Overview

URL dev-nieuwe-maatregelen.pantheonsite.io/Vragen/
IP23.185.0.2
ASNFASTLY
Location United States
Report completed2022-09-11 09:59:00 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-10 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/ Government Service
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/ Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/roboto-v18-latin-regular.woff2 Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/roboto-v18-latin-300.woff2 Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/CiutadellaRounded-SmBd.woff2 Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/roboto-v18-latin-500.woff2 Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/adrum.js.download Phishing
2022-09-11 2 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/tbPageWrapper.bundle.j.do (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (1) 867 2020-06-04 20:08:41 UTC 2022-09-11 05:15:46 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-11 04:40:13 UTC 143.204.55.25
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-11 04:58:07 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-11 04:55:37 UTC 54.187.71.185
mnemonic passive DNS cdn.appdynamics.com (1) 3266 2019-06-22 12:44:40 UTC 2022-09-08 20:47:17 UTC 143.204.55.51
mnemonic passive DNS col.eum-appdynamics.com (1) 2199 2018-10-26 07:20:40 UTC 2022-09-11 06:32:44 UTC 50.112.174.169
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-11 04:30:20 UTC 23.33.119.27
mnemonic passive DNS dev-nieuwe-maatregelen.pantheonsite.io (9) 0 2022-09-02 22:10:34 UTC 2022-09-11 07:41:02 UTC 23.185.0.2 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-11 05:39:15 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-11 04:57:20 UTC 34.120.237.76
mnemonic passive DNS ocsp.quovadisglobal.com (2) 4610 2012-10-10 00:35:30 UTC 2022-09-11 05:34:38 UTC 52.210.206.107
mnemonic passive DNS idp.kvk.nl (2) 686179 2017-02-23 15:00:18 UTC 2022-09-07 22:55:48 UTC 176.117.57.39


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 23.185.0.2

Date UQ / IDS / BL URL IP
2022-11-28 07:14:47 +0000
0 - 0 - 2 dev-kid-bienlinea.pantheonsite.io/index.php 23.185.0.2
2022-11-28 07:14:51 +0000
0 - 0 - 2 dev-dustril-gt-guate.pantheonsite.io/index.php 23.185.0.2
2022-11-28 06:56:48 +0000
0 - 0 - 5 dev-qontowebf.pantheonsite.io/pro/11836 23.185.0.2
2022-11-28 06:56:33 +0000
0 - 0 - 5 dev-qontowebd.pantheonsite.io/pro/39325 23.185.0.2
2022-11-28 06:52:02 +0000
0 - 0 - 4 dev-qontowebf.pantheonsite.io/pro/78635/ 23.185.0.2

Last 5 reports on ASN: FASTLY

Date UQ / IDS / BL URL IP
2022-11-28 08:15:37 +0000
0 - 0 - 2 raw.githubusercontent.com/rebel137/files/main (...) 185.199.109.133
2022-11-28 08:05:26 +0000
0 - 0 - 2 dev-msl-in.pantheonsite.io/ 23.185.0.1
2022-11-28 08:02:48 +0000
0 - 0 - 3 unefoitrouvergood-com.web.app/ 199.36.158.100
2022-11-28 07:29:44 +0000
0 - 0 - 3 vguk-759ec.firebaseapp.com/ 199.36.158.100
2022-11-28 07:29:25 +0000
0 - 0 - 3 cfsd-3a0a0.firebaseapp.com/ 199.36.158.100

Last 2 reports on domain: dev-nieuwe-maatregelen.pantheonsite.io

Date UQ / IDS / BL URL IP
2022-09-11 09:59:00 +0000
0 - 0 - 8 dev-nieuwe-maatregelen.pantheonsite.io/Vragen/ 23.185.0.2
2022-09-11 07:41:16 +0000
0 - 0 - 2 dev-nieuwe-maatregelen.pantheonsite.io/vragen/* 23.185.0.2

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-06 09:58:16 +0000
0 - 0 - 8 dev-aanmelding-steunpakket-kvk.pantheonsite.i (...) 23.185.0.1
2022-09-02 22:30:05 +0000
0 - 0 - 2 dev-shortners-kvk.pantheonsite.io/KVK 23.185.0.3


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (32)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 09:08:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qIPUy9A_MzrHoWuzynMd3XoHN2i1teivcTweoCQqZT6A6t-ZT_xt8Q==
Age: 3035


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Sun, 11 Sep 2022 10:59:32 GMT
Date: Sun, 11 Sep 2022 09:58:50 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oR4Kzzh14dpaYirlFQaqrkAZM2mAfR76REcX9R-2tQ0VTMFp5S3QhA==
age: 9698
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 11 Sep 2022 09:58:50 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /Vragen/ HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
cache-control: no-store, no-cache, must-revalidate
content-encoding: gzip
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: nginx
set-cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35; expires=Tue, 04-Oct-2022 13:32:10 GMT; Max-Age=2000000; path=/
strict-transport-security: max-age=300
traceparent: 00-afb4a4ed4fb74ec98256b89483961e01-4f0093c9e4eb8547-00
x-cloud-trace-context: afb4a4ed4fb74ec98256b89483961e01/5692712424334656839;o=0
x-pantheon-styx-hostname: styx-fe2-b-5cd77cc4d9-zd2xb
x-styx-req-id: 55ce9c47-31b8-11ed-bdbf-5a83f4138f0e
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-klot8100042-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890330.902832,VS0,VE333
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7703
Md5:    f43051d1196addc7164ab95ec738281a
Sha1:   e51094a149e21b21221e9937c82d44f6e3b67d39
Sha256: 9f96e1a26fe18ae2d5978c6c26c3555f5a6f204b5d85d88eba8532de98aedb6d

Alerts:
  Blocklists:
    - openphish: Government Service
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5368
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 09:58:50 GMT
Last-Modified: Sun, 11 Sep 2022 08:29:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /Vragen/KvK/roboto-v18-latin-regular.woff2 HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/styles-40.min.css
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: font/woff2
                                        
access-control-allow-origin: *
etag: "63126c8d-3bf0"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:21 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-852b45b8bbda4a5f83a8667777180c29-c75a47f694acf1a9-00
x-cloud-trace-context: 852b45b8bbda4a5f83a8667777180c29/14364873085833507241;o=0
x-pantheon-styx-hostname: styx-fe2-a-c7885cd54-mr9kr
x-styx-req-id: 561d647c-31b8-11ed-8dcf-968c945a0330
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-kigq8000069-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890331.628095,VS0,VE126
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 15344
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Vragen/KvK/roboto-v18-latin-300.woff2 HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/styles-40.min.css
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: font/woff2
                                        
access-control-allow-origin: *
etag: "63126c89-3c50"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:17 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-d9e0bee834994dfbae4f67bb67ab18c1-6d522aa5bd4f8cc7-00
x-cloud-trace-context: d9e0bee834994dfbae4f67bb67ab18c1/7877405589558496455;o=0
x-pantheon-styx-hostname: styx-fe2-b-5cd77cc4d9-2qrvl
x-styx-req-id: 56200c35-31b8-11ed-8306-12bef138a386
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-kigq8000065-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890331.645494,VS0,VE127
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 15440
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15440, version 1.0\012- data
Size:   15440
Md5:    55536c8e9e9a532651e3cf374f290ea3
Sha1:   ff3a9b8ae317896cbbcbadfbe615d671bd1d32a2
Sha256: eca8ffa764a66cd084800e2e71c4176ef089ebd805515664a6cb8d4fb3b598bf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Vragen/KvK/CiutadellaRounded-SmBd.woff2 HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/styles-40.min.css
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: font/woff2
                                        
access-control-allow-origin: *
etag: "63126c85-8dc0"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:13 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-84efd78ccb8448199356448db0353ca7-84a0c5cee42461a9-00
x-cloud-trace-context: 84efd78ccb8448199356448db0353ca7/9556855901661716905;o=0
x-pantheon-styx-hostname: styx-fe2-a-c7885cd54-67h9t
x-styx-req-id: 561fed3a-31b8-11ed-a0fb-f232cda45906
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-kigq8000076-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890331.644690,VS0,VE128
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 36288
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), CFF, length 36288, version 0.0\012- data
Size:   36288
Md5:    d368f0707a969bf563de27d9edb535e9
Sha1:   218e98c6ac4636517a78a32179e7b2df1eab3076
Sha256: 2ee14c678486082c694e73bbd1553ed2c6198800bb5ca2ef348305dda8f2861c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Vragen/KvK/roboto-v18-latin-500.woff2 HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/KvK/styles-40.min.css
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: font/woff2
                                        
access-control-allow-origin: *
etag: "63126c8c-3cc0"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:20 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-a7c41aff7f394f169c074226cac52462-c1b1763e19b488c0-00
x-cloud-trace-context: a7c41aff7f394f169c074226cac52462/13957066729289189568;o=0
x-pantheon-styx-hostname: styx-fe2-b-5cd77cc4d9-zd2xb
x-styx-req-id: 562024c7-31b8-11ed-bdbf-5a83f4138f0e
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-kigq8000021-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890331.646017,VS0,VE128
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 15552
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p/8tzS/m/3lS2M/yE56DmA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.71.185
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Svc7EmC9j64rRHknNfMcoCsF5Z4=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9926
Expires: Sun, 11 Sep 2022 12:44:18 GMT
Date: Sun, 11 Sep 2022 09:58:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9926
Expires: Sun, 11 Sep 2022 12:44:18 GMT
Date: Sun, 11 Sep 2022 09:58:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9926
Expires: Sun, 11 Sep 2022 12:44:18 GMT
Date: Sun, 11 Sep 2022 09:58:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9926
Expires: Sun, 11 Sep 2022 12:44:18 GMT
Date: Sun, 11 Sep 2022 09:58:52 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:57:28 GMT
age: 43284
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8485
Md5:    e407da4d97d497925b1ab523fd416787
Sha1:   166741631fb93d109b18dde6d316b3fa3276aa8f
Sha256: 707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7d1d7d9-dc6d-4841-a150-2f22abc6729a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9990
x-amzn-requestid: 852e5710-d962-4b43-ad48-9530797ab548
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBsisHAioAMFqsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f477-7de59a7d3553767c45e06ed2;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:19:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: edjwyX-124C71X-bNNnD2tP70Y4XuhX7G5LKmkKjU4IclvCekOOtgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 15:33:37 GMT
age: 66315
etag: "c5fcae1c388ff8f44b9e47734b6b65fd4e0fd856"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9990
Md5:    cd709702d50113aec782e45bb5ecb2a8
Sha1:   c5fcae1c388ff8f44b9e47734b6b65fd4e0fd856
Sha256: 0ec10618a7f2f77cd339e9d1b4e58d29c1c9ad1575f434c813c1d3014c90bf76
                                        
                                            GET /adrum-ext.e4202fb1b0ba7cdba12532dc74bf7403.js HTTP/1.1 
Host: cdn.appdynamics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.51
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 23 Aug 2022 01:23:01 GMT
server: nginx/1.16.1
last-modified: Fri, 07 Dec 2018 00:14:29 GMT
etag: W/"5c09bb65-c86f"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: public, max-age=2678400, s-max-age=14400
timing-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xM492VxJzBLFf453qeIOJpmUzDpppUWlnxFo0lTGWSR0P3KHehNZFQ==
age: 1672549
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   28795
Md5:    ee3851baca4532a587f8bdfea483a44e
Sha1:   ec53410b92e6ba0482af935f50f777a835a90838
Sha256: f120313a855e3a82c011573e7868f711e4734b08b1f69b080cd34b63deb4780d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7443d7c-c2ec-4e8c-ad91-c2f3cdcecead.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11701
x-amzn-requestid: 9c0ca08c-36ec-49fb-b8b2-d38616c7d1c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEjhIHlfoAMFvbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6318193a-41fe17a45f5248864d01ce01;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 04:08:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: WMkzgNuTDjrRpWE6jyqOHnrNlMoNYtllQNKsiNMzRh3qiIk6fnYoEA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:57:19 GMT
age: 82104
etag: "cd9eedb9b5b31a4df3c13410e734d823ec36d71d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11701
Md5:    f25dc1e7a2da853e32c6509b061f49d7
Sha1:   cd9eedb9b5b31a4df3c13410e734d823ec36d71d
Sha256: a143650a7d355826e68eb313bfd4ce0f4b744b9408ecc5b0473dc04058978220
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8171
x-amzn-requestid: 39c8c044-5287-47bb-8731-5706c27a73e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0feFFtkIAMF9NA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ac59-246e1b7e019965f74db95df0;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FVraudPaXgrkcCLGkaxntfC3h4XtbSfnRgzyp72Wgwb-WgWkDwjYPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 11:24:10 GMT
age: 81282
etag: "6c728c56797ba921e8001919df4d36e56dd37e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8171
Md5:    eee5b4d617dab6f10d7053f5c4f4e98e
Sha1:   6c728c56797ba921e8001919df4d36e56dd37e54
Sha256: 76a53e2c81ec8da2bc469760b2c57098d587c6a36fa70e5b7c743a224a47d362
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rnkjEbkwVPPR1stEuMkkuFcQ4WZMDjsuYKA46ZcxejvotwfCG6huhQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:03 GMT
age: 44149
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6109
Md5:    8c35b7f5f8e1b0b24570a41b7d18533a
Sha1:   c5b82c9d77851820b8d206573d5c03cd36d27a20
Sha256: bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5486
Cache-Control: max-age=111469
Date: Sun, 11 Sep 2022 09:58:52 GMT
Etag: "631cac5b-1d7"
Expires: Mon, 12 Sep 2022 16:56:41 GMT
Last-Modified: Sat, 10 Sep 2022 15:25:15 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.quovadisglobal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         52.210.206.107
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Sep 2022 09:58:52 GMT
Server: Apache
Expires: Tue, 13 Sep 2022 09:58:51 GMT
ETag: "0a5c4dde94d400435edc2e05b343483413abbd7b"
Last-Modified: Sun, 11 Sep 2022 09:58:52 GMT
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Length: 1851
Connection: close


--- Additional Info ---
Magic:  data
Size:   1851
Md5:    4cdcf0b088a33ffb8bb9917560c71481
Sha1:   0a5c4dde94d400435edc2e05b343483413abbd7b
Sha256: aa481fee544673f87b4d82b312fbc014942c5146ecae9eaf3d804fd29ca2dc43
                                        
                                            POST / HTTP/1.1 
Host: ocsp.quovadisglobal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         52.210.206.107
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 11 Sep 2022 09:58:52 GMT
Server: Apache
Expires: Tue, 13 Sep 2022 09:58:51 GMT
ETag: "0a5c4dde94d400435edc2e05b343483413abbd7b"
Last-Modified: Sun, 11 Sep 2022 09:58:52 GMT
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Length: 1851
Connection: close


--- Additional Info ---
Magic:  data
Size:   1851
Md5:    4cdcf0b088a33ffb8bb9917560c71481
Sha1:   0a5c4dde94d400435edc2e05b343483413abbd7b
Sha256: aa481fee544673f87b4d82b312fbc014942c5146ecae9eaf3d804fd29ca2dc43
                                        
                                            GET /incl/img/favicons/favicon-16x16.png HTTP/1.1 
Host: idp.kvk.nl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         176.117.57.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 11 Sep 2022 09:58:53 GMT
Content-Length: 628
Last-Modified: Tue, 06 Sep 2022 10:24:43 GMT
Connection: keep-alive
ETag: "63171feb-274"
X-Frame-Options: ALLOW-FROM https://www.kvk.nl
Content-Security-Policy: default-src 'self' https:; frame-src 'self' *.kvk.nl www.googletagmanager.com; child-src 'self' *.kvk.nl www.googletagmanager.com; style-src 'self' 'sha256-LXt7XNkn/2MTBhkM6UrDlImJls49N3+nP/XjFrNZyO4=' *.kvk.nl tagmanager.google.com *.abtasty.com *.mopinion.com; script-src 'self' *.kvk.nl 'sha256-MVbmkMrCnNvlP+CtKIvSQxv9jOMgh76a+AXA4AAYeXM=' 'sha256-EeeULpREplDSZUSVW97YrBpzPCltPT/BgVivzUtuZwM=' 'sha256-hOPCmehScODLmTSR/o9pYczIAOjcmL1uX4VIXwhpA/0=' 'sha256-J7jh02bY5XpfB46dMU6WhRuxJIhrlsogecWvmMf0L4s=' 'sha256-24IzoXDMR1YFS0cUiDP0RAWgUKo0aVMFsbETQkT+8nI=' 'sha256-UoBWnncEL3DVKKBul8ZcKsWvnqToPismbvH/oTgY1sk=' 'sha256-FhBEYqH/PIMN7W5yRm3uUyUknAx+/i+4XybC1s6TOl4=' 'sha256-aXNGsfOuZuJfBrjGJCfWJ7hhgVH6whLUdE52hA50TyU=' 'sha256-/n52hISYJLrxZqQO0+rd/+yql3bgxmVCGnDGLZaIu64=' *.mopinion.com blob: www.google-analytics.com www.googletagmanager.com tagmanager.google.com *.abtasty.com; img-src 'self' *.kvk.nl blob: data: www.google-analytics.com www.googletagmanager.com *.abtasty.com *.cloudfront.com; font-src 'self' *.mopinion.com blob: data: *.kvk.nl *.abtasty.com; connect-src 'self' *.kvk.nl www.google-analytics.com col.eum-appdynamics.com *.abtasty.com *.mopinion.com; frame-ancestors 'self' *.kvk.nl; base-uri 'self' *.kvk.nl;
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Strict-Transport-Security: max-age=157680002


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   628
Md5:    55a8718f70b2acf653a4ce97e58dd77b
Sha1:   258924d396712c495cf5ac45cb30ac3978832321
Sha256: 2ef6fa3e537096769e506a7b3cab969e0a6381a1d808c65184073705e03cf0ba
                                        
                                            GET /incl/img/favicons/apple-touch-icon.png HTTP/1.1 
Host: idp.kvk.nl
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         176.117.57.39
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 11 Sep 2022 09:58:53 GMT
Content-Length: 4656
Last-Modified: Tue, 06 Sep 2022 10:24:43 GMT
Connection: keep-alive
ETag: "63171feb-1230"
X-Frame-Options: ALLOW-FROM https://www.kvk.nl
Content-Security-Policy: default-src 'self' https:; frame-src 'self' *.kvk.nl www.googletagmanager.com; child-src 'self' *.kvk.nl www.googletagmanager.com; style-src 'self' 'sha256-LXt7XNkn/2MTBhkM6UrDlImJls49N3+nP/XjFrNZyO4=' *.kvk.nl tagmanager.google.com *.abtasty.com *.mopinion.com; script-src 'self' *.kvk.nl 'sha256-MVbmkMrCnNvlP+CtKIvSQxv9jOMgh76a+AXA4AAYeXM=' 'sha256-EeeULpREplDSZUSVW97YrBpzPCltPT/BgVivzUtuZwM=' 'sha256-hOPCmehScODLmTSR/o9pYczIAOjcmL1uX4VIXwhpA/0=' 'sha256-J7jh02bY5XpfB46dMU6WhRuxJIhrlsogecWvmMf0L4s=' 'sha256-24IzoXDMR1YFS0cUiDP0RAWgUKo0aVMFsbETQkT+8nI=' 'sha256-UoBWnncEL3DVKKBul8ZcKsWvnqToPismbvH/oTgY1sk=' 'sha256-FhBEYqH/PIMN7W5yRm3uUyUknAx+/i+4XybC1s6TOl4=' 'sha256-aXNGsfOuZuJfBrjGJCfWJ7hhgVH6whLUdE52hA50TyU=' 'sha256-/n52hISYJLrxZqQO0+rd/+yql3bgxmVCGnDGLZaIu64=' *.mopinion.com blob: www.google-analytics.com www.googletagmanager.com tagmanager.google.com *.abtasty.com; img-src 'self' *.kvk.nl blob: data: www.google-analytics.com www.googletagmanager.com *.abtasty.com *.cloudfront.com; font-src 'self' *.mopinion.com blob: data: *.kvk.nl *.abtasty.com; connect-src 'self' *.kvk.nl www.google-analytics.com col.eum-appdynamics.com *.abtasty.com *.mopinion.com; frame-ancestors 'self' *.kvk.nl; base-uri 'self' *.kvk.nl;
Referrer-Policy: no-referrer
X-Content-Type-Options: nosniff
Accept-Ranges: bytes
Strict-Transport-Security: max-age=157680002


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size:   4656
Md5:    8c98d8bc5b4c524bc97d37b7c132d224
Sha1:   d77e424600aff3084c0a9ccdd044d08f4d3fd4ea
Sha256: 7cac80925174b46a50c2c5f73ff9397ce21a78d9038c5842e2345ae76535e068
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b3c254c-885d-44f9-9e41-e0a8fa481fd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12739
x-amzn-requestid: 01b048d6-6d4a-47a8-8c10-3147bee48dbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrpXHd6IAMFr3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f308-3572556a0ade85850a41c9f3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SclJ6yjnXIZrZIvmdDxU_C__nU2Q6Kvc8RRHkP2eDBbkX5QHX7GYOg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:52 GMT
age: 44106
etag: "fbcf136bbce304b6954596534c220278c1e19acc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12739
Md5:    98bae78a7f6264f70dab0cc91cd90aec
Sha1:   fbcf136bbce304b6954596534c220278c1e19acc
Sha256: 2d68529ced1a980b3f934d3dc617bbe424c62759ef018bf442b6756de98e10dc
                                        
                                            GET /Vragen/KvK/styles.min.css HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"63126c95-11a0d"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:29 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-ba355fa9ec7d4941bafdfd1ada80fa84-ba863324d2380f2c-00
x-cloud-trace-context: ba355fa9ec7d4941bafdfd1ada80fa84/13440486371172552492;o=0
x-pantheon-styx-hostname: styx-fe2-b-5cd77cc4d9-4klrs
x-styx-req-id: 55f3c001-31b8-11ed-8f46-ca1942f2dcd4
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-klot8100113-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890330.354912,VS0,VE128
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /Vragen/KvK/styles-40.min.css HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: gzip
etag: W/"63126c9a-92dff"
expires: Sun, 11 Sep 2022 09:58:49 GMT
last-modified: Fri, 02 Sep 2022 20:50:34 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-c9e3be5d511f4b73abcfd681cca68e0d-e7ced1a27b5f68d4-00
x-cloud-trace-context: c9e3be5d511f4b73abcfd681cca68e0d/16703518563748505812;o=0
x-pantheon-styx-hostname: styx-fe2-a-c7885cd54-67h9t
x-styx-req-id: 55f41e5e-31b8-11ed-a0fb-f232cda45906
cache-control: no-cache, must-revalidate
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-klot8100158-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890330.354438,VS0,VE134
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /Vragen/KvK/adrum.js.download HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 200 OK
content-type: text/plain
                                        
content-encoding: gzip
etag: W/"63126c82-124cd"
last-modified: Fri, 02 Sep 2022 20:50:10 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-32a6c1a1a8e540ad8b9673377bb4108f-70ae17258bdd5e6c-00
x-cloud-trace-context: 32a6c1a1a8e540ad8b9673377bb4108f/8119452628223352428;o=0
x-pantheon-styx-hostname: styx-fe2-a-c7885cd54-67h9t
x-styx-req-id: 55f438a4-31b8-11ed-a0fb-f232cda45906
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-klot8100069-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890330.355419,VS0,VE138
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Vragen/KvK/tbPageWrapper.bundle.j.download HTTP/1.1 
Host: dev-nieuwe-maatregelen.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/Vragen/
Cookie: PHPSESSID=f80d2bebdd3be7a07e78202bb32a7d35
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.2
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: gzip
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://dev-nieuwe-maatregelen.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
server: nginx
strict-transport-security: max-age=300
traceparent: 00-ee48ee4f821b43a3bf3fc1e27221734c-a4c89d211ad888c7-00
x-cloud-trace-context: ee48ee4f821b43a3bf3fc1e27221734c/11873913183072192711;o=0
x-pantheon-styx-hostname: styx-fe2-a-c7885cd54-mr9kr
x-styx-req-id: 55f3ca0c-31b8-11ed-8dcf-968c945a0330
date: Sun, 11 Sep 2022 09:58:50 GMT
x-served-by: cache-chi-klot8100146-CHI, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662890330.356554,VS0,VE228
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /eumcollector/beacons/browser/v1/APP_KEY_NOT_SET/adrum HTTP/1.1 
Host: col.eum-appdynamics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 2235
Origin: https://dev-nieuwe-maatregelen.pantheonsite.io
Connection: keep-alive
Referer: https://dev-nieuwe-maatregelen.pantheonsite.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         50.112.174.169
HTTP/2 200 OK
content-type: text/html
                                        
date: Sun, 11 Sep 2022 09:58:52 GMT
expires: 0
set-cookie: ADRUM_BTa=R:47|g:d1be24eb-c0dd-4db4-b99e-0fd72fd54f07;Path=/;Expires=Sun, 11-Sep-2022 09:59:22 GMT;Max-Age=30 ADRUM_BTa=R:47|g:d1be24eb-c0dd-4db4-b99e-0fd72fd54f07|n:appdynamics_eee1d4f8-67a2-498e-a725-47e29803822e;Path=/;Expires=Sun, 11-Sep-2022 09:59:22 GMT;Max-Age=30 SameSite=None;Path=/;Expires=Sun, 11-Sep-2022 09:59:22 GMT;Max-Age=30;Secure ADRUM_BT1=R:47|i:559461;Path=/;Expires=Sun, 11-Sep-2022 09:59:22 GMT;Max-Age=30 ADRUM_BT1=R:47|i:559461|e:20;Path=/;Expires=Sun, 11-Sep-2022 09:59:22 GMT;Max-Age=30
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0
pragma: no-cache
vary: *
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept
x-envoy-upstream-service-time: 0
server: envoy
X-Firefox-Spdy: h2


--- Additional Info ---