZQS-88zGHgnpCOzsRh6BL36AzV2MM-zUB5nCcLnaqgbJh8NxA==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:14:11 GMT
age: 35968
etag: "45e59e98fb4aeb3ca44c15e3e3bb77466cffe5e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashda174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRP5DG2BoAMFrdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:50:10 GMT
age: 37409
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg | 34.120.237.76 | 200 OK | 6.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash15e37de1dba62187e1e5f012145813f3 cfe8cd953330252e15594f403e2f38ec56acdfd7 89bf7dbcf5a7fca006545f001b47de0ab6f94014de4bd4c519f6050e6daa5aa0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6542
x-amzn-requestid: 1106a670-cf68-4e3d-b5af-3013407acc5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbsjGAaoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-726c7ba02ddb31182834d82d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TTkQTse69m-F42cDPL9Ekonn48FG74B_3jFCpvBEa7au89m0_JE3og==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:06:45 GMT
age: 36414
etag: "cfe8cd953330252e15594f403e2f38ec56acdfd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashada29e049501b12a35b0bcc5f68e3e57 5c1ba9bffbcc9007e7f119dbb3197db34a12f8da b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 37518
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe828b7227de7aa7a7b7c54c96e0cef9a 9a717142ab25dabf9123485ef51ed586662d2a71 0390f8771432de010cc11e11be2e2dfa7c303664858a5b066e66a628a1f3dd66
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8553
x-amzn-requestid: 05cb5115-a27b-485a-89fd-670bdb5bb06f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbofHHPIAMFkQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-774bb5d725336b35088e2527;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: NcKs_URb5dFDbkEoCqy2_fjKWneX7mifmEbd5MA5unqkhiPAIH9GPg==
via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:50:10 GMT
age: 37409
etag: "9a717142ab25dabf9123485ef51ed586662d2a71"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe5d955ec5d3a9f655e4ca0523acfd039 e8b2cd28a02a2cee1b4e57c57570f2598721ff57 e7753ef91d6f04dce00f83cb1ba3ea4f1abb52140993fbee375e506597cee529
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6970
x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdn3zGn7oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 23:12:05 GMT
age: 32494
etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5d389dd69e54e5d7b547a425f9b22ebf 604a65cfc5572c5da9d3fdea795be3942b8d14cb 5beda50c5f20633003e1f939673a6005eca314372e7f8fe0a1d4bb5702ae1712
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9501
x-amzn-requestid: 4c3f56b8-4d4f-4c4d-bd7c-faa15f6cec41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbskGe9IAMFrkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-41acd1d8310ca659548a3039;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: _Mg3EgvJrS5IsmBULM6xZJra0-VkJEEtYlO-RfcE-4eHlghhqU8vdg==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:06:36 GMT
age: 36430
etag: "604a65cfc5572c5da9d3fdea795be3942b8d14cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/ | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/ IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
NIDS | Severity | Alert | suricata | medium | ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M2 |
GET / HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/html; charset=UTF-8
x-tec-api-version: v1
x-tec-api-root: https://www.coronasneltestdronten.nl/wp-json/tribe/events/v1/
x-tec-api-origin: https://www.coronasneltestdronten.nl
link: <https://www.coronasneltestdronten.nl/wp-json/>; rel="https://api.w.org/", <https://www.coronasneltestdronten.nl/wp-json/wp/v2/pages/26>; rel="alternate"; type="application/json", <https://www.coronasneltestdronten.nl/>; rel=shortlink, <https://image-proxy.taivas.cloud>; rel=preconnect;
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: pb-b7ce1c41160b0d811bcdb94d80459685
expires: Tue, 28 Mar 2023 08:18:35 GMT
cache-control: max-age=300
x-webpsupport: 0
x-smartcache: HIT
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://*.google-analytics.com https://google-analytics.com https://*.doubleclick.net https://*.gstatic.com https://*.google.com/ https://*.googleapis.com/ https://maxcdn.bootstrapcdn.com/ https://*.sharethis.com https://*.facebook.net https://*.facebook.com https://*.fbcdn.net https://*.googleusercontent.com https://googleusercontent.com https://*.youtube.com/ https://*.gravatar.com https://code.jquery.com/ https://cdnjs.cloudflare.com/ https://*.twitter.com/ https://api.instagram.com https://*.cdninstagram.com https://*.w.org https://api.myparcel.nl/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://www.google.nl/ https://cdn.datatables.net/ https://wordpress.com https://*.wp.com https://image-proxy.taivas.cloud/ https://coronasneltestdronten.nl/
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-cached-fe: HIT
x-webpsupport-fe: 1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/4f794.css | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/4f794.css IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
GET /wp-content/cache/minify/4f794.css HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:37 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/181fc.css | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/181fc.css IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
GET /wp-content/cache/minify/181fc.css HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:37 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/?wc-ajax=get_refreshed_fragments | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/?wc-ajax=get_refreshed_fragments IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.coronasneltestdronten.nl
Connection: keep-alive
Cookie: _ga_JRXYDG5FBW=GS1.1.1679991238.1.0.1679991238.0.0.0; _ga=GA1.1.1648345109.1679991239
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:41 GMT
content-type: application/json; charset=UTF-8
access-control-allow-origin: https://www.coronasneltestdronten.nl
access-control-allow-credentials: true
x-robots-tag: noindex
expires: Tue, 28 Mar 2023 08:18:41 GMT
cache-control: max-age=300
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: pr-b7ce1c41160b0d811bcdb94d80459685
x-webpsupport: 0
link: <https://image-proxy.taivas.cloud>; rel=preconnect;
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://*.google-analytics.com https://google-analytics.com https://*.doubleclick.net https://*.gstatic.com https://*.google.com/ https://*.googleapis.com/ https://maxcdn.bootstrapcdn.com/ https://*.sharethis.com https://*.facebook.net https://*.facebook.com https://*.fbcdn.net https://*.googleusercontent.com https://googleusercontent.com https://*.youtube.com/ https://*.gravatar.com https://code.jquery.com/ https://cdnjs.cloudflare.com/ https://*.twitter.com/ https://api.instagram.com https://*.cdninstagram.com https://*.w.org https://api.myparcel.nl/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://www.google.nl/ https://cdn.datatables.net/ https://wordpress.com https://*.wp.com https://image-proxy.taivas.cloud/ https://coronasneltestdronten.nl/
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin
x-webpsupport-fe: 0
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/be2df.js | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/be2df.js IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
GET /wp-content/cache/minify/be2df.js HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:37 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 22 Oct 2021 10:47:46 GMT
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:37 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/6dff7.css | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/6dff7.css IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
GET /wp-content/cache/minify/6dff7.css HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.coronasneltestdronten.nl/wp-content/cache/minify/d301a.css | 188.166.202.225 | 200 OK | 0 B |
URL HTTP/2www.coronasneltestdronten.nl/wp-content/cache/minify/d301a.css IP188.166.202.225:0 ASN#14061 DIGITALOCEAN-ASN
GET /wp-content/cache/minify/d301a.css HTTP/1.1
Host: www.coronasneltestdronten.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Taivas-Webconsulting
date: Tue, 28 Mar 2023 08:13:38 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
x-taivas-source: Taivas-webserver-3
x-taivas-waf-policy: ps-b7ce1c41160b0d811bcdb94d80459685
expires: Thu, 27 Apr 2023 08:13:38 GMT
pragma: private, public, public
x-cached-be: MISS
cache-control: max-age=2592000, public
x-cached-fe: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=5.8.1 | 172.217.21.170 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=5.8.1 IP172.217.21.170:0
GET /css?family=Open+Sans%3A400%2C700&ver=5.8.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coronasneltestdronten.nl/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Mar 2023 08:13:38 GMT
date: Tue, 28 Mar 2023 08:13:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|