Report - aself.be/wp-content/plugins/ioptimization/yah/app

Report Overview

Submitted URL
aself.be/wp-content/plugins/ioptimization/yah/app
IP
193.105.133.140
ASN
#6696 VERIXI SA
Submitted
2022-12-09 20:21:10
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	1.2 kB	216.58.207.228
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	164 kB	142.250.74.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	172.64.155.188
geolocation.onetrust.com	802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	394 B	104.18.27.85
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	5.6 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	60 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
aself.be	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	59 kB	193.105.133.140
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.210.158.59
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	16 kB	142.250.74.35
www.aself.be	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	23 kB	193.105.133.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
cdn.cookielaw.org	502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	183 kB	104.16.148.64
assets.nflxext.com	3871	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	590 kB	45.57.90.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	aself.be/wp-content/plugins/ioptimization/yah/app	Netflix Inc.
2022-12-09	medium	aself.be/wp-content/plugins/ioptimization/yah/app	Netflix Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	aself.be/wp-content/plugins/ioptimization/yah/app	Phishing
2022-12-09	medium	aself.be/wp-content/plugins/ioptimization/yah/app	Phishing
2022-12-09	medium	aself.be/wp-content/plugins/ioptimization/yah/app/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	aself.be/wp-content/plugins/ioptimization/yah/app/	563 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen90 Hash 9f0d82a1b5d60228e0a4d1665f59f67c 829c99fe35c625415c250cee8319ce4d57c1a935 79bc395668201506662451911b09bb71e17c79b8fa10ecdfae553ab32e256bc7 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	29 B	2023-03-07	2024-04-25
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-25 19:16:33 Times Seen275 Hash b614eb30a85e093a8c253867ecaef388 c0d460c8bf5d297b618be148f562721492eaf3c3 9810c4dcb8cc5e81bf8ed159ddf2e4b83114bcf6a1f2dda230e4fbc2eb7a96b8 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	374 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:46 Last Seen2024-04-21 06:42:33 Times Seen219 Hash 65a81ff6df898a4bbe90b2cc2c8b5e40 ed60e60aa6bc34db91d9cdde37d164e1fad24083 868c62d3e4ca4070aba3ecbd57e49941c480611cf9e129e2299ea174d802cee8 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	2.9 kB	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen219 Hash 096988ffeee1c7f6c9704d2b0862163f 0df3e2a0f6b60d648331747892fe0a81ba6f4b36 be54b0e4d2cfacf935c717292d77bcc6a623d91a767ae5db9f22df49bb9bebd9 Loading...

	www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js	409 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash b2507198388fcc94ca9e94ed4c5561c5 8853fc86f1c616bd20a73e3e24442036fd90fd2f 02c7565a86d6d3a80295b85161d78fc88d8c79a0e314c0c7777570237a365ed0 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	212 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen53 Hash 0f1f1af66df2310bc32c7cf0425b54db ae5c06abca844581a1fae2d57989ee948339f4b5 6975aa1dbed1f6f8abc9b12cb70a6cffadf0ec28e5a72c942fe725f7ea8d60b8 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	143 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:46 Last Seen2024-04-21 06:42:33 Times Seen219 Hash b25a09aef9c55a5a1af9dd0e61ef81c8 240ac9cee2e6b6b072e67ec5374b23b9f6de3c18 fd34cfa82b57907348a1a0de3b09025d1b3fea555f90145f1db05345dd2fe249 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	66 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-21 06:42:33 Times Seen228 Hash 4abc64a802920a119c8f83c365c29d2b 8635509457d014184437306b4c3cd02e8998f535 e90e0f55b55b9acb2af9d0ebdfbd3223b27fa73e39f2a81513df914b556a5871 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	22 kB	2023-03-07	2024-03-05
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-03-05 19:00:25 Times Seen96 Hash a750a84d2cd5eb69aa0b8b1b94db6da8 56fd3e55c49aa5f3e48e525ae794da9b070cfa6c bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	221 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen218 Hash a61e8e2ae452c620f228a342439c9490 1c2443e52f3d6207d07790d83e8f70f9925cdbbc 3002909d083e55345c09d9aef1ddb846c46d2ffa01c56b1a198750b4be51d40f Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	118 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen219 Hash 11c14919ed3d06e54cf8f6f86cef6a71 de2d4401f34cc4020db235d13f0cdfea25b8428b ba5add5f84a8fe069b4107c643e8a9ede7d04c6e0ff96ab6c6d083d83cac5178 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	233 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:46 Last Seen2024-04-21 06:42:33 Times Seen219 Hash ee74e404a7f8b94f6821d6f0b1101636 4e977d314377b26bb61864486f32a0214cdfc06c a3f525d5fd2d47ce76155eed70731d98280691408d7443d4fb1f98838296870a Loading...

	assets.nflxext.com/web/ffe/wp/components/login/loginControllerClient.js.686362d355434dbd3997.js	1.1 MB	2023-03-07	2024-04-21
Pretty URL assets.nflxext.com/web/ffe/wp/components/login/loginControllerClient.js.686362d355434dbd3997.js IP 45.57.90.1 ASN #40027 NETFLIX-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:46 Last Seen2024-04-21 06:42:33 Times Seen131 Hash 2927d6d29780883a1dc9474ccddede2a 2ebd0e668452b5e68796c241959d221ff5b8beb2 dcfaae47f11e3c532e108520cdf71840e04652437a952cb08546db3559711828 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	397 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen219 Hash cce0ab22819f9f15acba59140c691bc8 c575d170c8deb665091c7eb8d06dcd1e78700626 658f7bb822289c279606639f07073f541eb78c8620858f5265f7e94581a4f74a Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	72 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-21 06:42:33 Times Seen290 Hash 7bf5fb2fd30cea050be6a48b90343984 e3d8fc7eec3e4338218b844d40a1ae86cc8581c6 aaecd144d2b8763b2fa5c91f09778294363cef363c10504205f4203922644d11 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	54 kB	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:47 Last Seen2024-04-21 06:42:33 Times Seen53 Hash 1fd40a4dc7c6427af654052a33e773b0 52fb1f241cce388960cca42cc4f50300d6af979f 34d7262340446c7a6df67def1d0713d580af9c5bbbabff7ad4dd2c6aab9a48f2 Loading...

	aself.be/wp-content/plugins/ioptimization/yah/app/	371 B	2023-03-07	2024-04-21
Pretty URL aself.be/wp-content/plugins/ioptimization/yah/app/ IP 193.105.133.140 ASN #6696 VERIXI SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-21 06:42:33 Times Seen204 Hash 6ff41c409959148570e728b6be6ec3a5 136ac0bf11c4c664707c4f230a7af4f40faa0346 b540a71ee97da488e71c9ea903420170793f3b43914e41e512714e20d9806169 Loading...

	www.google.com/recaptcha/enterprise.js?render=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR	974 B	2023-03-08	2024-02-07
Pretty URL www.google.com/recaptcha/enterprise.js?render=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:26:30 Last Seen2024-02-07 05:48:30 Times Seen1 Hash d188543690808a590f881002d1b43e2a 8735d9fa3095f57e75705dbc5bf137f847e36180 d4fd632f53288aef6ea908084380e6f251e52500f417830bd15a665517145c3d Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR&co=aHR0cHM6Ly9hc2VsZi5iZTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=dvim8bkpr75d	315 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR&co=aHR0cHM6Ly9hc2VsZi5iZTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=dvim8bkpr75d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 02:11:13 Times Seen249 Hash 312a2a397ac7ddf5a927eebe419d7df2 2a35fbcb23a052f9ec3f0621c2e8f69959a16fff 014d324c605331878f1b40bfccc4d6c5fa9af407ef5331491a34fdd68e768273 Loading...

HTTP Transactions (62)

URL IP Response Size

aself.be/wp-content/plugins/ioptimization/yah/app

193.105.133.140

301 Moved Permanently

265 B

URL HTTP/1.1
aself.be/wp-content/plugins/ioptimization/yah/app
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
265 B (265 bytes)
Hash
6831edc06ab7d4e0d4b22117474964da
4e52ab7d8ceab8bcb99ca40c2fa1ce6e112ce4c4
f07c05c6c06110b74bcc3b9d1b48a01d154bd97622c4d173ec73b709e657d373

Detections

Analyzer	Verdict	Alert
openphish	Netflix Inc.
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ioptimization/yah/app HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 20:20:59 GMT
Server: Apache/2
Location: https://aself.be/wp-content/plugins/ioptimization/yah/app
Content-Length: 265
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7932
Expires: Fri, 09 Dec 2022 22:33:11 GMT
Date: Fri, 09 Dec 2022 20:20:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4966
Expires: Fri, 09 Dec 2022 21:43:45 GMT
Date: Fri, 09 Dec 2022 20:20:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13905
Expires: Sat, 10 Dec 2022 00:12:44 GMT
Date: Fri, 09 Dec 2022 20:20:59 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 20:08:20 GMT
content-type: application/json
age: 759
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: aVbUYz/jPX+JNL6GfeT6MYpdMXiw4ZESaobA2gTCrhQ2EMIQlwygIEdNMK6es1+FH+rBzQ0Swls=
x-amz-request-id: RMNFDT8XQ4XTJHPC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 19:48:29 GMT
age: 1950
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f5fad12d8981962d047efc9c6d1e5672
d4b88d188b5085051751224b59a23716300ba3de
77f76b3272688927665372ab5e8d06c47f11b10020474bc82d43f246c59d848b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:20:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 19:18:09 GMT
Expires: Tue, 13 Dec 2022 19:18:08 GMT
Etag: "d4b88d188b5085051751224b59a23716300ba3de"
Cache-Control: max-age=341228,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777071cf39050b61-OSL

aself.be/wp-content/plugins/ioptimization/yah/app

193.105.133.140

301 Moved Permanently

266 B

URL HTTP/2
aself.be/wp-content/plugins/ioptimization/yah/app
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
266 B (266 bytes)
Hash
ecd6d1ace850cb5d8be6358f34ae5d2f
21d5da20a6b3c5fec1035e9fdc0fd23984d90669
b6303145fa9998df722464aa6ef7c0f5dccd15588efda9a5418dc5bb4809751b

Detections

Analyzer	Verdict	Alert
openphish	Netflix Inc.
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ioptimization/yah/app HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
location: https://aself.be/wp-content/plugins/ioptimization/yah/app/
content-length: 266
content-type: text/html; charset=iso-8859-1
date: Fri, 09 Dec 2022 20:20:59 GMT
server: Apache/2
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:20:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 20:07:55 GMT
age: 784
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3519
Cache-Control: max-age=135874
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:05:34 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
7d6985c1d658be30ea21355c00151f76
69ed091be153681d1ea45b61c1cb48d1d66dc853
34ffdef52f95a432d4345c19bb51742520432b2e0e31e9df9fb5ece3726a397e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3112
Cache-Control: max-age=125418
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "6392d36e-116"
Expires: Sun, 11 Dec 2022 07:11:18 GMT
Last-Modified: Fri, 09 Dec 2022 06:19:26 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
104a3ff8e691cd0d9091299c7f8f035a
7d7f8b9e9cbb65f67431fe79e773ef191dd70440
1c4415ab8cb694c5617dd9cc746f57850d1e24d2c8f71019e6e74ba9aca1ab98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2785
Cache-Control: max-age=136246
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "6392ff01-117"
Expires: Sun, 11 Dec 2022 10:11:46 GMT
Last-Modified: Fri, 09 Dec 2022 09:25:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.148.64

200 OK

7.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21747)
Size
7.2 kB (7151 bytes)
Hash
6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:00 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Thu, 08 Dec 2022 21:22:16 GMT
etag: 0x8DAD96247F69588
x-ms-request-id: 8efa7dae-001e-0030-5f62-0b82cc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 66680
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071d46822b4eb-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
104a3ff8e691cd0d9091299c7f8f035a
7d7f8b9e9cbb65f67431fe79e773ef191dd70440
1c4415ab8cb694c5617dd9cc746f57850d1e24d2c8f71019e6e74ba9aca1ab98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5320
Cache-Control: max-age=138781
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "6392ff01-117"
Expires: Sun, 11 Dec 2022 10:54:01 GMT
Last-Modified: Fri, 09 Dec 2022 09:25:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
6bd42cec7094e721bdaa3f814eb456a8
607a2cbcfb71e1ff5669079c5b167c68e742dff3
569e7b7504172542d236ed81594eb41352d098751e32d8a7d355ee8ee444386f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4578
Cache-Control: max-age=106684
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "63928486-117"
Expires: Sun, 11 Dec 2022 01:59:04 GMT
Last-Modified: Fri, 09 Dec 2022 00:42:46 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
5a4f9ea19c0faf13757b7922f8cd7786
9aab6497291b0d0c1f36d954cac4e07d2d29ab18
bafb16f8e6925a7c78fe7d8ef42d24b37296eb013f7deb07255f786ed2ab39d8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1362
Cache-Control: max-age=145965
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "63932a87-116"
Expires: Sun, 11 Dec 2022 12:53:45 GMT
Last-Modified: Fri, 09 Dec 2022 12:31:03 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
104a3ff8e691cd0d9091299c7f8f035a
7d7f8b9e9cbb65f67431fe79e773ef191dd70440
1c4415ab8cb694c5617dd9cc746f57850d1e24d2c8f71019e6e74ba9aca1ab98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1222
Cache-Control: max-age=134683
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:00 GMT
Etag: "6392ff01-117"
Expires: Sun, 11 Dec 2022 09:45:43 GMT
Last-Modified: Fri, 09 Dec 2022 09:25:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

aself.be/wp-content/plugins/ioptimization/yah/app/

193.105.133.140

200 OK

41 kB

URL HTTP/2
aself.be/wp-content/plugins/ioptimization/yah/app/
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (57094), with CRLF line terminators
Size
41 kB (41008 bytes)
Hash
f9cc0bb25b7e7bdc1774cb58b19dd9ca
471c523285a45143f39a56e1dfbc16f2edbdabf5
047e978fcae25978813a143c39feb107cee060d00f7605cd8577b12fa9eeccc6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ioptimization/yah/app/ HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.4.32
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:20:59 GMT
server: Apache/2
X-Firefox-Spdy: h2

assets.nflxext.com/web/ffe/wp/less/login/loginBase.09e271325f8873705389.css

45.57.90.1

200 OK

12 kB

URL HTTP/1.1
assets.nflxext.com/web/ffe/wp/less/login/loginBase.09e271325f8873705389.css
IP
45.57.90.1:0
ASN
#40027 NETFLIX-ASN

File type
ASCII text, with very long lines (384)
Size
12 kB (11804 bytes)
Hash
1149b38d732fe257d9c90314920d0319
de1cd2d58aa991979f78886bdaae007c6dce0f82
3388aa4b86fd1f04cec206737fe635957aa8b5d1ee20f384f043301656b16bad

HTTP Headers

GET /web/ffe/wp/less/login/loginBase.09e271325f8873705389.css HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 20:21:00 GMT
Content-Type: text/css
Content-Length: 11804
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 12:33:06 GMT
Content-Encoding: gzip
Cache-Control: max-age=604801
Expires: Fri, 16 Dec 2022 20:21:01 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

assets.nflxext.com/web/ffe/wp/less/core/error-page.b4d75d715f60a9ee1887.css

45.57.90.1

200 OK

4.4 kB

URL HTTP/1.1
assets.nflxext.com/web/ffe/wp/less/core/error-page.b4d75d715f60a9ee1887.css
IP
45.57.90.1:0
ASN
#40027 NETFLIX-ASN

File type
ASCII text
Size
4.4 kB (4422 bytes)
Hash
21327783ac6fc4da143cdf76aa498fa8
6c7f07ba57a74e6e435ef2b4e8a0c86f32d43de0
6bdb28aaf9cbfd268a1aab382d4608d172756d7051a5e0470806890ad0c1006c

HTTP Headers

GET /web/ffe/wp/less/core/error-page.b4d75d715f60a9ee1887.css HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 20:21:00 GMT
Content-Type: text/css
Content-Length: 4422
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 12:33:06 GMT
Content-Encoding: gzip
Cache-Control: max-age=604801
Expires: Fri, 16 Dec 2022 20:21:01 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

assets.nflxext.com/web/ffe/wp/components/login/loginControllerClient.js.686362d355434dbd3997.js

45.57.90.1

200 OK

302 kB

URL HTTP/1.1
assets.nflxext.com/web/ffe/wp/components/login/loginControllerClient.js.686362d355434dbd3997.js
IP
45.57.90.1:0
ASN
#40027 NETFLIX-ASN

File type
ASCII text, with very long lines (65433)
Size
302 kB (301460 bytes)
Hash
27cc7b23041a1665ed1da2e62b3c963e
609946f37b4ecf21ac56a3bb89ba076af3b5126a
bbf8da9b569caca8f72cfaab085765b80d2b88ec8d25ec604e72a4b3d9157bae

HTTP Headers

GET /web/ffe/wp/components/login/loginControllerClient.js.686362d355434dbd3997.js HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 20:21:00 GMT
Content-Type: application/javascript
Content-Length: 301460
Connection: keep-alive
Last-Modified: Thu, 14 Jul 2022 20:09:12 GMT
Content-Encoding: gzip
Cache-Control: max-age=604801
Expires: Fri, 16 Dec 2022 20:21:01 GMT
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

assets.nflxext.com/ffe/siteui/vlv3/1ef84595-1fdb-4404-adac-15215ceeb3ae/9b7e4892-200e-4740-909b-cdd33763fe9f/US-en-20220711-popsignuptwoweeks-perspective_alpha_website_medium.jpg

45.57.90.1

200 OK

196 kB

URL HTTP/1.1
assets.nflxext.com/ffe/siteui/vlv3/1ef84595-1fdb-4404-adac-15215ceeb3ae/9b7e4892-200e-4740-909b-cdd33763fe9f/US-en-20220711-popsignuptwoweeks-perspective_alpha_website_medium.jpg
IP
45.57.90.1:0
ASN
#40027 NETFLIX-ASN

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3\012- data
Size
196 kB (196541 bytes)
Hash
c397fdf9de2f39168634577fa8ad222c
3303cdf20469618925e4c8f030be8c5f55d8014a
30da3ab5f9f7507063820c5201b3c95784eb2d4179aab9464659d4f3600c7ef3

HTTP Headers

GET /ffe/siteui/vlv3/1ef84595-1fdb-4404-adac-15215ceeb3ae/9b7e4892-200e-4740-909b-cdd33763fe9f/US-en-20220711-popsignuptwoweeks-perspective_alpha_website_medium.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 20:21:00 GMT
Content-Type: image/jpeg
Content-Length: 196541
Connection: keep-alive
Accept-Ranges: bytes
Content-MD5: w5f9+d4vORaGNFd/qK0iLA==
Last-Modified: Wed, 13 Jul 2022 12:53:46 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Dec 2022 20:21:01 GMT

push.services.mozilla.com/

34.210.158.59

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.210.158.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Gsb4ypElcJmNll5g9zSeqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YLSm7NhvOpXuE4Kax4onv14eXQo=

aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login

193.105.133.140

301 Moved Permanently

0 B

URL HTTP/2
aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/wp-content/plugins/ioptimization/yah/app/
Cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Fri, 09 Dec 2022 21:21:00 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:00 GMT
server: Apache/2
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15758
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:21:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15758
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:21:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15758
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:21:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15758
Expires: Sat, 10 Dec 2022 00:43:39 GMT
Date: Fri, 09 Dec 2022 20:21:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12748 bytes)
Hash
730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:44:29 GMT
age: 45392
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 16:56:53 GMT
age: 12248
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7801 bytes)
Hash
8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 17:48:23 GMT
age: 9158
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 58434
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 59955
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 60394
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login

193.105.133.140

404 Not Found

7.2 kB

URL HTTP/2
www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
7.2 kB (7179 bytes)
Hash
7877951db04f9fd51bec13e9e330210e
4a110e0cbf92abce08748ee25b6cbd9b709081dd
337c5c992d5d61738ca0ebe7ff8f64b3e7a4a8b816ec7e5837b928ec89ec79c5

HTTP Headers

GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=login HTTP/1.1
Host: www.aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aself.be/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: PHPSESSID=cfd9a6b4f2b7477d17f6d424997ed927; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7179
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:00 GMT
server: Apache/2
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/87b6a5c0-0104-4e96-a291-092c11350111.json

104.16.148.64

200 OK

1.8 kB

URL HTTP/2
cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/87b6a5c0-0104-4e96-a291-092c11350111.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (4648), with no line terminators
Size
1.8 kB (1779 bytes)
Hash
290329fbec7f318a5ee645be1eaf5a20
6d71f8c45945291d34804fcccfb1204cb93cd60a
e29944aae074ccdc481bbf3a8805940581bdb563e694ca2268a92221fd309743

HTTP Headers

GET /consent/87b6a5c0-0104-4e96-a291-092c11350111/87b6a5c0-0104-4e96-a291-092c11350111.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aself.be
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:01 GMT
content-type: application/x-javascript
content-length: 1779
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: KQMp++x/MYpe5kW+Hq9aIA==
last-modified: Thu, 08 Dec 2022 01:11:58 GMT
etag: 0x8DAD8B93412B0A1
x-ms-request-id: 0852b79c-701e-001d-5e45-0b010c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 7215
expires: Sat, 10 Dec 2022 20:21:01 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071dd5c1a0b4d-OSL
X-Firefox-Spdy: h2

assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff

45.57.90.1

200 OK

74 kB

URL HTTP/1.1
assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff
IP
45.57.90.1:0
ASN
#40027 NETFLIX-ASN

File type
Web Open Font Format, CFF, length 73572, version 0.0\012- data
Size
74 kB (73572 bytes)
Hash
7cf6156cc481244b5a254362d7b73f00
4391003d1cb06d2bd1921a5813a57604fa7d9935
98713b53a74ebe7e326353080c5f1653e83af61d6363c0b3c4c67d6d24197b4d

HTTP Headers

GET /ffe/siteui/fonts/nf-icon-v1-93.woff HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://aself.be
Connection: keep-alive
Referer: https://assets.nflxext.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 20:21:02 GMT
Content-Type: font/woff
Content-Length: 73572
Connection: keep-alive
Content-MD5: fPYVbMSBJEtaJUNi17c/AA==
Last-Modified: Mon, 29 Jan 2018 01:50:51 GMT
Cache-Control: max-age=604801
Expires: Fri, 16 Dec 2022 20:21:03 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b5cba4e1962a1fe17c9021f3e418975a
01293d7e4084011451f7d17936ab2427504cdb1a
ecfe30d3abc32ca9f933303d75b2055642d3c7c8197af08fe2c314394699594b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/enterprise.js?render=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR

216.58.207.228

200 OK

615 B

URL HTTP/2
www.google.com/recaptcha/enterprise.js?render=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (974), with no line terminators
Size
615 B (615 bytes)
Hash
6f7c0dadc5ffca6bb3078a710af52fed
b7d4e19859eebc3ff029389c8de723d8cef8ad9b
a64ad7e848d795a8ab5dc2f1b40fd0ca8bc3634b2cbe268465af1db5720672b7

HTTP Headers

GET /recaptcha/enterprise.js?render=6Lf8hrcUAAAAAIpQAFW2VFjtiYnThOjZOA5xvLyR HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 09 Dec 2022 20:21:02 GMT
date: Fri, 09 Dec 2022 20:21:02 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 615
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
277e4c48eb177e905b3180233fcd7a5b
20093687f689c9ab89bdcd0a20e12bb224b68a04
acbed50363f774989518d6fa4d331b990b03dd26a5ad95d271f1a009de7f305f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2646
Cache-Control: max-age=145474
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:02 GMT
Etag: "6393239a-118"
Expires: Sun, 11 Dec 2022 12:45:36 GMT
Last-Modified: Fri, 09 Dec 2022 12:01:30 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js

104.16.148.64

200 OK

94 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
94 kB (93482 bytes)
Hash
b8f16acb1b6bc46a89b3202f07b4674a
cb170c527fd1d700bb672f2f36802081fd4014aa
8360a3b396c1e821e9b04878d2a56df5697a1a75044d84bb8b849b1bd6e5ff07

HTTP Headers

GET /scripttemplates/202211.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/javascript
content-length: 93482
content-encoding: gzip
content-md5: uPFqyxtrxGqJsyAvB7RnSg==
last-modified: Wed, 07 Dec 2022 03:42:54 GMT
etag: 0x8DAD8051F95DD2E
x-ms-request-id: 8dbda8ab-001e-0019-760d-0af48e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 76400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e12e99b4eb-OSL
X-Firefox-Spdy: h2

aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login

193.105.133.140

301 Moved Permanently

0 B

URL HTTP/2
aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/wp-content/plugins/ioptimization/yah/app/
Cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Fri, 09 Dec 2022 21:21:02 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:01 GMT
server: Apache/2
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/75ef5a03-fc1f-47ac-8a2f-c08657503648/en.json

104.16.148.64

200 OK

14 kB

URL HTTP/2
cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/75ef5a03-fc1f-47ac-8a2f-c08657503648/en.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (53943), with no line terminators
Size
14 kB (14131 bytes)
Hash
d51f7e3d81dafc6728d9e492f8ee8dfe
99fc2347ce190bf62d383e55212fbd1cd0a23062
7fc0c4d24adb640c4894a2fd278623a791e5008705c1d8276551bac60449ea35

HTTP Headers

GET /consent/87b6a5c0-0104-4e96-a291-092c11350111/75ef5a03-fc1f-47ac-8a2f-c08657503648/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aself.be/
Origin: https://aself.be
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/x-javascript
content-length: 14131
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 1R9+PYHa/Gco2eSS+O6N/g==
last-modified: Thu, 08 Dec 2022 01:12:12 GMT
etag: 0x8DAD8B93CD4368B
x-ms-request-id: 86b77faf-f01e-0043-5bec-0bf20f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 7215
expires: Sat, 10 Dec 2022 20:21:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e1986c0b4d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcTab.json

104.16.148.64

200 OK

13 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcTab.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (50875)
Size
13 kB (13335 bytes)
Hash
46d8763d787b07d3a1beeba7d8c5f7de
61a6fb545126e45f85cc3ee80742b8c854550c12
14a403000d18938261c897d385fcf6de0da0e5f3f046aef38eac30c58ba577aa

HTTP Headers

GET /scripttemplates/202211.2.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aself.be/
Origin: https://aself.be
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/json
content-length: 13335
content-encoding: gzip
content-md5: Rth2PXh7B9Ohvuun2MX33g==
last-modified: Wed, 07 Dec 2022 03:42:45 GMT
etag: 0x8DAD8051A82BBE9
x-ms-request-id: f5db85fe-901e-0175-5b45-0b1908000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 7215
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e1d8d50b4d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json

104.16.148.64

200 OK

3.0 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (11167)
Size
3.0 kB (3020 bytes)
Hash
bcef00fda6caa683da714aef4a4f4e4b
64b093a6500c547a9d678af6cbca1ce683bac5c5
19dbb640f58f6a90958b72d7fdd6cd96692fb10ccba74d926294679ca129b0bc

HTTP Headers

GET /scripttemplates/202211.2.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aself.be/
Origin: https://aself.be
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/json
content-length: 3020
content-encoding: gzip
content-md5: vO8A/abKpoPacUrvSk9OSw==
last-modified: Wed, 07 Dec 2022 03:42:43 GMT
etag: 0x8DAD80518EF859D
x-ms-request-id: 65fd5cc1-101e-012b-0c45-0bea0b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 7215
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e1c8d00b4d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png

104.16.148.64

200 OK

16 kB

URL HTTP/2
cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1801 x 756, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16386 bytes)
Hash
dcc4094709a2dc14af288844556ff9b7
0dd0347c55ca4f5332e11d5b742babf8aebf8d6f
675dd7b68acf580f893bec532f5b260b8f984b67734a9a6831334b2ff4aad384

HTTP Headers

GET /logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/octet-stream
content-length: 16386
content-md5: 3MQJRwmi3BSvKIhEVW/5tw==
last-modified: Mon, 18 May 2020 21:10:31 GMT
etag: 0x8D7FB6FE5CFC000
x-ms-request-id: 51439d9a-f01e-0048-0c43-caea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 35929
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e20f90b4eb-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.16.148.64

200 OK

4.6 kB

URL HTTP/2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
4.6 kB (4631 bytes)
Hash
d1819fe610c04c3e448b4400919e4b15
eb8334ac47c2382b0f26c9946638be2b865aa00d
657355022ec7d90bde147c18a9f405e17e3ab5c344f4d7c3eef5e8b552ccc735

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: image/svg+xml
content-md5: nvsqHj63Mt+zbyhgtmGw4w==
last-modified: Thu, 08 Dec 2022 21:22:27 GMT
x-ms-request-id: 5f787e45-f01e-000c-2579-0b3617000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 42182
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e20f92b4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css

104.16.148.64

200 OK

21 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
21 kB (20946 bytes)
Hash
3de8a1fa3dc2222c9f9e4d425822d860
975f0537e43d5409300fe35c5efc3120a918bb3b
5b3234df7cbc292a6d6b6c8ec13763c8c77b2530438856d72c30535638cb4976

HTTP Headers

GET /scripttemplates/202211.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aself.be/
Origin: https://aself.be
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Wed, 07 Dec 2022 03:42:59 GMT
x-ms-request-id: e2b669ec-601e-0064-1945-0b6846000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 7215
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777071e1d8d70b4d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js

142.250.74.35

200 OK

163 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (730)
Size
163 kB (162976 bytes)
Hash
79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6

HTTP Headers

GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aself.be
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 196860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 21:48:03 GMT
expires: Fri, 08 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 81180
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

aself.be/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1

193.105.133.140

301 Moved Permanently

0 B

URL HTTP/2
aself.be/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1 HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aself.be/wp-content/plugins/ioptimization/yah/app/
Cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Fri, 09 Dec 2022 21:21:03 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://www.aself.be/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:01 GMT
server: Apache/2
X-Firefox-Spdy: h2

aself.be/personalization/log

193.105.133.140

404 Not Found

7.0 kB

URL HTTP/2
aself.be/personalization/log
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
7.0 kB (7040 bytes)
Hash
cb211683bd97f80be0bedf22cba0209f
7ba3cfabaef5dcaa8d1cdd4543419d707e395cef
f07dc62e48bde5e218dfc606e1e3f749f2e47a5caabee80709de0f4c799dd38a

HTTP Headers

POST /personalization/log HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Netflix.ichnaea.request.type: UiRequest
Content-Type: application/json
Content-Length: 1346
Origin: https://aself.be
Connection: keep-alive
Referer: https://aself.be/wp-content/plugins/ioptimization/yah/app/
Cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff; cL=1670617260767%7C167061726098495137%7C167061726091709165%7C%7C4%7Cnull
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7040
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:02 GMT
server: Apache/2
X-Firefox-Spdy: h2

www.aself.be/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1

193.105.133.140

404 Not Found

7.2 kB

URL HTTP/2
www.aself.be/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
7.2 kB (7204 bytes)
Hash
76f464a6f8c0ab1570220c82948a3040
cf52eee589ab8d9579f7f395d3039ece7304d480
81ed549dbc43b9dcf67e2d8fa4fc168d5b1b19c3d4e07722caf04c56cf0f2c12

HTTP Headers

GET /personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1 HTTP/1.1
Host: www.aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aself.be
Referer: https://aself.be/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: PHPSESSID=f46e7bf2a477c6b28fb52ac7e6c86462; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7204
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:03 GMT
server: Apache/2
X-Firefox-Spdy: h2

www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login

193.105.133.140

404 Not Found

7.2 kB

URL HTTP/2
www.aself.be/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
7.2 kB (7178 bytes)
Hash
7f006ab8823a141b1758604537f5ced2
8a3bd69989751c360019b3a05f20f8a63a7e19a2
a040a6004a3bcc3c7f7a9d98acb4b9b7b943d1532ba82cf4452f1b06d29a0427

HTTP Headers

GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=login HTTP/1.1
Host: www.aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aself.be
Referer: https://aself.be/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: PHPSESSID=989cd0f7741e12ed1603150060f38018; path=/
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7178
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:02 GMT
server: Apache/2
X-Firefox-Spdy: h2

aself.be/personalization/cl2

193.105.133.140

404 Not Found

7.0 kB

URL HTTP/2
aself.be/personalization/cl2
IP
193.105.133.140:0
ASN
#6696 VERIXI SA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
7.0 kB (7040 bytes)
Hash
cb211683bd97f80be0bedf22cba0209f
7ba3cfabaef5dcaa8d1cdd4543419d707e395cef
f07dc62e48bde5e218dfc606e1e3f749f2e47a5caabee80709de0f4c799dd38a

HTTP Headers

POST /personalization/cl2 HTTP/1.1
Host: aself.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Netflix.Client.Request.Name: ui/cl
Content-Type: application/json
Content-Length: 3478
Origin: https://aself.be
Connection: keep-alive
Referer: https://aself.be/wp-content/plugins/ioptimization/yah/app/
Cookie: PHPSESSID=7305b88363cc22d5a3e382e93e045bff; cL=1670617260767%7C167061726098495137%7C167061726091709165%7C%7C4%7Cnull
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/2 404 Not Found
x-powered-by: PHP/7.4.32
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7040
content-type: text/html; charset=UTF-8
date: Fri, 09 Dec 2022 20:21:06 GMT
server: Apache/2
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xi-bshsYa4LlKbJgAt0h-lPnB_5uQbqln5JGBRE8io2Fp1y41cS9xg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:08:48 GMT
age: 58340
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e2c3513620170cf712d9a2158f2e014c
c265a32ae3f167ab6fa8d7cea79709df0d04941d
c799f7d15a2aeabcc5926a915cd632e0d84a64fa6af52e03581d952ea9df0bc3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2488
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:21:08 GMT
Last-Modified: Fri, 09 Dec 2022 19:39:41 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

104.18.27.85

200 OK

0 B

URL HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
104.18.27.85:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aself.be
Connection: keep-alive
Referer: https://aself.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:21:02 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 777071e0ab980b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations