leveler.customer.instanthost.net/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4
145.239.137.4303 See Other 0 B URL HTTP/1.1 leveler.customer.instanthost.net/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4
IP 145.239.137.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4 HTTP/1.1
Host: leveler.customer.instanthost.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Server: nginx
Date: Fri, 09 Dec 2022 02:30:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 02:30:04 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login.php?success_redirect_url=%2F
X-Robots-Tag: noindex,nofollow
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12707
Expires: Fri, 09 Dec 2022 06:02:35 GMT
Date: Fri, 09 Dec 2022 02:30:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10199
Expires: Fri, 09 Dec 2022 05:20:47 GMT
Date: Fri, 09 Dec 2022 02:30:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 02:08:16 GMT
content-type: application/json
age: 1352
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9864
Expires: Fri, 09 Dec 2022 05:15:12 GMT
Date: Fri, 09 Dec 2022 02:30:48 GMT
Connection: keep-alive
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login.php?success_redirect_url=%2F
145.239.137.4303 See Other 0 B URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login.php?success_redirect_url=%2F
IP 145.239.137.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login.php?success_redirect_url=%2F HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 02:30:05 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
X-Robots-Tag: noindex,nofollow
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NxZA9Rp3HflhZQS6r98zZIDapIfo3/dDJYzrC12aI5h7JdAoohezwwFbzbBcNaurrqMXZDvrKcM=
x-amz-request-id: MS7QRSQT4RTV08KS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 01:48:08 GMT
age: 2560
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 02:30:48 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
145.239.137.4200 OK 30 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
IP 145.239.137.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27087)
Hash edb2a4f3f709c9c765460424afc49d67
a0c403d80b3e032f92be5c126ba2e00acd80e05a
019fcbe562c6a4a0d0c62b6c9f8a5c04663e769a35471d6610cd41ad13f2ad36
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 02:30:05 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Set-Cookie: plesk-ext-social-login-jwt-session=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.CR-m8QGgnVD6bw51MXNhxGGIYJyGEaRInWaIr8K4WU0; path=/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/; secure; HttpOnly
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.css?1655204710
145.239.137.4200 OK 186 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.css?1655204710
IP 145.239.137.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 186 kB (186442 bytes)
Hash bf4bf0e08004b5e738e8c2a2bdb9b605
90437dda4f2b0f0cb86ad510aa678159537fd3ca
d74f7c57835cc2b8f2b8a223837feaa5eb379e7613d81ece7cdc15bab281afd5
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.css?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-2d84a"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/prototype.js?1655204710
145.239.137.4200 OK 98 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/prototype.js?1655204710
IP 145.239.137.4:0
File type ASCII text, with very long lines (60984)
Hash 376d4fa07f4512ed39c3e8cef0e72618
0221d728831cd22678a0c15b0b2d347a69b9d5f9
17d6af2a222b2684f5c438a56df96e4151d77bb9f73e30878880b6c3346b1cee
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/prototype.js?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-17ccf"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/main.css?1655204710
145.239.137.4200 OK 326 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/main.css?1655204710
IP 145.239.137.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 326 kB (326067 bytes)
Hash 8f55ccfacdcfcb8ef32da3557762a318
c64694e51a790ef2f0a9a066ce7223d47b9f889f
f0771c7184d666b5011f475be9a5f77e88ce82e29d88ee91e357c1795be2f5ea
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/main.css?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-4f9b3"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/custom.css?1570834631
145.239.137.4200 OK 212 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/custom.css?1570834631
IP 145.239.137.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 212 kB (212536 bytes)
Hash d1f29b90f5e87ecf721710765f0d7d13
b2f17ed638eaafa24046b96c50c0703656a2e935
489dbc9f1a3997fa3ded47f87da48e8d0ad0be8702a30e88ad7538c001b3bd16
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/theme-skins/onyx/css/custom.css?1570834631 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Oct 2019 22:57:11 GMT
ETag: "5da108c7-33e38"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/main.js?1655204710
145.239.137.4200 OK 479 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/main.js?1655204710
IP 145.239.137.4:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 479 kB (478744 bytes)
Hash dae65787ab0978e3454d2ee0cc2bd529
b08893d2624339976f0ee39a842cbfd8ce876b1a
4988bd853f2dd8e0bf131d0c91c06fc11b227cb74526088f2c22a83687c67de8
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/main.js?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-74d3d"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/require.js?1655204710
145.239.137.4200 OK 18 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/require.js?1655204710
IP 145.239.137.4:0
File type ASCII text, with very long lines (17560)
Hash 220acf7972072071438cc24778c255ff
590d02db4b7d2be0864a64efec3525e07a40e271
af09ac9bed074d089e213edb597d36acfe0ce46dfe9112f290776395fb61986d
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/externals/require.js?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-4562"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/notifier/global.js?1669958749
145.239.137.4200 OK 15 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/notifier/global.js?1669958749
IP 145.239.137.4:0
File type ASCII text, with very long lines (15013), with no line terminators
Hash 75017fa816a5cfab9fcecac0b84f9ed5
844ab1cfb5f24e43a0585ec4fa44053376a4d13c
dd22b0163452cdeb3545cfa50dd2e2bcb9d37776b7d8a1a3a5bf73737332eddc
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/notifier/global.js?1669958749 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 05:25:49 GMT
ETag: "63898c5d-3aa5"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/letsencrypt/global.js?1668662551
145.239.137.4200 OK 726 B URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/letsencrypt/global.js?1668662551
IP 145.239.137.4:0
Hash 4acc4592b2dce096cae6507c3eb1ee40
aaddedad4e54fd1a00a8d1df7becfb212393e414
02cc6928e5d72c61fbc379087a5ce4d29262a281c457aecebe86bbfb4a136af5
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/letsencrypt/global.js?1668662551 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 05:22:31 GMT
ETag: "6375c517-2d6"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/social-login/styles/main.css
145.239.137.4200 OK 2.0 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/social-login/styles/main.css
IP 145.239.137.4:0
Hash d2e5f3035f8d61ab9b6545323ed37c42
257ed9426e2ad3e5df365d7d903f6b57094c0b7e
9158508a1cdaf915c698197a2d946e567a55f6c44ada7326c4bdc82a178294d8
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/modules/social-login/styles/main.css HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 20 May 2022 04:21:54 GMT
ETag: "62871762-7f4"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/vendors.js?1655204710
145.239.137.4200 OK 1.4 MB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/vendors.js?1655204710
IP 145.239.137.4:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 1.4 MB (1403731 bytes)
Hash 273079f70ad32307ef66a9831547212f
1ffe4ede801ca4d706b2acc14398c7a0f84f6388
5112b1ede3acb63954b5036649718a24e8b6c1ea1a6ef72fd470534ea2e8d06d
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/cp/javascript/vendors.js?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-156b53"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 02:07:55 GMT
age: 1374
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5306
Cache-Control: max-age=115469
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:30:49 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:35:18 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/favicon.ico?1655204710
145.239.137.4200 OK 4.3 kB URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/favicon.ico?1655204710
IP 145.239.137.4:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 650b28c6cf1b473aed15ba26bad1da92
63f99c1d32ab6387db0f981f242fcefcb875ac21
1f7437e15be65fcfd977e547e957da7950167f957deeac877086e9b66c11be87
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/favicon.ico?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:06 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-10be"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kzdEGA96p6ni4f1OLBJMww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z+C0ik0JhKRp9C0Br67mJxgEw/Q=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8398
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8398
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8398
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8398
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:30:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a22fc7807fb3337f0af5e546c7ad366a
0d5969394b370a5c77c53ed58f55e5f8a45da3ab
98b4f4fd27dc036697fb0328083bce6e691b7493428f3a54991087d9d1165d97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5530
x-amzn-requestid: adecbb8c-cec3-46a0-b32c-0026b8421fe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4d8Fg6IAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903abf-4bcb385f27cb438c36a2cd5e;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHRqiTOztNQMPykKUfiEUFYVlLF4E4y9GVCT2g48MAvOyG-KZQkb8Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:58:06 GMT
age: 66765
etag: "0d5969394b370a5c77c53ed58f55e5f8a45da3ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 16767
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 82347
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955c6ac69b89f6cbd497df53fcb2ae1b
2506152cdd1056533116feb9350124356e570e54
fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 10:15:09 GMT
age: 58542
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f04d1dc05d36822d7368cdb4d19316c9
5c611ceaf8d4c79edfe37a6201d40917cebeda28
a9336a736295e694564259c4806ed96a00d20844f78f2688ed28251e62a71ceb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde6483ed-68c7-4999-8a46-9249a82ae253.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6979
x-amzn-requestid: e8dc7a72-f5b3-48cd-a82d-353bace3ed7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F8GIAMFojw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-4c62a5ea0572081c44fd601c;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HVDmsaBvm-_CVFzeFfp8XZU8rfpsAIqa4DsbAcqoYAiwcR_7NFzc9Q==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:58:15 GMT
age: 81156
etag: "5c611ceaf8d4c79edfe37a6201d40917cebeda28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d1605154a552a8c3165c1358ea2e185
2e677da1f57c112d984180ead80481e8797ff2e8
12b075ad3e786dc68ab3fab1e4ce9d6f7810bdebc7bdafd993e19bc5bc7c0abc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa81aa5-4138-458e-9bd7-de9d6211763c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: e0d56100-13aa-44e5-ae80-bedfeece87db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV19EUOIAMFjcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900359-5a5402381d61db921a00404d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7ET6kgGgWAKa4_CFCgSwnN8m7FnplxP7zOp8lEyodxn5lmlIIHD4vQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:38:24 GMT
age: 82347
etag: "2e677da1f57c112d984180ead80481e8797ff2e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.min.js?1655204710
145.239.137.4200 OK 0 B URL HTTP/1.1 145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.min.js?1655204710
IP 145.239.137.4:0
Analyzer Verdict Alert quad9 Sinkholed
GET /plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/ui-library/plesk-ui-library.min.js?1655204710 HTTP/1.1
Host: 145.239.137.4
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://145.239.137.4/plesk-site-preview/ingservices-wijzigingspaneel.info/https/145.239.137.4/login_up.php?success_redirect_url=%2F
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 02:30:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 11:05:10 GMT
ETag: "62a86b66-732d2"
Accept-Ranges: bytes
X-Robots-Tag: noindex,nofollow