www.binding.nl/
75.119.144.45301 Moved Permanently 162 B IP 75.119.144.45:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 28 Nov 2022 06:50:46 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.binding.nl/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4988
Expires: Mon, 28 Nov 2022 08:13:55 GMT
Date: Mon, 28 Nov 2022 06:50:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3771
Cache-Control: max-age=103397
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:47 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:34:04 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5935
Expires: Mon, 28 Nov 2022 08:29:42 GMT
Date: Mon, 28 Nov 2022 06:50:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 06:17:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1982
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nHHrOoAdX0lrENtxAaaC5MpM2n9xb7chIJk6gOqFLmXVjbgf3YOSWaAJqqikP2nYWOqNhMrC07Poy/FL4V3vXQ==
x-amz-request-id: D4M0954AKWRBDAJ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 06:41:57 GMT
age: 530
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.binding.nl/
75.119.144.45200 OK 39 kB IP 75.119.144.45:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9717), with CRLF, LF line terminators
Hash 32fefc4fc5411cbe16b0d3ce1d46b07d
8d7b8536845ddfaaae8f068f0d2546400a4d954f
f63c16e744326ab79b1758031084c0736591a414bfd140eb8062ec68f6755b5c
GET / HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/html; charset=UTF-8
content-length: 39202
x-cache-handler: cache-enabler-engine
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
www.binding.nl/wp-content/uploads/2019/04/LogoBinding272x90.jpg
75.119.144.45200 OK 7.6 kB URL HTTP/2 www.binding.nl/wp-content/uploads/2019/04/LogoBinding272x90.jpg
IP 75.119.144.45:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 272x90, components 3\012- data
Hash 23e958dca064bc2e6c5cfdabcc39f60a
81a7a576532be84c99557d8f8c6e51d93429402c
42d8734e9d28a9a557812952ea2e6dbddfe30abd9a218502ec5592593656818a
GET /wp-content/uploads/2019/04/LogoBinding272x90.jpg HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/jpeg
content-length: 7568
last-modified: Thu, 10 Nov 2022 08:45:10 GMT
etag: "636cba16-1d90"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.binding.nl/wp-content/uploads/2018/09/AvDuinBanner.png
75.119.144.45200 OK 36 kB URL HTTP/2 www.binding.nl/wp-content/uploads/2018/09/AvDuinBanner.png
IP 75.119.144.45:0
File type PNG image data, 486 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash f9ada04f765263e3e16e64a6505def09
fbdcebbb335c0901e5e53ff551d12e5eec753851
dcc8a8970d0488548897258f04de1145b8b5731bc9ec4b6189772aee68a3e758
GET /wp-content/uploads/2018/09/AvDuinBanner.png HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/png
content-length: 36121
last-modified: Thu, 10 Nov 2022 08:43:13 GMT
etag: "636cb9a1-8d19"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
192.0.77.37200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP 192.0.77.37:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/modules/widgets/facebook-likebox/style.css
192.0.77.37200 OK 48 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/modules/widgets/facebook-likebox/style.css
IP 192.0.77.37:0
Hash c3d0405efa850b70d21c25e3d71a464e
6edb9046f6838ca6c274f5c7703889341dfcb674
9fbd3c2713beacc2285bd418877d4a36273244eabf9df9f488bbd6f5ec2c467d
GET /p/jetpack/11.5.1/modules/widgets/facebook-likebox/style.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
content-length: 48
last-modified: Mon, 06 Jul 2015 18:16:56 GMT
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.binding.nl/wp-content/uploads/2019/04/KopBinding-website-300x50.png
75.119.144.45200 OK 2.5 kB URL HTTP/2 www.binding.nl/wp-content/uploads/2019/04/KopBinding-website-300x50.png
IP 75.119.144.45:0
File type PNG image data, 300 x 50, 8-bit colormap, non-interlaced\012- data
Hash 40386f70c7c31863c7b428a4773a7fdd
0c09c568e4676440771e0a537989473575131aa1
9103e3910294b7bd69b115e09d738d628a733f0d8cf50eadd507cfd7ca62b3c9
GET /wp-content/uploads/2019/04/KopBinding-website-300x50.png HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/png
content-length: 2511
last-modified: Thu, 10 Nov 2022 08:45:10 GMT
etag: "636cba16-9cf"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/twitter-timeline.min.js
192.0.77.37200 OK 270 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/twitter-timeline.min.js
IP 192.0.77.37:0
File type ASCII text, with no line terminators
Hash 18af70e911ed6d73672ef0940705e293
7507fc902699c257c250fb0319a2dbf781a96bdd
3688a29bbda548acee73eb4383de2cfe65fee84e27fe7d2bccb7d670f697fa18
GET /p/jetpack/11.5.1/_inc/build/twitter-timeline.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
content-length: 270
last-modified: Thu, 22 Sep 2022 17:43:06 GMT
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.binding.nl/wp-content/plugins/wp-event-calender/css/style.css?ver=6.1.1
75.119.144.45200 OK 8.1 kB URL HTTP/2 www.binding.nl/wp-content/plugins/wp-event-calender/css/style.css?ver=6.1.1
IP 75.119.144.45:0
Hash 85c85ba6cdc7e3eaed88a67959a29ce9
314282ff6323592b8bf11dd199961f942c890c54
a847689c0194ff8ec0813b5afb9b8f8dc603da6554494967b0c82ea02d708ccd
GET /wp-content/plugins/wp-event-calender/css/style.css?ver=6.1.1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Thu, 10 Nov 2022 08:37:02 GMT
etag: W/"636cb82e-1730"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/www.binding.nl/wp-content/uploads/2020/04/Frank-Streng_K3B7257-groot-small-1.jpg?resize=324%2C160&ssl=1
192.0.77.2200 OK 6.6 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2020/04/Frank-Streng_K3B7257-groot-small-1.jpg?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 324x160, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2900846b3a583d2a7fe4a861b591fc30
987d43aae43f03f068a86562f059cfba04ee71ac
a9087e74b38814a4ab964e8a893361061eafd5b89d419641db6238640730fc9c
GET /www.binding.nl/wp-content/uploads/2020/04/Frank-Streng_K3B7257-groot-small-1.jpg?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 6578
last-modified: Fri, 18 Nov 2022 20:18:34 GMT
expires: Mon, 18 Nov 2024 08:18:34 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2020/04/Frank-Streng_K3B7257-groot-small-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1965d7fefe8cb555"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/20150629223618-e5c62323-me_small-e1669199612148.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 56 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/20150629223618-e5c62323-me_small-e1669199612148.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 767514499d6439af46f5dc302af17b4f
56bb5b3a55e0d66764b4bbbdcc92b4992572a491
aa179c615a767e1bb27a0c41936e4aba9cb71ee2a0c25ffa25aeb9606ba5c703
GET /www.binding.nl/wp-content/uploads/2022/11/20150629223618-e5c62323-me_small-e1669199612148.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 55586
last-modified: Sat, 26 Nov 2022 12:31:25 GMT
expires: Tue, 26 Nov 2024 00:31:25 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/20150629223618-e5c62323-me_small-e1669199612148.png>; rel="canonical"
x-content-type-options: nosniff
etag: "87278789476750df"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/repaircafe_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 80 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/repaircafe_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8141d70d9844280e46fad0d07924f102
c4fcac24d1337340798b36e813b450de4ae11363
04a173416b51d85e4598627189a32afb4300b8e611c1769b4df6870222b4b2d7
GET /www.binding.nl/wp-content/uploads/2022/11/repaircafe_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 79986
last-modified: Sat, 26 Nov 2022 12:31:25 GMT
expires: Tue, 26 Nov 2024 00:31:25 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/repaircafe_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c1e2d2bb46a5f16a"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 88 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash adecb524bd1f7f1c7f8aa3e2c4a9fa92
494a68cccf8dc5b27c2ef5c8cfe4b2fdb9ff806a
633ff933787e3ead8d79d232faa32278d786c06d89ffcff493bf34fa59ca22a8
GET /www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 87668
last-modified: Sat, 26 Nov 2022 12:58:19 GMT
expires: Tue, 26 Nov 2024 00:58:19 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "e321c19b484fdc5d"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 85 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 57537b443775ef5e4b28287a0ac25a5d
dd6d77140a2866553ffde29735c9324e5bbb342e
8bc565291fd1808ded541f6dafdeebe4f525eb2add3afc216aa1fe63b798cb6d
GET /www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 84822
last-modified: Fri, 25 Nov 2022 20:38:52 GMT
expires: Mon, 25 Nov 2024 08:38:52 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "31cd4390402216a6"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/01/QR-code-Binding.png?resize=587%2C600&ssl=1
192.0.77.2200 OK 23 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/01/QR-code-Binding.png?resize=587%2C600&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 16a8dfd5c4e65d4c1719316aaffa0a37
6ac37cfb59459391e977b2991543cbdc2aeb96ff
d9518c4e9109aacf1130cbb457ec2ce2a1fce0c1642c21108075d06f81226483
GET /www.binding.nl/wp-content/uploads/2022/01/QR-code-Binding.png?resize=587%2C600&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 22622
last-modified: Fri, 18 Nov 2022 20:18:34 GMT
expires: Mon, 18 Nov 2024 08:18:34 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/01/QR-code-Binding.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c936e2c2f77a7ff9"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C235&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 324x235, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f98d4a4b060b28f95cdd3d06405376e1
ea4e6c2e6d125b555c68a0290e8f8982d9dbd1da
3e75c3c79992dd4bf51a405160ae21d3e6876f53af88ab2341269ed58765eeec
GET /www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 14448
last-modified: Thu, 24 Nov 2022 14:28:33 GMT
expires: Sun, 24 Nov 2024 02:28:33 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "310cbb01fd950bce"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/10/foto-1-vrijwilligersmarkt_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 104 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/10/foto-1-vrijwilligersmarkt_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 104 kB (103504 bytes)
Hash 1a7c1a1bdeb32dab2ddaa8a182b90628
40b9320d0b114a0992f29b808ea05c907bd938b2
b2f5ed97da595c3bdec2030886ad7255475a9bb34e45d49b0ff40916b0132668
GET /www.binding.nl/wp-content/uploads/2022/10/foto-1-vrijwilligersmarkt_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 103504
last-modified: Sun, 20 Nov 2022 20:10:00 GMT
expires: Wed, 20 Nov 2024 08:10:00 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/10/foto-1-vrijwilligersmarkt_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "529704baa2637933"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_324x235.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 140 B URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_324x235.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 28a00317af536e856d8926b76f2a95e9
535dfeea3347f29b2dbb8e53b7930e87020f4f13
fb2329c1045d43e9be429854fbc31db325c6a0971d0d35b13e4437007122e102
GET /www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_324x235.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 140
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_324x235.png>; rel="canonical"
x-content-type-options: nosniff
etag: "cd6f10ea798ee04d"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C160&ssl=1
192.0.77.2200 OK 11 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 324x160, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0a48842f8b1c996f67ceff927d990346
0df1d8c1af00b781b73760fd2500cd621384bb94
464c80c0c0b6366d89fbc2ea77f7fca3d36dc8643221efb5c59c790a50dd0ed7
GET /www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 11376
last-modified: Thu, 24 Nov 2022 14:28:33 GMT
expires: Sun, 24 Nov 2024 02:28:33 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2019/11/IJsbaan-en-Kerstmarkt_small_resultaat_resultaat.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "de26825ec527dd68"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 101 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 101 kB (101320 bytes)
Hash 7c9d475252d7eabd2e5f0ae0275cd5e3
2c914239f4e8d40ada016a67d2bbcb4a232cc4ed
eb54ef4752646dc393e5920c940f8af82436e52baf65f24f05fe652d414e8138
GET /www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 101320
last-modified: Sat, 26 Nov 2022 12:58:19 GMT
expires: Tue, 26 Nov 2024 00:58:19 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "e83864023a27db17"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C160&ssl=1
192.0.77.2200 OK 59 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2649706ea016bbf77a344460e0ed47a4
b41819d232270ccf840a810d9ab79df441f53822
d97128935bcd6b362198ca0017c88b1155ec5240eb948d66aab06a6eb916b536
GET /www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 58666
last-modified: Sat, 26 Nov 2022 12:31:25 GMT
expires: Tue, 26 Nov 2024 00:31:25 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/WF-beweegt_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "ebc46bc38f69eb7a"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C160&ssl=1
192.0.77.2200 OK 65 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 77568b7f44f85282366be0cce82ed7af
e17c39642ddb2f4e1dcd758fe8c627c2816daf99
b1b9169ca0b35ae453062582bf0f51bb7826c6d208a7b0064b6f8cc92734e631
GET /www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 64612
last-modified: Thu, 24 Nov 2022 18:28:19 GMT
expires: Sun, 24 Nov 2024 06:28:19 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Winnaars-Duurzaam-Ondernemen-Awards_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "eb1cba4b638e8f85"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/bas_nijhuis_copyrightproshots_small_bas_nijhuis_Pagina_Beheer_Over_Bas_201710122258481_small.png?resize=324%2C160&ssl=1
192.0.77.2200 OK 78 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/bas_nijhuis_copyrightproshots_small_bas_nijhuis_Pagina_Beheer_Over_Bas_201710122258481_small.png?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e81f74dd8b4f338b6e17525c83bb7b6c
838d728dd18751b4da81f27bbb4a5ea7b21c2020
b6185215e626bdfe3e1aa8a117ff4e590c367dff41a9ab1e1fc3de884736d565
GET /www.binding.nl/wp-content/uploads/2022/11/bas_nijhuis_copyrightproshots_small_bas_nijhuis_Pagina_Beheer_Over_Bas_201710122258481_small.png?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 78014
last-modified: Thu, 17 Nov 2022 14:20:53 GMT
expires: Sun, 17 Nov 2024 02:20:53 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/bas_nijhuis_copyrightproshots_small_bas_nijhuis_Pagina_Beheer_Over_Bas_201710122258481_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "b3f453f3ca75f5e2"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_534x462.png?resize=534%2C462&ssl=1
192.0.77.2200 OK 156 B URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_534x462.png?resize=534%2C462&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d78bd8749f27f867d7fd11a66cff6021
a3140a16c05026a9d07b22facc25c7f121c3a719
b282ddb3e5733f99a6e73867cff0b5d651279e868057b2571a9ba5ae90b25c12
GET /www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_534x462.png?resize=534%2C462&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 156
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/images/no-thumb/td_534x462.png>; rel="canonical"
x-content-type-options: nosniff
etag: "6bba0e4bf3f6486e"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
75.119.144.45200 OK 76 kB URL HTTP/2 www.binding.nl/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
IP 75.119.144.45:0
File type ASCII text, with very long lines (37612), with no line terminators
Hash 9b9ee3ff3a8e80c039a4c1622120a9cd
608859366853976eb7cb85fe96acedb01267f02d
7c34c8733d0b237256f7a5781ad015640ba05ace96bcc1ea3a40e2aeefdc01ed
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 09:39:46 GMT
etag: W/"6374afe2-92ec"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Skriemeravond_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 107 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Skriemeravond_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 107 kB (107314 bytes)
Hash d45b1dba913eb88bd8f9b08525bc3261
abbb664f0e375d379a7e4568e02ea4ff35d918ee
cf6c86eb9ac837096d8cd19248e7f536c6a3e4b96a135911090ba88312127c89
GET /www.binding.nl/wp-content/uploads/2022/11/Skriemeravond_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 107314
last-modified: Wed, 23 Nov 2022 18:05:54 GMT
expires: Sat, 23 Nov 2024 06:05:54 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Skriemeravond_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "de690324119a043f"
vary: Accept
x-nc: MISS arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-34270940-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-34270940-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 048322def4c494f06cbeadadb646263a
dbb2c557d362088438177fac0b054f5cdd8bdb59
a80f50f31d4e81985d6c51fa3d094910025a6f6054af00f601bd18ce61c8c787
GET /gtag/js?id=UA-34270940-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 06:50:47 GMT
expires: Mon, 28 Nov 2022 06:50:47 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/pexels-mikhail-nilov-6964332-scaled-e1668592205386.jpg?resize=324%2C235&ssl=1
192.0.77.2200 OK 9.7 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/pexels-mikhail-nilov-6964332-scaled-e1668592205386.jpg?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 324x235, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eb53ccfa45b85495c028983738fb3349
bda114b81424f9486737ec70a46c38548e7a5864
095d0ceaf3097c6d84075366ac7f3a2a9cb6f868a2fb896b3e484a3a26724089
GET /www.binding.nl/wp-content/uploads/2022/11/pexels-mikhail-nilov-6964332-scaled-e1668592205386.jpg?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 9746
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/pexels-mikhail-nilov-6964332-scaled-e1668592205386.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3d10dac8e21fce1f"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=265%2C198&ssl=1
192.0.77.2200 OK 70 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=265%2C198&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6b65211205c1617659680f1ccb66e7dd
bd962f14f4f73b7d225b3e67b93af543b31e8c9e
718c6dae09a258f1a1c0542e1d8245456eecdea2773c79bd25c4ba79b512f982
GET /www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=265%2C198&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 69502
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png>; rel="canonical"
x-content-type-options: nosniff
etag: "ccad87296e5c7d56"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 68 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c935d966c5dc846470f6274160306623
9d5ed57383241f3d85bb1702acaaf1d35d31d40b
ce915a00639891aea1051a1e6d81c392e6a1478ca266b0b18b55be0731368009
GET /www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 68272
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "1b74a1521c85c30e"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C160&ssl=1
192.0.77.2200 OK 74 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C160&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a7395644e6bada6dfeb84bdeac1943c6
5994cd5fea3e331bdf3d325a3ecfa1b5f481b2eb
7acc4ff10d0a889a0ab084e9e4af90856138b26879341a91878fcbec1e3eb264
GET /www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=324%2C160&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 74410
last-modified: Sat, 26 Nov 2022 12:57:47 GMT
expires: Tue, 26 Nov 2024 00:57:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "7119484c951ab1dd"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=265%2C198&ssl=1
192.0.77.2200 OK 73 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=265%2C198&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9861603a1095e6e8f59d75ca2ef1264d
44f08e10aef62b5f1310073b9fce29d1a6a9ba0c
afd42de9f3db31dbc73670d4f9978fc91c7292af6137c9530641fa6fb83501bc
GET /www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png?resize=265%2C198&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 73110
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/Voetbal-VVW-foto-3_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "c451e414f407e35f"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
192.0.77.37200 OK 788 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (685), with no line terminators
Hash e00e29a7a3ba1655cd6e2adbb00dd03b
52039aa912c6dd3ea86b6b3eaa78d41224e79f1c
37d54a45743d27d43ff57a4ad1a07e975d9d1f291f65c60934df6cf53e5c2b8c
GET /p/jetpack/11.5.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=324%2C235&ssl=1
192.0.77.2200 OK 96 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=324%2C235&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 75c1f891059a2f2f3e007e4c62d8b493
f7a8041510ad21ae119702d08d198b9ef2419a60
a90d4e9cf6a0e467254396f9d0d6acd3221f14bd716666e08d0bfb96b4d7d046
GET /www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png?resize=324%2C235&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 96490
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/2e-wo-Onderdijk.png>; rel="canonical"
x-content-type-options: nosniff
etag: "52743d63664c2179"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=533%2C261&ssl=1
192.0.77.2200 OK 123 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=533%2C261&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 123 kB (122766 bytes)
Hash 3089f060192511202415ef7a2e3c0a84
169c25ae935a49c91cdf82db4d2720a1309014b8
e9ad9a328a88cb66078d5c0591a98392c93607c266c58fbad8d15d38bb9428ca
GET /www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png?resize=533%2C261&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: image/webp
content-length: 122766
last-modified: Mon, 28 Nov 2022 06:50:47 GMT
expires: Wed, 27 Nov 2024 18:50:47 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2022/11/cadeaubonnen-WAN_small.png>; rel="canonical"
x-content-type-options: nosniff
etag: "47566327362ac839"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 06:08:55 GMT
cache-control: public,max-age=3600
age: 2512
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/social-logos/social-logos.min.css
192.0.77.37200 OK 8.2 kB URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/social-logos/social-logos.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (12105)
Hash 73ae30d642f3b95056c924772d98eeb1
f8d380ad5c7bbd93d95642990d13728c8980d8af
4d2ab1de73dcd3aa81aa2767c964cab5fbf5d8db319b086ef2497dd81a3ed5df
GET /p/jetpack/11.5.1/_inc/social-logos/social-logos.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 30 Jun 2020 14:24:10 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iVfLf3pd8PqJLj8dIrdR6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ym2s938F9NQEXnVSOINogUHIQW4=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 598cf585aa38d47bc615079044958420
2b7283c170a381e58ce4866d1629454132e9ef4c
cb4a098c4c7d359950e26d6a54be94855b1eeeb80d47763dd4fe770f61605733
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB4A098C4C7D359950E26D6A54BE94855B1EEEB80D47763DD4FE770F61605733"
Last-Modified: Mon, 28 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13595
Expires: Mon, 28 Nov 2022 10:37:23 GMT
Date: Mon, 28 Nov 2022 06:50:48 GMT
Connection: keep-alive
files.findtrustclicks.com/scripts/stock.js
89.22.228.250200 OK 14 B URL HTTP/1.1 files.findtrustclicks.com/scripts/stock.js
IP 89.22.228.250:0
File type ASCII text, with no line terminators
Hash 72f1e8b856d4317cb40af986a55b6670
47e6db80d6d59cf97163bd2723a5c4af15f8b9cf
1a106fea3287079a3f873a0552cdc8c7edea992195a3d1248472ec27c855e599
GET /scripts/stock.js HTTP/1.1
Host: files.findtrustclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 06:50:48 GMT
Content-Type: application/javascript
Content-Length: 14
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Sat, 26 Nov 2022 12:49:46 GMT
ETag: "e-5ee5f12b586cd"
Accept-Ranges: bytes
www.binding.nl/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1
75.119.144.45200 OK 5.1 kB URL HTTP/2 www.binding.nl/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP 75.119.144.45:0
File type ASCII text, with very long lines (349)
Hash a8344151b70a99a5f3a502926f87c547
7cff52454d8723b3c9d6d118666b9b85df300174
d040d51b23a27db6cc7dd0064f0d31b2a5c443641fd7c2cbeefef7316f36900a
GET /wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 09:40:04 GMT
etag: W/"6374aff4-74a9"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
record.findtrustclicks.com/sort.js?v=7.0.1
89.22.228.250200 OK 1.5 kB URL HTTP/1.1 record.findtrustclicks.com/sort.js?v=7.0.1
IP 89.22.228.250:0
File type ASCII text, with very long lines (4140), with no line terminators
Hash 8ecb46e68d7ee2b249a6f0bd4ecabc88
e0d5a9f07ca629f4c4ac7154095bd419826ed245
16f62d801d81aa35dcebf8da2b88904663904c38d6ae8830be4f5db1d66bd22f
GET /sort.js?v=7.0.1 HTTP/1.1
Host: record.findtrustclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 06:50:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 25 Nov 2022 04:49:21 GMT
ETag: W/"102c-5ee443ec5898d"
Content-Encoding: gzip
record.findtrustclicks.com/sort.js?v=7.2.2
89.22.228.250200 OK 1.5 kB URL HTTP/1.1 record.findtrustclicks.com/sort.js?v=7.2.2
IP 89.22.228.250:0
File type ASCII text, with very long lines (4140), with no line terminators
Hash 8ecb46e68d7ee2b249a6f0bd4ecabc88
e0d5a9f07ca629f4c4ac7154095bd419826ed245
16f62d801d81aa35dcebf8da2b88904663904c38d6ae8830be4f5db1d66bd22f
GET /sort.js?v=7.2.2 HTTP/1.1
Host: record.findtrustclicks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 06:50:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 25 Nov 2022 04:49:21 GMT
ETag: W/"102c-5ee443ec5898d"
Content-Encoding: gzip
www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/icons/newspaper-icons.woff?1
75.119.144.45200 OK 6.0 kB URL HTTP/2 www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/icons/newspaper-icons.woff?1
IP 75.119.144.45:0
File type Web Open Font Format, TrueType, length 5956, version 0.0\012- data
Hash 39d1770eb95e69b7ac8cf06d9848b41d
1a5fb0db1ca06b3d4c45dd4de6a18b5cdec67b8e
2a2ac34136c00e48cd04edf792aec5e6dba2b4cd5942b9383f3f56764125e808
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/images/icons/newspaper-icons.woff?1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: font/woff
content-length: 5956
last-modified: Wed, 16 Nov 2022 09:39:40 GMT
etag: "6374afdc-1744"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
75.119.144.45200 OK 37 kB URL HTTP/2 www.binding.nl/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP 75.119.144.45:0
File type ASCII text, with very long lines (1042)
Hash f8f8f00a5a73ad3ccf19d1868fd1e784
b15de608d9b8c398f4ca4cec2b7ab4d21d73c318
98ff9ddbb98022caa7c7d438ec4bc0e0abd9f2f23db3140d790a372e74153320
GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 09:40:04 GMT
etag: W/"6374aff4-280b6"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.binding.nl/wp-content/themes/Newspaper/images/icons/newspaper.woff?21
75.119.144.45200 OK 33 kB URL HTTP/2 www.binding.nl/wp-content/themes/Newspaper/images/icons/newspaper.woff?21
IP 75.119.144.45:0
File type Web Open Font Format, TrueType, length 32832, version 0.0\012- data
Hash 9c438d9085ef7403699853b7d95e1b64
23beabfda7dbf79279d908123a25a347d09861c5
c21a4f4dea997c97bf301a6d477a7968fabb123e8e00f99ae6fac7f4767324d6
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?21 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.binding.nl/wp-content/themes/Newspaper/style.css?ver=12.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: font/woff
content-length: 32832
last-modified: Wed, 16 Nov 2022 09:39:30 GMT
etag: "6374afd2-8040"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 349678
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 405797
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 46 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (65447)
Hash ab22ccddf6c6b7caeb34684e7d881af7
2ced0071eec1822e9b1369632818524069fe48fc
2255922905dcb930d405105b7fb4d3b216c468064845b7312375536b73cb2e38
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 388620
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash abe4ade580c8a38fc090225e88605406
08054111978613ccfd353bb696e78ee042042f3a
4c856b22ee3eaba64382f576dda274aba39cf4f31c47a815c75f1b9041d89dc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C856B22EE3EABA64382F576DDA274ABA39CF4F31C47A815C75F1B9041D89DC8"
Last-Modified: Sun, 27 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 28 Nov 2022 12:50:49 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
pixel.wp.com/g.gif?v=ext&blog=120680277&post=38&tz=1&srv=www.binding.nl&j=1%3A11.5.1&host=www.binding.nl&ref=&fcp=2546&rand=0.9103167034108519
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=120680277&post=38&tz=1&srv=www.binding.nl&j=1%3A11.5.1&host=www.binding.nl&ref=&fcp=2546&rand=0.9103167034108519
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=120680277&post=38&tz=1&srv=www.binding.nl&j=1%3A11.5.1&host=www.binding.nl&ref=&fcp=2546&rand=0.9103167034108519 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19860, version 1.0\012- data
Hash a95e391373ad634c3b7dbaf77de3f40e
ddc4638bc28c21a400fcd2df94448743f198a257
fa3d5a0422c9b413abb4c78f8ff80de8a8ed58766f7110c82febf5296e899b47
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 15:01:48 GMT
expires: Wed, 22 Nov 2023 15:01:48 GMT
cache-control: public, max-age=31536000
age: 488941
last-modified: Mon, 18 Jul 2022 19:06:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 481228
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.25815441561447083
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.25815441561447083
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=wpcom-no-pv&x_sharing-count-request=pinterest&r=0.25815441561447083 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2021/10/180x150WELKOOP2021-1.png?fit=300%2C249&ssl=1
192.0.77.2200 OK 25 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2021/10/180x150WELKOOP2021-1.png?fit=300%2C249&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 30fc83312de8715e81f991cf57016808
7e9e6218ac359b0d8dcd5506b8cc6c68814b6f39
87a4e893a8b7c838bd1e40b6b2b1eb56b378c3bd578aecc2b22d810ad099ea0f
GET /www.binding.nl/wp-content/uploads/2021/10/180x150WELKOOP2021-1.png?fit=300%2C249&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/webp
content-length: 25194
last-modified: Fri, 29 Oct 2021 07:42:28 GMT
expires: Sun, 29 Oct 2023 19:42:28 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2021/10/180x150WELKOOP2021-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "f770221e4d740413"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2019/04/MMZwaagdijk-Advertentie-Binding-WEB-327x252-px-2019-AK1.jpg?resize=300%2C231&ssl=1
192.0.77.2200 OK 14 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2019/04/MMZwaagdijk-Advertentie-Binding-WEB-327x252-px-2019-AK1.jpg?resize=300%2C231&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x231, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 02115e9739c7cba4fa0f7c298840bb64
7917de6e684619d3c0e5597422b07cd7f6b269c3
15f9515c4ffa198b74a1b7bbb8279804fe13112dec466663aa0ece6c3744aac8
GET /www.binding.nl/wp-content/uploads/2019/04/MMZwaagdijk-Advertentie-Binding-WEB-327x252-px-2019-AK1.jpg?resize=300%2C231&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/webp
content-length: 13614
last-modified: Wed, 05 May 2021 06:01:12 GMT
expires: Fri, 05 May 2023 18:01:12 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2019/04/MMZwaagdijk-Advertentie-Binding-WEB-327x252-px-2019-AK1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7fe5a4bd64927190"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2019/10/CvW2017BannerBindingNL.png?resize=300%2C231&ssl=1
192.0.77.2200 OK 100 kB URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2019/10/CvW2017BannerBindingNL.png?resize=300%2C231&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 100 kB (100160 bytes)
Hash c4e181f173fb7d3f4cfb376b6294e317
b0757360229af66c19e873e504e2568081c5bd71
75e6fcda7ddd4a78607b8025fc318a8f4218cac7c58d7dc2eca9d1a5a54a5b5f
GET /www.binding.nl/wp-content/uploads/2019/10/CvW2017BannerBindingNL.png?resize=300%2C231&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/webp
content-length: 100160
last-modified: Fri, 18 Nov 2022 20:18:34 GMT
expires: Mon, 18 Nov 2024 08:18:34 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2019/10/CvW2017BannerBindingNL.png>; rel="canonical"
x-content-type-options: nosniff
etag: "199fdf452ccaa749"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/www.binding.nl/wp-content/uploads/2019/05/faviconBinding.png?fit=16%2C16&ssl=1
192.0.77.2200 OK 446 B URL HTTP/2 i0.wp.com/www.binding.nl/wp-content/uploads/2019/05/faviconBinding.png?fit=16%2C16&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ec9eb98b3bddf382fc7240d4660d1595
22949580c5ada4cb1f964a7970c4d95d4315261d
2041f5e4058bb21183600648ab725ddf8752964924cf13ad9d596047a789e608
GET /www.binding.nl/wp-content/uploads/2019/05/faviconBinding.png?fit=16%2C16&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: image/webp
content-length: 446
last-modified: Wed, 16 Nov 2022 05:39:09 GMT
expires: Fri, 15 Nov 2024 17:39:09 GMT
cache-control: public, max-age=63115200
link: <https://www.binding.nl/wp-content/uploads/2019/05/faviconBinding.png>; rel="canonical"
x-content-type-options: nosniff
etag: "319fbdb183b9ca6f"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1060
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5346
Cache-Control: max-age=149600
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:24:09 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4544
Expires: Mon, 28 Nov 2022 08:06:33 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4544
Expires: Mon, 28 Nov 2022 08:06:33 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4544
Expires: Mon, 28 Nov 2022 08:06:33 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4544
Expires: Mon, 28 Nov 2022 08:06:33 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
connect.facebook.net/nl_NL/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/nl_NL/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash c657e8b494f150049e6e5fac80c1879c
47503f8279a89dfcb940c51c7af726f986051bdd
c3f39e161782a6524dc372e71cbecdfc67053716fdc6c3f42b148ec785396fba
GET /nl_NL/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6af062bca46135e0648c8a327a7d500c
etag: "75756e45941a4c7869b4b5f482ce882c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 28 Nov 2022 06:56:51 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xlfotJTxUASebl+sgMGHnA==
x-fb-debug: jAXjfswlLUn//vuyGk1WDsxm0/n89aB3zmWsxcv++l93SKnXAcX5ectQMkqiZUrXEbr2MIcX+mSwbLw3E9++gg==
content-length: 1685
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 06:50:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4544
Expires: Mon, 28 Nov 2022 08:06:33 GMT
Date: Mon, 28 Nov 2022 06:50:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a8935783026c10470f60033d3a860f7b
65941dd34eb1063a3f7fe2b6790a11a484a06b9a
e88c706458faf5b5512212692392c7c1a0d8e60af62962267166f5cb60ee9c89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56dccc9-321b-431e-8a92-49471e788b4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11165
x-amzn-requestid: 9e35d865-adea-4d2a-b20f-beb014cdd42f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JE2VIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7cf4db38152cdfa1448cba3d;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: SFO5-C3, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lu-Pi2xJUPfkpTK0vCDauedxSM1ZrNzEKka2-4m6l7pDkt04gUgpnA==
via: 1.1 dec8fa38a453902521b941c7cd70d33c.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:56:40 GMT
etag: "65941dd34eb1063a3f7fe2b6790a11a484a06b9a"
content-type: image/jpeg
age: 32049
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 31773
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13f4c2b3410532b6c756990f1759da46
16096289cd354fada56dbb3f2d75d406ae8ab62f
9894d998a884f2b5637bd12b0cd3df556835ea7a3134eb0f516fc03e3d31c26c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f14adca-9ca8-4ff4-8a3e-4620f8c1e8f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8568
x-amzn-requestid: da2726a2-20ad-4201-b4e9-3de9be88a485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7-BHcUIAMFieA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9f3-370921803a9de7e627682c94;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MqWCYm26OnmydU-vE7YdPyUvmcS2Q9uqWJnG_0wOMymdkGJjI7tR6Q==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:19:39 GMT
age: 30670
etag: "16096289cd354fada56dbb3f2d75d406ae8ab62f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDQn-_Np3qSCYR2kQJnoh6j3-aS25bPTNl13D6MkZpF1fkOhokkFbA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:02:24 GMT
age: 31705
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 32172
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b24e349e9d22fb30fbc80497b512cead
c033d1ecdb9e7640f3df044e39053bed8292fcbc
2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpU6HS6f0BpRceJVfwhBhOgKMTMvdMZj4ST9DMATiqfA10pNplyPtQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 32385
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fwww.binding.nl
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fwww.binding.nl
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fwww.binding.nl HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2190596
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 80423577bb8ca66350f796c228ae9152
39a9a538873e91016bec486f0a39a8f5decf276c
b97b4d704efc28d3c9e1839cc5d08b9663f3f56654d42124e0ec19377a1a9084
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5346
Cache-Control: max-age=149600
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "6383eac7-1d7"
Expires: Wed, 30 Nov 2022 00:24:09 GMT
Last-Modified: Sun, 27 Nov 2022 22:55:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
api.pinterest.com/v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fwww.binding.nl%2F
151.101.84.84200 OK 80 B URL HTTP/2 api.pinterest.com/v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fwww.binding.nl%2F
IP 151.101.84.84:0
File type ASCII text, with no line terminators
Hash 89382c3d34f471398eb4db740e164782
015257cbb6583f73acb6e5315f03bd7145197c50
3c803f420825ef1accf84e1d81218eb4f8a01d747d3c4f4cc109478e82a60aee
GET /v1/urls/count.json?callback=WPCOMSharing.update_pinterest_count&url=https%3A%2F%2Fwww.binding.nl%2F HTTP/1.1
Host: api.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
expires: Mon, 28 Nov 2022 07:05:49 GMT
x-envoy-upstream-service-time: 1
cache-control: no-cache, no-store, must-revalidate
age: 0
set-cookie: _ir=0; Max-Age=1800; HttpOnly; Path=/; Secure
x-pinterest-rid: 1360352826307812
date: Mon, 28 Nov 2022 06:50:49 GMT
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
content-length: 80
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 273603a3f74a104fb413fa4a4f1b1d11
58ce2d10556c152c4644dbb6e67b231be9850da2
d4a2264b3e486e7bbdd4b654cf521d346e08ebbea0b76ecb844d3003247306f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5278
Cache-Control: max-age=160692
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "6384165f-1d7"
Expires: Wed, 30 Nov 2022 03:29:01 GMT
Last-Modified: Mon, 28 Nov 2022 02:01:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.e1bdbadbcc63daea6270.js
143.204.55.96200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.e1bdbadbcc63daea6270.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 53db6c810ee48127f87a9c79e206fc67
aa53e521ba10b23524afc519c6e6ba8d1eb5147c
f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v-xrhqUnsigfB0QHLhLSZ5MGvATcKCO-i_OGbXxAlL9UnmwUNuaAsw==
age: 340903
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8560c8978b5df3ffb0c739a02eb02809
1d58e4af1ab7ba382e294ffca6d51990482a6e5c
1da7a37c7026d5bd7be4ca342e9d0376a7abbaf742031962b3b79ebd4c2c3a73
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5555
Cache-Control: max-age=172092
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:49 GMT
Etag: "638441d2-139"
Expires: Wed, 30 Nov 2022 06:39:01 GMT
Last-Modified: Mon, 28 Nov 2022 05:06:26 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
connect.facebook.net/nl_NL/sdk.js?hash=f74a0eeee33c505a0cc74cd5b46ca704
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/nl_NL/sdk.js?hash=f74a0eeee33c505a0cc74cd5b46ca704
IP 31.13.72.12:0
File type ASCII text, with very long lines (18530)
Hash 99573520abdc8bc44ad17aa203fe1b67
b8db7993a0798b77bfb2c1ec99919e11f23b3d13
1091220e99aae1d96fd11e22c1d4fe56ab2f357ad512e86ab2e8cf8b67195c36
GET /nl_NL/sdk.js?hash=f74a0eeee33c505a0cc74cd5b46ca704 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4dd92e07b60dfbd0ccc0c19eccf5d485
etag: "4777e71e31615c192a4b4546347fa9a2"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 28 Nov 2023 05:55:38 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: mVc1IKvci8RK0XqiA/4bZw==
x-fb-debug: cojNmhJD6x/aqNfH1dMKAAyWqMvyxskD2W6p4VRWywa116/skJ8oWGOVHkfIejk+wEz4ht7hN0paa6AIVI2i/w==
content-length: 88401
x-fb-trip-id: 1904183273
date: Mon, 28 Nov 2022 06:50:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tracking.dbgmhost.nl/matomo.php?action_name=Binding%20%7C%20D%C3%A9%20nieuws-%20en%20advertentiesite%20voor%20Wervershoof%2C%20Onderdijk%2C%20Zwaagdijk-Oost%2C%20Andijk%20en%20Hauwert&idsite=4&rec=1&r=359888&h=6&m=50&s=49&url=https%3A%2F%2Fwww.binding.nl%2F&_id=21578c36ffe98c04&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=ySGNvK&pf_net=95&pf_srv=45&pf_tfr=33&pf_dm1=2064
75.119.144.45204 No Content 0 B URL HTTP/2 tracking.dbgmhost.nl/matomo.php?action_name=Binding%20%7C%20D%C3%A9%20nieuws-%20en%20advertentiesite%20voor%20Wervershoof%2C%20Onderdijk%2C%20Zwaagdijk-Oost%2C%20Andijk%20en%20Hauwert&idsite=4&rec=1&r=359888&h=6&m=50&s=49&url=https%3A%2F%2Fwww.binding.nl%2F&_id=21578c36ffe98c04&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=ySGNvK&pf_net=95&pf_srv=45&pf_tfr=33&pf_dm1=2064
IP 75.119.144.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=Binding%20%7C%20D%C3%A9%20nieuws-%20en%20advertentiesite%20voor%20Wervershoof%2C%20Onderdijk%2C%20Zwaagdijk-Oost%2C%20Andijk%20en%20Hauwert&idsite=4&rec=1&r=359888&h=6&m=50&s=49&url=https%3A%2F%2Fwww.binding.nl%2F&_id=21578c36ffe98c04&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=ySGNvK&pf_net=95&pf_srv=45&pf_tfr=33&pf_dm1=2064 HTTP/1.1
Host: tracking.dbgmhost.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
access-control-allow-origin: https://www.binding.nl
access-control-allow-credentials: true
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57
104.244.42.8200 OK 374 B URL HTTP/2 syndication.twitter.com/settings?session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (913), with no line terminators
Hash 925c2a7587f39436ea29513221652474
695b7f2f3d99f407bcdfd0b372db0e28193cc60c
62e36e14e5c219119cb51c3cdf43a2005512a1bd6ebf2d68d0c610a2e6e3ef0f
GET /settings?session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:49 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Mon, 28 Nov 2022 06:50:50 GMT
content-length: 374
content-encoding: gzip
x-transaction-id: c8e4bad12ff53b5a
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 107
x-connection-hash: 0f3506dea51d02d2fd466092eeb1aeb9e4f38bcbd30a0448f8d05da872bad403
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hhJgIQmBe58OSE_W_-sKwsUqS4nPIGkUSvC1Sxlg170Pv2VKsHJNJg==
age: 409244
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 06:41:08 GMT
expires: Mon, 28 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 582
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3e61f233ef8444%26domain%3Dwww.binding.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.binding.nl%252Ff375ff44698ab2a%26relation%3Dparent.parent&container_width=510&height=1000&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2Fdebinding%2F&locale=nl_NL&sdk=joey&show_facepile=true&small_header=true&tabs=false&width=500
31.13.72.36302 Found 0 B URL HTTP/2 www.facebook.com/v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3e61f233ef8444%26domain%3Dwww.binding.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.binding.nl%252Ff375ff44698ab2a%26relation%3Dparent.parent&container_width=510&height=1000&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2Fdebinding%2F&locale=nl_NL&sdk=joey&show_facepile=true&small_header=true&tabs=false&width=500
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3e61f233ef8444%26domain%3Dwww.binding.nl%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww.binding.nl%252Ff375ff44698ab2a%26relation%3Dparent.parent&container_width=510&height=1000&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2Fdebinding%2F&locale=nl_NL&sdk=joey&show_facepile=true&small_header=true&tabs=false&width=500 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%3D249643311490%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df3e61f233ef8444%2526domain%253Dwww.binding.nl%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.binding.nl%25252Ff375ff44698ab2a%2526relation%253Dparent.parent%26container_width%3D510%26height%3D1000%26hide_cover%3Dfalse%26hide_cta%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fdebinding%252F%26locale%3Dnl_NL%26sdk%3Djoey%26show_facepile%3Dtrue%26small_header%3Dtrue%26tabs%3Dfalse%26width%3D500
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: smSHVIvr9yj9DPOwRT+rOs2Zxb0jVyFIdaPDxrWtaJ/qkxr4IL07bh5gWNQSKWZ+nQCh7pDKfF++g3hJzcQIww==
content-length: 0
date: Mon, 28 Nov 2022 06:50:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/394129?s=0.25&r=0.02223452729870401
54.230.111.91204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/394129?s=0.25&r=0.02223452729870401
IP 54.230.111.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/394129?s=0.25&r=0.02223452729870401 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Mon, 28 Nov 2022 06:50:50 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _O7Ny6gzhdDV2IZJ7JjUKSTfwWcJuZJAsxnsf5GiyjUp5d6ZHiUJKA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 089955bb623e5b17b8cea050fca2ae7f
648a28d3e625c8810cfc1d8ed2d7f0be532c7205
74c93173ae5af1cbabb1e12ba2b87fae7b0c41c50012a0994e03862b4dff4086
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121009
Date: Mon, 28 Nov 2022 06:50:50 GMT
Etag: "6383815e-1d7"
Expires: Tue, 29 Nov 2022 16:27:39 GMT
Last-Modified: Sun, 27 Nov 2022 15:25:18 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HIlTrKB44v7M4ibbR7ExShd62Lf1UaTFS0_4HYO2b9G9WJnPWPCmzA==
Age: 3741
platform.twitter.com/js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js
93.184.220.66200 OK 3.0 kB URL HTTP/1.1 platform.twitter.com/js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (8274), with no line terminators
Hash 9dcf6c8cba8fe3e8cb99b94ee63af2d5
ec132eb470954fdf2ff629d8344942b47ce4a5d1
2783e866faf68e4f6bc1775136ac1fa7b05d4adc7522f350763eb09a0e91b80d
GET /js/horizon_timeline.5b32f06df3f1186af2ebf11024b09726.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2190597
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Mon, 28 Nov 2022 06:50:50 GMT
Etag: "be517337a860b30e72096680d8dde0eb+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2977
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 744edfb3a18e35fe5e347c39fb13a6ed
359a1ccbad007be9bd35a56dc9ceaaf07d43613c
b3bda5a0ddc8abd8dd3c786a3592636a64de123b4d24e116ceab70bd31e9f582
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3BDA5A0DDC8ABD8DD3C786A3592636A64DE123B4D24E116CEAB70BD31E9F582"
Last-Modified: Sun, 27 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20348
Expires: Mon, 28 Nov 2022 12:29:58 GMT
Date: Mon, 28 Nov 2022 06:50:50 GMT
Connection: keep-alive
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669618250022%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669618250022%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669618250022%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=98b4b9a0a5a718b585b675292b847351e8c2bd57 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:50 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Mon, 28 Nov 2022 06:50:50 GMT
content-length: 43
x-transaction-id: 59411db707fce788
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 0f3506dea51d02d2fd466092eeb1aeb9e4f38bcbd30a0448f8d05da872bad403
X-Firefox-Spdy: h2
js.interestmoments.com/scripts/count.js
193.169.194.63200 OK 1.7 kB URL HTTP/1.1 js.interestmoments.com/scripts/count.js
IP 193.169.194.63:0
ASN #50321 FOP Reznichenko Sergey Mykolayovich
File type ASCII text, with very long lines (4587), with no line terminators
Hash 604404f904668bba5c2412748523a5b2
fb364d5fdabc9781a35d270f72502c3329bd7e43
cf4051550888255f110d596d59a1ecf8c5c961c32322d844604c6affc2f6f9fe
Analyzer Verdict Alert fortinet Malware
GET /scripts/count.js HTTP/1.1
Host: js.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 06:50:50 GMT
Content-Type: application/javascript
Last-Modified: Fri, 25 Nov 2022 05:06:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63804d4a-11eb"
Expires: Thu, 08 Dec 2022 06:50:50 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ws12.hotjar.com/api/v2/client/ws
54.246.158.158101 Switching Protocols 0 B URL HTTP/1.1 ws12.hotjar.com/api/v2/client/ws
IP 54.246.158.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws12.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.binding.nl
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IBVXyOYx/9y1ubxsqX0q5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 28 Nov 2022 06:50:50 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lENXubKwi7XHezt7qQBxXnZsh9k=
Sec-WebSocket-Extensions: permessage-deflate
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5de5ece55fb75c35ec4e1f1dc04e6e84
50f316ac26e992525fcda543f401bbeb89bc5f5c
9ac9afea104b148ab2424ae7bff7f2d62bbbea3bf35fd4e3a0a72e3350424362
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AC9AFEA104B148AB2424AE7BFF7F2D62BBBEA3BF35FD4E3A0A72E3350424362"
Last-Modified: Sun, 27 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5759
Expires: Mon, 28 Nov 2022 08:26:51 GMT
Date: Mon, 28 Nov 2022 06:50:52 GMT
Connection: keep-alive
long.interestmoments.com/go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google
193.169.194.63302 Found 0 B URL HTTP/1.1 long.interestmoments.com/go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google
IP 193.169.194.63:0
ASN #50321 FOP Reznichenko Sergey Mykolayovich
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 28 Nov 2022 06:50:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Stancyyy
Access-Control-Allow-Origin: *
long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Stancyyy
193.169.194.63200 OK 440 B URL HTTP/1.1 long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Stancyyy
IP 193.169.194.63:0
ASN #50321 FOP Reznichenko Sergey Mykolayovich
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d282386a919dab7821ecb8af2c2be991
cb29f509dd65f520b4b8d72ee0c2b560a2c360b0
6403ec35140c92ba51786815e1505a33606ae5e76f33d13e5f64ed83ff5c2179
GET /go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Stancyyy HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.binding.nl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 06:50:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash fa923299c257674b1028c3415a04b7c6
ac8eb45129630cbdfd442060768c9cb246d8552c
a48ca92b40cbd626057aa4e6332467ae3929e984cad20bcbe90544a5b31d0d2e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 28 Nov 2022 06:50:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 27 Nov 2022 21:42:46 GMT
Expires: Mon, 28 Nov 2022 21:42:46 GMT
ETag: "ac8eb45129630cbdfd442060768c9cb246d8552c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
track.wargaming-aff.com/click?pid=1287&offer_id=92&ref_id=jrcldhcg44ou4jv47gjt&sub1=EZ46IGBJ6R
35.204.130.99302 Found 0 B URL HTTP/2 track.wargaming-aff.com/click?pid=1287&offer_id=92&ref_id=jrcldhcg44ou4jv47gjt&sub1=EZ46IGBJ6R
IP 35.204.130.99:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?pid=1287&offer_id=92&ref_id=jrcldhcg44ou4jv47gjt&sub1=EZ46IGBJ6R HTTP/1.1
Host: track.wargaming-aff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-length: 0
location: https://trck.wargaming.net/8q4rzvm7/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=
x-adjust-use-original-forwarded-for: 1
set-cookie: afclick=63845a4dfaf4350001d75d03; expires=Tue, 28 Nov 2023 06:50:53 GMT; secure; SameSite=None
afoffers={"92":1669618253}; expires=Tue, 28 Nov 2023 06:50:53 GMT; secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 34080d003e49acbe7e28af9e20be640a
6672868f3958a081f97f7d7925005eedbada11dd
a35658a1842af51427f1074ccce44e512db79b9387f6f6b618b7d4c1a222a0cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:53 GMT
Last-Modified: Mon, 28 Nov 2022 05:23:21 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
trck.wargaming.net/8q4rzvm7/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=
92.223.23.231301 Moved Permanently 22 B URL HTTP/1.1 trck.wargaming.net/8q4rzvm7/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=
IP 92.223.23.231:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with no line terminators
Hash 0e0bf67572311f8a23814419ff24ee9a
78328dfc54708433cdfb3e7857e57f87ec443b08
c5f6c267ba4a2964fff5d304d4a1e79c371ce30d32eaf017b3bb40becccd58d2
GET /8q4rzvm7/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2= HTTP/1.1
Host: trck.wargaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 28 Nov 2022 06:50:53 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 22
Connection: keep-alive
Location: https://promo.worldofwarships.eu/glows-34505/eu-no/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=&sid=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw&enctid=conq9wtxdslw&lpsn=WOWS+TMPLT1+CODE+BOOM+global+WITH+BONUS+SUBTITLE&foris=1&teclient=1669618253273838206&utm_source=wlap&utm_medium=affiliate&utm_campaign=8q4rzvm7&utm_content=1287
Set-Cookie: STIDREFERRAL=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw; Domain=wargaming.net; Max-Age=2592000; Path=/; SameSite=None; Secure
enctid=conq9wtxdslw; Domain=wargaming.net; Max-Age=2592000; Path=/; SameSite=None; Secure
teclient=1669618253273838206; Domain=wargaming.net; Max-Age=315360000; Path=/; SameSite=None; Secure
Cache-Control: no-cache
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e5fda70327bf9df80a555278095658d
eeb0b5d2bc57ff8214d92cbb374db34614890cb6
f27a12834ab728fb462621957538608b978d4719002a962641a52f277659a4d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27A12834AB728FB462621957538608B978D4719002A962641A52F277659A4D3"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4575
Expires: Mon, 28 Nov 2022 08:07:08 GMT
Date: Mon, 28 Nov 2022 06:50:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e5fda70327bf9df80a555278095658d
eeb0b5d2bc57ff8214d92cbb374db34614890cb6
f27a12834ab728fb462621957538608b978d4719002a962641a52f277659a4d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27A12834AB728FB462621957538608B978D4719002A962641A52F277659A4D3"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4575
Expires: Mon, 28 Nov 2022 08:07:08 GMT
Date: Mon, 28 Nov 2022 06:50:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e5fda70327bf9df80a555278095658d
eeb0b5d2bc57ff8214d92cbb374db34614890cb6
f27a12834ab728fb462621957538608b978d4719002a962641a52f277659a4d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27A12834AB728FB462621957538608B978D4719002A962641A52F277659A4D3"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4575
Expires: Mon, 28 Nov 2022 08:07:08 GMT
Date: Mon, 28 Nov 2022 06:50:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e5fda70327bf9df80a555278095658d
eeb0b5d2bc57ff8214d92cbb374db34614890cb6
f27a12834ab728fb462621957538608b978d4719002a962641a52f277659a4d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27A12834AB728FB462621957538608B978D4719002A962641A52F277659A4D3"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4575
Expires: Mon, 28 Nov 2022 08:07:08 GMT
Date: Mon, 28 Nov 2022 06:50:53 GMT
Connection: keep-alive
promo-cdn.worldofwarships.com/glows-34505/src/images/wowsl_logo.png
92.223.97.97200 OK 10 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/wowsl_logo.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 749 x 299, 8-bit colormap, non-interlaced\012- data
Hash 4d9371a87a4f9a0d6a8792e0397aa303
1308b49f8614f0ab05e81698daf5bfc4a2498bf0
68ddcc9fad945493001c241d8de6fb9acdd436bc82bff503302dbffa64f4f5ed
GET /glows-34505/src/images/wowsl_logo.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 10514
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "4d9371a87a4f9a0d6a8792e0397aa303"
x-amz-request-id: tx0000000000000001ae8c2-00637ca118-1cf5682d-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc13
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/doubloons.png
92.223.97.97200 OK 39 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/doubloons.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash 68091925676a9a77a9740b81acd666fe
8cada809874a5f8b6993ed3f913a6f72366b4cc5
c1a9b019676d7156280d39fda63b5b22a3ab53ea4f870c33dc2596d28b9b6f45
GET /glows-34505/src/images/doubloons.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 39260
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "68091925676a9a77a9740b81acd666fe"
x-amz-request-id: tx0000000000000016b606f-00637ca118-1bfc3e68-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc10
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 34080d003e49acbe7e28af9e20be640a
6672868f3958a081f97f7d7925005eedbada11dd
a35658a1842af51427f1074ccce44e512db79b9387f6f6b618b7d4c1a222a0cc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:53 GMT
Last-Modified: Mon, 28 Nov 2022 05:23:21 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
promo-cdn.worldofwarships.com/glows-34505/src/images/restless-fire.png
92.223.97.97200 OK 25 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/restless-fire.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash 3043f931ada25f81bca06d4f0ea4dbaa
78f9bdc4a4b037b944687a7ee575793fd531b823
b3605f7cd8f58e9f7381a92d0919354d65c77b6793c14714263659a014a815fc
GET /glows-34505/src/images/restless-fire.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 25054
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "3043f931ada25f81bca06d4f0ea4dbaa"
x-amz-request-id: tx000000000000004c1da16-00637ca118-1c8e9cf0-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/footer-logo.png
92.223.97.97200 OK 1.9 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/footer-logo.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 275 x 63, 8-bit colormap, non-interlaced\012- data
Hash 7ce94cd1324102c254e60ced58661dc3
b76e3b4e14cf98aa766788bc8cf4fbc97058fec0
fdd269a537d61d3fafbef167c6c7e22ae7707217427b506674f5f0d2f3caed48
GET /glows-34505/src/images/footer-logo.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 1939
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "7ce94cd1324102c254e60ced58661dc3"
x-amz-request-id: tx000000000000004c1da19-00637ca118-1c8e9cf0-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc11
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/premium-7-days.png
92.223.97.97200 OK 49 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/premium-7-days.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash 98b09a0cd4166bddf0b0f3697c439740
2519fd7126fb29013a3981d2f4c14a3878bd8c55
9c8625714a90a8398492e86d233216eebd81db8ca311332be90d5c284bac7bbe
GET /glows-34505/src/images/premium-7-days.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 49403
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "98b09a0cd4166bddf0b0f3697c439740"
x-amz-request-id: tx000000000000000c425ae-00637ca118-1ce993ea-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc13
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/ship-emden.png
92.223.97.97200 OK 60 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/ship-emden.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash b9182e13a30e8408117ea8c4383bd2e7
4964d7625738a00496d6ff495bf8f4c56c738c64
d213e73d4cc6d18a1e37ee13439919b46fd10f4b8e97ad13fe4333992801ebd4
GET /glows-34505/src/images/ship-emden.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 60180
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "b9182e13a30e8408117ea8c4383bd2e7"
x-amz-request-id: tx0000000000000016b606e-00637ca118-1bfc3e68-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc10
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/ship-luis.png
92.223.97.97200 OK 67 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/ship-luis.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash fd8388d631a2faf5d87e73a4c6aab79b
fb194c3ec881e98c1b5fc5cfee2899316ebfc86b
1f78488eb95a277f03cec5474bfb15ef822ce19435bc7efd1f37cbd4cb339a6b
GET /glows-34505/src/images/ship-luis.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 67245
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "fd8388d631a2faf5d87e73a4c6aab79b"
x-amz-request-id: tx000000000000004c1da17-00637ca118-1c8e9cf0-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc10
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/credits.png
92.223.97.97200 OK 61 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/credits.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 512 x 436, 8-bit colormap, non-interlaced\012- data
Hash f245ac5b8cd1d7f859b96690b4a220d1
94b1eaa00d2de2928668a89386b425c754e8172f
4cec7b959abf0add7e91cfef60f074a6f8fc8d13470721d121d007f1c3775d30
GET /glows-34505/src/images/credits.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/png
content-length: 60960
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "f245ac5b8cd1d7f859b96690b4a220d1"
x-amz-request-id: tx00000000000000129a883-00637ca118-1cdfff90-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/video/video_bg_poster.jpg
92.223.97.97200 OK 1.1 MB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/video/video_bg_poster.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 1.1 MB (1084614 bytes)
Hash 902cd1abfd666f6c0f58461a864305fc
24f6b660a15b03b886218c041af0fc1a20e15bfc
bf04190956fba52b0c074ed9246e904f4ee68772b4792385c6ea75a15b7e10fb
GET /glows-34505/src/video/video_bg_poster.jpg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/jpeg
content-length: 1084614
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: "902cd1abfd666f6c0f58461a864305fc"
x-amz-request-id: tx000000000000000152a32-00637ca118-1cf7ee3c-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:03+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
tenor.wargaming.net/assets/campaigns/static/campaign_data_gtm_sender.js
92.223.21.23200 OK 6.6 kB URL HTTP/1.1 tenor.wargaming.net/assets/campaigns/static/campaign_data_gtm_sender.js
IP 92.223.21.23:0
ASN #199524 G-Core Labs S.A.
File type HTML document, ASCII text, with very long lines (7249)
Hash 51b44a9f232d5cec869a12623ae6dbfd
19305e6be93c7944f3e4cd68d778a73bf4a03031
32d957fdbd3debc51e0df55c6af4dbf747c501d19fafdd75731cb9a02cc68107
GET /assets/campaigns/static/campaign_data_gtm_sender.js HTTP/1.1
Host: tenor.wargaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 28 Nov 2022 06:50:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=200
Last-Modified: Wed, 09 Nov 2022 09:49:54 GMT
Vary: Accept-Encoding, Accept-Encoding
ETag: W/"636b77c2-4ced"
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bc86f2330676c534b2e655c92b5e7e41
188fcdee593fa0f736c4ead4321894d98b42ab01
db02691e629fb710a6b9bc38eb4871148977d27bb88b7c9b529f647b169ff492
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2315
Cache-Control: max-age=86824
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:53 GMT
Etag: "6383016a-116"
Expires: Tue, 29 Nov 2022 06:57:57 GMT
Last-Modified: Sun, 27 Nov 2022 06:19:22 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bc86f2330676c534b2e655c92b5e7e41
188fcdee593fa0f736c4ead4321894d98b42ab01
db02691e629fb710a6b9bc38eb4871148977d27bb88b7c9b529f647b169ff492
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2315
Cache-Control: max-age=86824
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:53 GMT
Etag: "6383016a-116"
Expires: Tue, 29 Nov 2022 06:57:57 GMT
Last-Modified: Sun, 27 Nov 2022 06:19:22 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
promo-cdn.worldofwarships.com/glows-34505/src/libs/aos.css
92.223.97.97200 OK 10 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/libs/aos.css
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (25948)
Hash c86ab192042819c9b8d4ab286e8eadd9
61750d718a72714dfd9168b17e6243d31e813668
4591c1f36e886ac68e690c02a4af5b19594f18d42f49443a469212e3a1a74c9c
GET /glows-34505/src/libs/aos.css HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: W/"1691966fad1799cece5fedf5bbd55bfc"
x-amz-request-id: tx00000000000000129a88c-00637ca118-1cdfff90-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc12
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.fullpage.min.css
92.223.97.97200 OK 3.3 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.fullpage.min.css
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (3564)
Hash f71ddb521cb2e70460b8f95501b2c970
7b410e8dabe80a90517052472431af135338e313
3082409f43b42e1e251f9be5a9d7d594e00327effa666d4dc6e443b0b51574f4
GET /glows-34505/src/libs/jquery.fullpage.min.css HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: W/"c397710fd5227e7e53b0c95cbc6b9d61"
x-amz-request-id: tx0000000000000001ae8cd-00637ca118-1cf5682d-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc10
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/fonts/robotocondensed-bold.woff
92.223.97.97200 OK 92 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/fonts/robotocondensed-bold.woff
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type Web Open Font Format, TrueType, length 92496, version 1.0\012- data
Hash fb69d9cc5aea733510b530ed221b75dc
86276b2f2dfb7b42dc1639730c0bec56aa709be4
3b063cd5ae1793c617df8450a6c4343f7493ad006a574d9c3e9f7e81be9578f8
GET /glows-34505/src/fonts/robotocondensed-bold.woff HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Referer: https://promo-cdn.worldofwarships.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-length: 92496
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "fb69d9cc5aea733510b530ed221b75dc"
x-amz-request-id: tx000000000000000c425dc-00637ca119-1ce993ea-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/styles/style.css?v=2.2
92.223.97.97200 OK 98 kB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/styles/style.css?v=2.2
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
Hash e7105133524c06764179ce12a4726071
53aed1248d107000a017ce75f05c9ca7118efa29
d27265f5b9c0867f4c428320beba62d3ad925149ff651065263d57001d80c688
GET /glows-34505/src/styles/style.css?v=2.2 HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: W/"c051de716150069a75decab6539edd41"
x-amz-request-id: tx000000000000000c425be-00637ca118-1ce993ea-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc13
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
promo-cdn.worldofwarships.com/glows-34505/src/images/bg_nologo.jpg
92.223.97.97200 OK 3.6 MB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/bg_nologo.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2020:07:23 11:49:21], baseline, precision 8, 3000x1977, components 3\012- data
Size 3.6 MB (3585879 bytes)
Hash 0f02cef4aad43587f3326cf30a6c032b
b618c163db92b11f5ded6af0bc9ae8c1374e2d5f
981dd4fd66bba58a5a94a0694d41e6788025aaf8a9b79872f946500f747c515b
GET /glows-34505/src/images/bg_nologo.jpg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/jpeg
content-length: 3585879
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "0f02cef4aad43587f3326cf30a6c032b"
x-amz-request-id: tx000000000000001384ab3-00637ca119-1cdf9313-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/68edbfbe-e009-4939-a55b-f4c65daa640b/68edbfbe-e009-4939-a55b-f4c65daa640b.json
104.16.148.64200 OK 1.9 kB URL HTTP/2 cdn.cookielaw.org/consent/68edbfbe-e009-4939-a55b-f4c65daa640b/68edbfbe-e009-4939-a55b-f4c65daa640b.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (5875), with no line terminators
Hash 23b49030e418c340a4d3b3c510f6558d
fd7f8e05f97e7bf21c83782409f6972b172121f1
0f1e442050ca65df6cbaa0371a5097b75cb8bd93d0a7df66dfb88c249ed86b71
GET /consent/68edbfbe-e009-4939-a55b-f4c65daa640b/68edbfbe-e009-4939-a55b-f4c65daa640b.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: application/x-javascript
content-length: 1898
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: I7SQMOQYw0Ck07PFEPZVjQ==
last-modified: Fri, 25 Nov 2022 10:09:39 GMT
etag: 0x8DACECD29F68FC0
x-ms-request-id: 22332b09-f01e-0147-73b6-0041d8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 74257
expires: Tue, 29 Nov 2022 06:50:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c05d9f41bfa-OSL
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_ext-in-game-purchases.svg
92.223.97.97200 OK 138 kB URL HTTP/2 promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_ext-in-game-purchases.svg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
Size 138 kB (138301 bytes)
Hash 3b6e97877d5cf4673f26f30d4d183ee0
d8e7840f16b95cc5e2d5b0e811b7fee373cb1144
cdb7e8ae92fdfef7c9870e420475e0cd922ed844d09f2e4dcd99076ed4998b70
GET /global_static/age_ratings/v2/pegi_ext-in-game-purchases.svg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Feb 2022 22:01:20 GMT
etag: W/"635ea99325f08d75fd8f09201f998f50"
x-amz-request-id: tx0000000000000002a85b2-00633fe0c3-1c445a09-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-24T08:21:48+00:00
x-id: sto5-up-gc11
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/video/video_bg.webm
92.223.97.97206 Partial Content 9.4 MB URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/video/video_bg.webm
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type WebM\012- EBML file, creator webmB\20\012- data
Size 9.4 MB (9439132 bytes)
Hash b0d93ce7f74580ecf36c07b48d94dc9c
fb9025a4b11c00fc22ce7411b4d11b28f4525491
79bf75f6a3994670c7b04cdb460d24d88f11d8ac5f5483b5b7c368751729147b
GET /glows-34505/src/video/video_bg.webm HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-length: 9439132
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: "b0d93ce7f74580ecf36c07b48d94dc9c"
x-amz-request-id: tx000000000000000c425df-00637ca119-1ce993ea-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:17:18+00:00
x-id: sto5-up-gc10
content-range: bytes 0-9439131/9439132
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/global_static/favicon/v2/apple-touch-icon-180x180.png
92.223.97.97200 OK 2.3 kB URL HTTP/2 promo-cdn.worldofwarships.com/global_static/favicon/v2/apple-touch-icon-180x180.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 687168d21b7e78dfb6175de97ae3d045
78081e22c1ea9e51a6cac8910d7ce01c319132e1
49f69cf7e37fda7051cd440048ecd5b2ab0973f106dc6e669959ee453b03e5d1
GET /global_static/favicon/v2/apple-touch-icon-180x180.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: image/png
content-length: 2326
last-modified: Mon, 05 Sep 2022 07:56:20 GMT
etag: "687168d21b7e78dfb6175de97ae3d045"
x-amz-request-id: tx0000000000000002a896d-00633fe0e6-1c4459fa-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-24T08:36:55+00:00
x-id: sto5-up-gc10
accept-ranges: bytes
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/global_static/favicon/v2/favicon-64x64.png
92.223.97.97200 OK 1.2 kB URL HTTP/2 promo-cdn.worldofwarships.com/global_static/favicon/v2/favicon-64x64.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash de30b29e8bbc72b7828734d5d781b9eb
9d5fb51148291180b45d9481b756eb7fc2d4a352
e47efd1c616db1a5564776f4be806183ee085c80d2d3722d3f8d5a06115e46ee
GET /global_static/favicon/v2/favicon-64x64.png HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: image/png
content-length: 1198
last-modified: Mon, 05 Sep 2022 07:56:21 GMT
etag: "de30b29e8bbc72b7828734d5d781b9eb"
x-amz-request-id: tx00000000000000080ac6e-00633fe0d1-1c4c0c09-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-24T08:23:03+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b3d4f5d7363e5ff68f1ff5b1e97bd9ae
fa1bb4288ef1af77aa5562a322435c69499dbfaf
46512990f3e1d10098a4fa425a547f1dcdc9934061779764fa04e20d04749181
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1041
Cache-Control: max-age=106059
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:54 GMT
Etag: "63835188-117"
Expires: Tue, 29 Nov 2022 12:18:33 GMT
Last-Modified: Sun, 27 Nov 2022 12:01:12 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
tenor.wargaming.net/sid?include=campaign&filter[sid]=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw
92.223.21.23200 OK 497 B URL HTTP/1.1 tenor.wargaming.net/sid?include=campaign&filter[sid]=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw
IP 92.223.21.23:0
ASN #199524 G-Core Labs S.A.
File type JSON data\012- , ASCII text, with very long lines (942), with no line terminators
Hash e3ceff6d4071445fdf180b73399e62b8
d6d3707c915137c20d5a1dc7807e1050436c4144
45d680b5b97883fff98ee556e6cb61675a5ac05a8dcd2a44ba79455f99940d6b
GET /sid?include=campaign&filter[sid]=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw HTTP/1.1
Host: tenor.wargaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.worldofwarships.eu/
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 28 Nov 2022 06:50:54 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=200
Vary: Accept-Encoding
Access-Control-Expose-Headers: Content-Length,Date,Server
Access-Control-Allow-Origin: https://promo.worldofwarships.eu
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/viewthroughconversion/1006839708/?random=1669618253679&cv=11&fst=1669618253679&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&gcs=G100&gcd=G100&u_w=1280&u_h=1024&label=H356CMb80IcDEJzPjOAD&hn=www.google.com&frm=0&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287&tiba=World%C2%A0of%C2%A0Warships%E2%80%94massive%C2%A0naval%C2%A0clashes.%C2%A0Take%C2%A0command%C2%A0of%C2%A0legendary%C2%A0vessels%C2%A0from%C2%A0the%C2%A0early%C2%A020th%C2%A0century%C2%A0and%C2%A0fight%C2%A0for%C2%A0domination%C2%A0on%C2%A0the%C2%A0high&value=0&bttype=purchase&gcp=1&ct_cookie_present=1
142.250.74.66200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/viewthroughconversion/1006839708/?random=1669618253679&cv=11&fst=1669618253679&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&gcs=G100&gcd=G100&u_w=1280&u_h=1024&label=H356CMb80IcDEJzPjOAD&hn=www.google.com&frm=0&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287&tiba=World%C2%A0of%C2%A0Warships%E2%80%94massive%C2%A0naval%C2%A0clashes.%C2%A0Take%C2%A0command%C2%A0of%C2%A0legendary%C2%A0vessels%C2%A0from%C2%A0the%C2%A0early%C2%A020th%C2%A0century%C2%A0and%C2%A0fight%C2%A0for%C2%A0domination%C2%A0on%C2%A0the%C2%A0high&value=0&bttype=purchase&gcp=1&ct_cookie_present=1
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1006839708/?random=1669618253679&cv=11&fst=1669618253679&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&gcs=G100&gcd=G100&u_w=1280&u_h=1024&label=H356CMb80IcDEJzPjOAD&hn=www.google.com&frm=0&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287&tiba=World%C2%A0of%C2%A0Warships%E2%80%94massive%C2%A0naval%C2%A0clashes.%C2%A0Take%C2%A0command%C2%A0of%C2%A0legendary%C2%A0vessels%C2%A0from%C2%A0the%C2%A0early%C2%A020th%C2%A0century%C2%A0and%C2%A0fight%C2%A0for%C2%A0domination%C2%A0on%C2%A0the%C2%A0high&value=0&bttype=purchase&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 06:50:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ade.googlesyndication.com/ddm/activity/src=10697551;type=pagev0;cat=allvi0;ord=1674542625113;gtm=2wgb90;gcs=G100;u1=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287;~oref=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287?
142.250.74.162200 OK 42 B URL HTTP/2 ade.googlesyndication.com/ddm/activity/src=10697551;type=pagev0;cat=allvi0;ord=1674542625113;gtm=2wgb90;gcs=G100;u1=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287;~oref=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287?
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/activity/src=10697551;type=pagev0;cat=allvi0;ord=1674542625113;gtm=2wgb90;gcs=G100;u1=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287;~oref=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F%3Ft%3D1%26pub_id%3D1287%26xid%3D63845a4dfaf4350001d75d03%26xid_param1%3DEZ46IGBJ6R%26xid_param_2%3D%26sid%3DSIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw%26enctid%3Dconq9wtxdslw%26lpsn%3DWOWS%2BTMPLT1%2BCODE%2BBOOM%2Bglobal%2BWITH%2BBONUS%2BSUBTITLE%26foris%3D1%26teclient%3D1669618253273838206%26utm_source%3Dwlap%26utm_medium%3Daffiliate%26utm_campaign%3D8q4rzvm7%26utm_content%3D1287? HTTP/1.1
Host: ade.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 06:50:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 06:50:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744692770.1669618254&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F>m=2wgb9058Z37MT
142.250.74.66200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744692770.1669618254&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F>m=2wgb9058Z37MT
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcs=G100&gcd=G100&rnd=744692770.1669618254&url=https%3A%2F%2Fpromo.worldofwarships.eu%2Fglows-34505%2Feu-no%2F>m=2wgb9058Z37MT HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 06:50:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 12 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (48270), with no line terminators
Hash 886b3f015ea8a17c6f09881d3d3d56b6
dbbe102d16e00e3e5ef2a79c364e8b68309140f8
968360f79ed84742da1858a226595dd319d85566f0af3ffde424977e881774ae
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77112c0b7bc4b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otCenterRounded.json
104.16.148.64200 OK 2.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otCenterRounded.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (7753)
Hash 688f5aef949a8982bda0771893cc67d3
c50441dea985350ab305848e2d87d6286adfda3c
da30c398b0e6646c44fc5a53e44371004a33267d6cd07404775ab6380979b058
GET /scripttemplates/202211.1.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.worldofwarships.eu/
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: application/json
content-length: 2639
content-encoding: gzip
content-md5: aI9a75SaiYK9oHcYk8xn0w==
last-modified: Thu, 24 Nov 2022 02:58:30 GMT
etag: 0x8DACDC7C442E72E
x-ms-request-id: a7769664-101e-0102-5312-009c49000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74257
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c0d7f8f1bfa-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.1.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.1.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (50353)
Hash 0cd2fb0fd730954ef2159520d96f1934
d2656260dfdac230479c8e7dc44444e9d5c8faf2
b821093423791675ca31c2d688b528b329737cca90ef62bc44f5c5b39423c8f6
GET /scripttemplates/202211.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.worldofwarships.eu/
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: application/json
content-length: 12540
content-encoding: gzip
content-md5: DNL7D9cwlU7yFZUg2W8ZNA==
last-modified: Thu, 24 Nov 2022 02:58:31 GMT
etag: 0x8DACDC7C529062C
x-ms-request-id: 32e73b5a-401e-0155-5311-0075c4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74257
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c0d7f921bfa-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/04fe1919-d767-41dc-abd4-f409a111f829/d0c760aa-d1b6-44a8-964c-9ae294f365f3/40885536-3b1f-4688-b7c1-39913d45a61e/wg_logo_secondversion_white1r.png
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/logos/04fe1919-d767-41dc-abd4-f409a111f829/d0c760aa-d1b6-44a8-964c-9ae294f365f3/40885536-3b1f-4688-b7c1-39913d45a61e/wg_logo_secondversion_white1r.png
IP 104.16.148.64:0
File type PNG image data, 1000 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash c90475872d8975dcc4b5ed7db6cc5e28
1e5a413845f5d501c174ae4940e1329a2575067f
e79eb16948cca42e0f7884fad7637fa6ec69117a07dbc04cc8b3ea7ebeaef719
GET /logos/04fe1919-d767-41dc-abd4-f409a111f829/d0c760aa-d1b6-44a8-964c-9ae294f365f3/40885536-3b1f-4688-b7c1-39913d45a61e/wg_logo_secondversion_white1r.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:55 GMT
content-type: image/png
content-length: 13003
content-md5: yQR1hy2JddzEte19tsxeKA==
last-modified: Fri, 02 Oct 2020 14:20:55 GMT
etag: 0x8D866DE604098C2
x-ms-request-id: 80efabc0-001e-0056-516d-c43096000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 80314
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c0dcfd01bfa-OSL
X-Firefox-Spdy: h2
promo.worldofwarships.eu/glows-34505/eu-no/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=&sid=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw&enctid=conq9wtxdslw&lpsn=WOWS+TMPLT1+CODE+BOOM+global+WITH+BONUS+SUBTITLE&foris=1&teclient=1669618253273838206&utm_source=wlap&utm_medium=affiliate&utm_campaign=8q4rzvm7&utm_content=1287
92.223.97.97200 OK 0 B URL HTTP/2 promo.worldofwarships.eu/glows-34505/eu-no/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=&sid=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw&enctid=conq9wtxdslw&lpsn=WOWS+TMPLT1+CODE+BOOM+global+WITH+BONUS+SUBTITLE&foris=1&teclient=1669618253273838206&utm_source=wlap&utm_medium=affiliate&utm_campaign=8q4rzvm7&utm_content=1287
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/eu-no/?t=1&pub_id=1287&xid=63845a4dfaf4350001d75d03&xid_param1=EZ46IGBJ6R&xid_param_2=&sid=SIDRTK-Nfuog-rgI85TN7yX1TVEnC0GXl9J0RA4PV34k9JDAdwaK3JqVlAmH9vWv_v41cY7uihOMuaI2LGfmLmlK1bj6nFeM_NrT4m7uQbJ8BBB437jfLvMJeo82b-zRjwG9vKLEWpOc6gtqw&enctid=conq9wtxdslw&lpsn=WOWS+TMPLT1+CODE+BOOM+global+WITH+BONUS+SUBTITLE&foris=1&teclient=1669618253273838206&utm_source=wlap&utm_medium=affiliate&utm_campaign=8q4rzvm7&utm_content=1287 HTTP/1.1
Host: promo.worldofwarships.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 17 Nov 2022 12:32:22 GMT
etag: W/"eaf6bef074a5ee6283d9d64ad7bf4660"
x-amz-request-id: tx000000000000000786153-00637a3cb1-1ce8cb68-ed1
cache: HIT
x-cached-since: 2022-11-24T15:41:33+00:00
x-id: sto5-up-gc13
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/images/logo-main.svg
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/images/logo-main.svg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/src/images/logo-main.svg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/svg+xml
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: W/"3205035293624ac8f4502ce6c888db9e"
x-amz-request-id: tx000000000000000cba074-00637ca118-1ce8cb68-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc10
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.min.js
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/src/libs/jquery.min.js HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: W/"4f252523d4af0b478c810c2547a63e19"
x-amz-request-id: tx0000000000000001ae8d2-00637ca118-1cf5682d-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc14
content-encoding: gzip
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.fullpage.js
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/libs/jquery.fullpage.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/src/libs/jquery.fullpage.js HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: W/"9a854eed59d24b9252aa7e8ff082eda8"
x-amz-request-id: tx0000000000000001ae8db-00637ca118-1cf5682d-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc14
content-encoding: gzip
X-Firefox-Spdy: h2
www.binding.nl/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 75.119.144.45:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:48 GMT
content-type: application/javascript
last-modified: Fri, 18 Nov 2022 17:08:05 GMT
etag: W/"6377bbf5-54aa"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/394129/visit-data?sv=5
52.30.44.244200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/394129/visit-data?sv=5
IP 52.30.44.244:0
POST /api/v2/client/sites/394129/visit-data?sv=5 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:50 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
s0.wp.com/wp-content/js/rlt-proxy.js?m=20211122
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/wp-content/js/rlt-proxy.js?m=20211122
IP 192.0.77.32:0
GET /wp-content/js/rlt-proxy.js?m=20211122 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.wp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"619d635a-1c9d"
content-encoding: br
expires: Thu, 23 Nov 2023 21:55:45 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_ext-violence.svg
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_ext-violence.svg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /global_static/age_ratings/v2/pegi_ext-violence.svg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Feb 2022 22:01:20 GMT
etag: W/"9a3e2c35d77bd8b96138310eeb6b7f7b"
x-amz-request-id: tx00000000000000080ab06-00633fe0c3-1c4c0c09-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-24T08:21:48+00:00
x-id: sto5-up-gc11
content-encoding: gzip
X-Firefox-Spdy: h2
widgets.wp.com/likes/master.html?ver=202247
192.0.77.32200 OK 0 B URL HTTP/2 widgets.wp.com/likes/master.html?ver=202247
IP 192.0.77.32:0
GET /likes/master.html?ver=202247 HTTP/1.1
Host: widgets.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: text/html
last-modified: Wed, 05 Jan 2022 13:04:34 GMT
vary: Accept-Encoding
etag: W/"61d59762-ae1"
content-encoding: br
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
thirawogla.com/bm3iVx0.Pj3upevvb/m/V_JqZ-DG0v0/NqTJcEylMqjNApwjLVTsQA1wNJzGIgy/MbDOEu
88.85.94.246200 OK 0 B URL HTTP/2 thirawogla.com/bm3iVx0.Pj3upevvb/m/V_JqZ-DG0v0/NqTJcEylMqjNApwjLVTsQA1wNJzGIgy/MbDOEu
IP 88.85.94.246:0
GET /bm3iVx0.Pj3upevvb/m/V_JqZ-DG0v0/NqTJcEylMqjNApwjLVTsQA1wNJzGIgy/MbDOEu HTTP/1.1
Host: thirawogla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://long.interestmoments.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:52 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-frame-options: DENY
referrer-policy: no-referrer
p3p: CP="CUR ADM OUR NOR STA NID"
last-modified: Mon, 28 Nov 2022 06:50:52 GMT
set-cookie: kadCCap=220790:1:1668460505;219652:1:1669330335;219484:1:1667715065;199455:1:1668245056;212269:1:1667199062;79610:1:1669272875;219047:1:1667194435;194136:1:1669413157;218693:1:1669515516;220335:1:1669231427;221398:1:1669325799; max-age=1701154252; path=/
kadACap=442019:1:1669618252;449523:1:1669611040;445735:1:1669286676;407100:1:1668246232;419293:1:1669526430;424441:1:1669449948;346327:1:1669617075;419295:1:1669362714;446013:1:1668228435;446531:1:1669270846;419291:1:1669443279;190964:1:1669272875;419323:1:1669432178;419299:1:1669590798;419303:1:1669446827;410252:1:1669443062;451139:1:1669521403;451724:1:1669565807;445506:1:1669286676;419297:1:1669465197;453831:1:1669526424;419321:1:1669463839;419301:1:1669283271;401659:1:1669529511;383700:1:1669473413; max-age=1701154252; path=/
kadASCap=449523:1:1669611040;419299:1:1669590798;346327:1:1669617075;451724:1:1669565807;442019:1:1669618252; path=/
kadRPixJ=bnVsbA==; max-age=1701154252; path=/
kadUnP3=CAYQjt6PnAYaDQjzwZkBEAEYs6uRnAYaDQioiJcCEAMYjt6PnAYaDQi8ypcCEAEY75qOnAYiCggDEAQYjt6PnAYqDAiMvRIQARizq5GcBioMCKSTKBADGI7ej5wGKgwIpJwoEAEY75qOnAY=; max-age=1701154252; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.1.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/202211.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.worldofwarships.eu/
Origin: https://promo.worldofwarships.eu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:54 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Thu, 24 Nov 2022 02:58:43 GMT
x-ms-request-id: a74e20a8-001e-00d5-3a11-00903b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 74257
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c0d7f941bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%7CPlayfair+Display%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%7CPlayfair+Display%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1
IP 142.250.74.10:0
GET /css?family=Lato%3A400%7CPlayfair+Display%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.binding.nl
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 06:50:47 GMT
date: Mon, 28 Nov 2022 06:50:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s0.wp.com/_static/??/wp-content/js/postmessage.js,/wp-content/js/tannin/compat.min.js,/wp-content/js/wpcom-proxy-request.js,/wp-content/js/likes-rest-nojquery.js?m=20220105
192.0.77.32200 OK 0 B URL HTTP/2 s0.wp.com/_static/??/wp-content/js/postmessage.js,/wp-content/js/tannin/compat.min.js,/wp-content/js/wpcom-proxy-request.js,/wp-content/js/likes-rest-nojquery.js?m=20220105
IP 192.0.77.32:0
GET /_static/??/wp-content/js/postmessage.js,/wp-content/js/tannin/compat.min.js,/wp-content/js/wpcom-proxy-request.js,/wp-content/js/likes-rest-nojquery.js?m=20220105 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.wp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:49 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 05 Jan 2022 12:39:57 GMT
etag: W/"61d5919d-142fa"
content-encoding: br
expires: Thu, 05 Jan 2023 13:04:48 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1
IP 75.119.144.45:0
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 09:39:46 GMT
etag: W/"6374afe2-4a964"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP 104.16.148.64:0
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 06:50:55 GMT
content-type: image/svg+xml
content-md5: nvsqHj63Mt+zbyhgtmGw4w==
last-modified: Fri, 25 Nov 2022 09:17:54 GMT
x-ms-request-id: 811e8830-a01e-0050-7e42-01c7ee000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 79987
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77112c0dcfd11bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/11.5.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 13:51:34 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1669128201
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1669128201
IP 75.119.144.45:0
GET /wp-content/plugins/creative-mail-by-constant-contact/assets/js/block/submit.js?ver=1669128201 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 14:43:21 GMT
etag: W/"637ce009-1058"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP 75.119.144.45:0
GET /wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 09:40:04 GMT
etag: W/"6374aff4-14e2"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_rating.svg
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/global_static/age_ratings/v2/pegi_rating.svg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /global_static/age_ratings/v2/pegi_rating.svg HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Feb 2022 22:01:21 GMT
etag: W/"207ef7e145ba483b342b96f8c2fbf72a"
x-amz-request-id: tx0000000000000002a85f1-00633fe0c3-1c4459fa-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-24T08:22:35+00:00
x-id: sto5-up-gc13
content-encoding: gzip
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
IP 75.119.144.45:0
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 09:39:40 GMT
etag: W/"6374afdc-281f9"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/libs/aos.js
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/libs/aos.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/src/libs/aos.js HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 22 Nov 2022 10:14:27 GMT
etag: W/"7ee92212a3ecbc19d9d71fa3818508af"
x-amz-request-id: tx00000000000000129a87f-00637ca117-1cdfff90-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc15
content-encoding: gzip
X-Firefox-Spdy: h2
www.binding.nl/wp-content/themes/Newspaper/style.css?ver=12.1
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/themes/Newspaper/style.css?ver=12.1
IP 75.119.144.45:0
GET /wp-content/themes/Newspaper/style.css?ver=12.1 HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 09:39:30 GMT
etag: W/"6374afd2-24f51"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/facebook-embed.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/facebook-embed.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.5.1/_inc/build/facebook-embed.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 11 Jan 2022 17:52:08 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-394129.js?sv=5
143.204.55.98200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-394129.js?sv=5
IP 143.204.55.98:0
GET /c/hotjar-394129.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 06:50:49 GMT
cache-control: max-age=60
etag: W/ef228953a8de7a1b185ed97343cfc62a
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FtS5Hby0h0gzhjATM0PySx9MzKtnDl-FJ3I5JMiJX4vZ17acf8vUww==
X-Firefox-Spdy: h2
www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%3D249643311490%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df3e61f233ef8444%2526domain%253Dwww.binding.nl%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.binding.nl%25252Ff375ff44698ab2a%2526relation%253Dparent.parent%26container_width%3D510%26height%3D1000%26hide_cover%3Dfalse%26hide_cta%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fdebinding%252F%26locale%3Dnl_NL%26sdk%3Djoey%26show_facepile%3Dtrue%26small_header%3Dtrue%26tabs%3Dfalse%26width%3D500
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%3D249643311490%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df3e61f233ef8444%2526domain%253Dwww.binding.nl%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.binding.nl%25252Ff375ff44698ab2a%2526relation%253Dparent.parent%26container_width%3D510%26height%3D1000%26hide_cover%3Dfalse%26hide_cta%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fdebinding%252F%26locale%3Dnl_NL%26sdk%3Djoey%26show_facepile%3Dtrue%26small_header%3Dtrue%26tabs%3Dfalse%26width%3D500
IP 31.13.72.36:0
GET /login/?next=https%3A%2F%2Fwww.facebook.com%2Fplugins%2Fpage.php%3Fapp_id%3D249643311490%26channel%3Dhttps%253A%252F%252Fstaticxx.facebook.com%252Fx%252Fconnect%252Fxd_arbiter%252F%253Fversion%253D46%2523cb%253Df3e61f233ef8444%2526domain%253Dwww.binding.nl%2526is_canvas%253Dfalse%2526origin%253Dhttps%25253A%25252F%25252Fwww.binding.nl%25252Ff375ff44698ab2a%2526relation%253Dparent.parent%26container_width%3D510%26height%3D1000%26hide_cover%3Dfalse%26hide_cta%3Dfalse%26href%3Dhttps%253A%252F%252Fwww.facebook.com%252Fdebinding%252F%26locale%3Dnl_NL%26sdk%3Djoey%26show_facepile%3Dtrue%26small_header%3Dtrue%26tabs%3Dfalse%26width%3D500 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.binding.nl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: JLZt3jSNVanxDsvoAv57dLDGIzWe4VtJxizqpRYDoxGLUx7VHki0XvNkomEez5cdIQYsWs5wVaOyzrpoJ3CJQA==
date: Mon, 28 Nov 2022 06:50:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd
75.119.144.45200 OK 0 B URL HTTP/2 www.binding.nl/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd
IP 75.119.144.45:0
GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd HTTP/1.1
Host: www.binding.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 09:40:45 GMT
etag: W/"6374b01d-b2d2a"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
promo-cdn.worldofwarships.com/glows-34505/src/scripts/script.js
92.223.97.97200 OK 0 B URL HTTP/2 promo-cdn.worldofwarships.com/glows-34505/src/scripts/script.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
GET /glows-34505/src/scripts/script.js HTTP/1.1
Host: promo-cdn.worldofwarships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://promo.worldofwarships.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:53 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 22 Nov 2022 10:14:28 GMT
etag: W/"eab843ce65c0521f3d120a4b09548b66"
x-amz-request-id: tx0000000000000001ae8bd-00637ca117-1cf5682d-ed1
access-control-allow-origin: *
cache: HIT
x-cached-since: 2022-11-26T10:15:02+00:00
x-id: sto5-up-gc11
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/comment-reply.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/comment-reply.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/comment-reply.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/likes/queuehandler.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/likes/queuehandler.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.5.1/_inc/build/likes/queuehandler.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.binding.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 06:50:47 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 22 Sep 2022 17:43:06 GMT
content-encoding: br
expires: Tue, 28 Nov 2023 06:50:47 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2