virtuele-detachering.com/
302 Found 683 B URL HTTP/1.1 virtuele-detachering.com/
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Mon, 28 Nov 2022 18:33:16 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://virtuele-detachering.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8351
Expires: Mon, 28 Nov 2022 20:52:27 GMT
Date: Mon, 28 Nov 2022 18:33:16 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2176
Cache-Control: max-age=146061
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:16 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:07:37 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4050
Expires: Mon, 28 Nov 2022 19:40:46 GMT
Date: Mon, 28 Nov 2022 18:33:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 18:17:48 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 928
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4mVS3SN/SpYV8yH2lSqsWoTLaE1PkTEsQ8B6rmsVD0bbwdcZWBZHQUyiIEXVe7Acpoy1C3t0oq8=
x-amz-request-id: Q2Y27GVVTWG28KFH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 17:45:07 GMT
age: 2889
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 18:33:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c89cf2f512d568281b04f5dad1e61cde
09d325e13598f2fcf1af04284b997e010810e7c9
553959bb583582323c2b8cd3483f6b7e8d1a252e0d5a793679eb4cff9fef7e55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "553959BB583582323C2B8CD3483F6B7E8D1A252E0D5A793679EB4CFF9FEF7E55"
Last-Modified: Mon, 28 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 29 Nov 2022 00:33:16 GMT
Date: Mon, 28 Nov 2022 18:33:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 18:08:55 GMT
cache-control: public,max-age=3600
age: 1462
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6484
Cache-Control: max-age=145302
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:17 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:54:59 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XVWVtc1xNuACxEPzFcdA1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: klAs781QFgZwTjYRZeldJK2eoqM=
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4097
Cache-Control: max-age=97204
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:33:22 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 278 B IP
Hash 7c1dc727d5c901c04e0aec300f70c815
a9a862d07f04d146094f780fc92225ff0f5910de
a4685ada4d34436c30a159611726f6d45f00d3bf6dc6bededbee91c62c15b15c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Last-Modified: Mon, 28 Nov 2022 17:02:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
virtuele-detachering.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 12 kB URL HTTP/2 virtuele-detachering.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "172a9-63808f2c-1beec75aa546b47e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 144 B URL HTTP/2 virtuele-detachering.com/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "d9-63808f2c-8612cc22c3a86d6a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 144
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/grafi-employee-management/public/css/grafi-employee-management-public.css?ver=1.0.0
200 OK 1.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/grafi-employee-management/public/css/grafi-employee-management-public.css?ver=1.0.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 9a857d46651074e33593b8fcc7591416
e681a015856630803a92a1a49b027825e8c86976
26c45b0767f59e9406e5d911383078f2bf2a0860626405a7460ab3f8cf83e8f0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/grafi-employee-management/public/css/grafi-employee-management-public.css?ver=1.0.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "1a69-63808f2c-2d3ff469d226cd80;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1447
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
200 OK 1.7 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6051), with no line terminators
Hash cfe4870b943b2ade39a643e3a3d6d809
f1f4e04c908b19fa0a5a5b09de5b6b1dfc113f05
00f239a7fb673f1d8ab2db67b74e0bae64d103e520ee209c18e21b5bff3fb509
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "17a3-63808f2c-dbf64a745ef97d09;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1711
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
200 OK 2.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15672), with no line terminators
Hash 0c53a727a9801d2d872125ab96be97df
40616b12b4a9f2e4533f9adc6f965ca2b44581e0
8a69f47fdb908591cba1faa64f3807cbb3b82e12f0fe099c6bcbd31213f3bea9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "3d38-63808f2c-6518a0a9677676bc;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2418
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
200 OK 12 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65497)
Hash eae4534b9e0b15aaf7ad9f3111688549
4bde4256711207e4a95c1376f0b453cd660a63d8
b9adb98eaf24ecee30ef9b280527781e217f6e3829b8e22e5a42f7f14819cfec
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "19538-63808f2c-36a0b0f406b2c82e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12400
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/elementor/css/post-5.css?ver=1669370433
200 OK 439 B URL HTTP/2 virtuele-detachering.com/wp-content/uploads/elementor/css/post-5.css?ver=1669370433
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1757), with no line terminators
Hash f6474b1bfd1d38ac17b4cc8a11c5767b
9bbad9df809e73331912294e178b60c9dc2b7073
e767c6c305d580b37efda6a7401539ec628ef1bb8dce3291795c802a117a7d13
GET /wp-content/uploads/elementor/css/post-5.css?ver=1669370433 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 10:00:33 GMT
etag: "6dd-63809241-beeff7bde915ce56;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
200 OK 3.6 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4b4f-63808f2c-6886fe4874886100;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 7c1dc727d5c901c04e0aec300f70c815
a9a862d07f04d146094f780fc92225ff0f5910de
a4685ada4d34436c30a159611726f6d45f00d3bf6dc6bededbee91c62c15b15c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Last-Modified: Mon, 28 Nov 2022 17:02:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2
200 OK 1.6 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11971)
Hash 14a3700bacd8977a6942ee79498dd13a
4dbc0167256f74c69a1add5ade87b5ac0919ce4d
ae669ca59b6f0a77ddb70f8bfdd112566483cfa9493b427c04fa7bcfbcf2e085
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "2eee-638091f6-2a4ebde96c86d0ec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1565
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4726
Cache-Control: max-age=97833
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:43:51 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
virtuele-detachering.com/wp-content/uploads/elementor/css/post-16.css?ver=1669370435
200 OK 2.1 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/elementor/css/post-16.css?ver=1669370435
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20202)
Hash d14fee0b1377e9c98d3c8f10eed2211e
6399b2d103e2f4a240ce34042e5accfe48ec9fa6
d7636603ef15c0e1b00d90ed675f745cb7c43315222a07f6d3597dbe87220178
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-16.css?ver=1669370435 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 10:00:35 GMT
etag: "4feb-63809243-fc1e79890f81628b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2125
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5277
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Last-Modified: Mon, 28 Nov 2022 17:05:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css?ver=1.0.0
200 OK 1.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css?ver=1.0.0
IP
File type ASCII text, with very long lines (3201), with no line terminators
Hash 8e09ceb5490863a66cd2e83ca3d7e524
35e3d074516ec70c508d748f7ae01827bc0c28ba
cccbb374fd4cb6dcbac9df64456b49cb11530e7bafdac6c6c7e67ff2ed350db9
GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css?ver=1.0.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: text/css; charset=utf-8
content-length: 1541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-c81"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2770369
expires: Sat, 18 Nov 2023 18:33:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JbGArQ%2BXf2m%2BS8O3a4vCZs3IX5tINdr%2BZP4uXrajkYl1QpmGfJB8jc1scLYXxALTortNRRw4EQpqBlutuwpqnU%2FOgI1mKCnW3hgcTxjT4g9NO9nmLTyELVUJ6OhyBFu2uWBf%2F1ep"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771530f0691d0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/Chart.js/3.5.1/chart.js?ver=1.0.0
200 OK 76 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/Chart.js/3.5.1/chart.js?ver=1.0.0
IP
Hash c9a71718e8870870a9ad1a0217cc52e1
121588347ccde8f8cdaa5ef4324df84d73bd001d
ba165ee18dd6a8bbe8192e74733429ed8dcab8227a196f529658afeebf0a49d4
GET /ajax/libs/Chart.js/3.5.1/chart.js?ver=1.0.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 76499
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "611d220e-12ad3"
last-modified: Wed, 18 Aug 2021 15:06:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7298024
expires: Sat, 18 Nov 2023 18:33:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mZpLqZg6VHkrjj%2BBLOqGcGjRbH43iPITXikc8tmUxeQhEbA5K6GBIwX2ycX5jF5Jt5z6CUX5etx02X9Jp2Ozzsi84HHtFhk%2FIhEyg%2BJUcuv%2FiSOWgUXFXwpwR%2FBoDXyDyHCgRCcS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771530f069310b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/elementor/css/post-637.css?ver=1669370435
200 OK 1.1 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/elementor/css/post-637.css?ver=1669370435
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5668), with CRLF, LF line terminators
Hash 56a9396a7c816c50ca2d00a339ff5491
b8da4ebfeb40213a1bb3ab61bc297f0244165464
11c833ca15cefb186502d4443503a507ad21b83fd2d3c73b9d0de84d44d57a0e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-637.css?ver=1669370435 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 10:00:35 GMT
etag: "1924-63809243-a25fedd393fbc9cd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1102
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/elementor/css/post-106.css?ver=1669370435
200 OK 780 B URL HTTP/2 virtuele-detachering.com/wp-content/uploads/elementor/css/post-106.css?ver=1669370435
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4937), with no line terminators
Hash 0a6c0b25b45a127bb2e1d34ae0ffcfaf
07371e1a5647384558228a751d4c2dbca0b50758
36eba69595e06106b1346861ee38ad55c8f9184b3bfcc89014b7d040ac5b50c6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-106.css?ver=1669370435 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 10:00:35 GMT
etag: "1349-63809243-5904070f4340372b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 780
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/elementor/css/post-185.css?ver=1669370435
200 OK 340 B URL HTTP/2 virtuele-detachering.com/wp-content/uploads/elementor/css/post-185.css?ver=1669370435
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1138)
Hash 31f3ac8f021a33193fe2ecb91565ac56
8725b7a222c1d92d45e26851df5bce009156fbcd
2046aaf8c44c29076742e05700af061811ba15bb51f212b9fc706109456507d8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-185.css?ver=1669370435 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 10:00:35 GMT
etag: "682-63809243-452b787bc7729c8a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 340
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
200 OK 2.3 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash f139f5fb135876c521d66d06baed2103
59b3073269e950630915a119e5f8f467e157d2a6
e7b9df2efa9d776b6aba0d9d33ddf94c1b58a56a2dcbed5cab29fe1dc984f17f
GET /wp-content/themes/hello-elementor-child/style.css?ver=1.0.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "297b-63808f2c-ed2afa92dc1a4415;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2306
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 12 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "e238-63808f2c-27e8641ff912af13;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 30 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "15e54-63808f2c-ae2f9a51482be67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30324
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "2bd8-63808f2c-e6615758d1c87102;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/grafi-employee-management/public/js/grafi-employee-management-public.js?ver=1.0.0
200 OK 668 B URL HTTP/2 virtuele-detachering.com/wp-content/plugins/grafi-employee-management/public/js/grafi-employee-management-public.js?ver=1.0.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 6ca9948a43ad2d1133886ebdee4e2156
860ee5b6dd6e7463b38cdcb046540308d31e7a78
f3f2a27fbe54125d1086dc9c9668b0dce34da7b60446d1dde8af808394416bb1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/grafi-employee-management/public/js/grafi-employee-management-public.js?ver=1.0.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "5ee-63808f2c-77b8bd99379ec1e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 668
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 4.6 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "48b9-63808f2c-aabab5e6421b851;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css
200 OK 1.9 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11956)
Hash 643f1f5cfc0f0b85beb62a7248c2ed92
7cd8399526954cfac57350f9e7efc09f696de63e
f11c142a58d92a491aba41c75923c54a88e23b10cf712b2941c93788ebf69b22
GET /wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "2edf-638091f6-5074185bc1c89059;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1895
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
200 OK 3.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (29459)
Hash 40fcb454521c42bb3a2e64543a366bd8
946a055c0e03803ab422a13bdd33e73a91dde4a1
72f60902dd45a4d793597dd00e80c305f0abb72e3f6bf73fc238593dc12cf13b
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "733f-638091f6-670504366c1f4321;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3352
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js?ver=1.0.0
200 OK 1.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js?ver=1.0.0
IP
File type HTML document, ASCII text, with very long lines (4862)
Hash a08c3702f999b6cbd18c635f8e88421f
2938a9a742af0e1e7de5b58ad293c61d2838014b
3b512cbaa646370f0897e5e1e7cbab220a2382de70f24e994e88ef4f5121a39c
GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js?ver=1.0.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 1399
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-1359"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7604201
expires: Sat, 18 Nov 2023 18:33:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vBxd8uJy6UHoefdnf5v8UNkExTepqm6M%2BAR%2BxabpQtNT8SRcg2QB8EsAjpb4XM9yR5QFOPToK9gHe5tAFjfl%2BM4erD7Ze3HCiiXfaNhOjFTuJ4Cb6GPwb3SvdFAHMTpl5xm4%2BYud"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771530f0fa1f0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.datatables.net/1.11.4/js/jquery.dataTables.min.js?ver=1.0.0
200 OK 30 kB URL HTTP/2 cdn.datatables.net/1.11.4/js/jquery.dataTables.min.js?ver=1.0.0
IP
File type Unicode text, UTF-8 text, with very long lines (537)
Hash 244fd28b7c4df4fbc4552ab338232f76
c5502f18ca2414aab402748c3c3ba3bd1d3a5618
2ec200656083ca79662f68a10a0337e82c6fa6d235e6eaa9c496278f43ab8758
GET /1.11.4/js/jquery.dataTables.min.js?ver=1.0.0 HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 30352
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:46:28 GMT
etag: "12a19aa-15794-5ed32f4680208-gzip"
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 17:47:33 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 2744
accept-ranges: bytes
server: cloudflare
cf-ray: 771530f0fc9cb4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4097
Cache-Control: max-age=97204
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:33:22 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/js-cookie/3.0.1/js.cookie.min.js?ver=1.0.0
200 OK 714 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/js-cookie/3.0.1/js.cookie.min.js?ver=1.0.0
IP
File type ASCII text, with very long lines (1650)
Hash 039a724c861b0a97184e6e97f4d8933f
89573149b2e51d906cbd44dc6d39db409d26370b
bce21e6461b325d13768a4855462172cff484243a359d200dc6c0ad491c93d38
GET /ajax/libs/js-cookie/3.0.1/js.cookie.min.js?ver=1.0.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 714
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61fd34d9-2ca"
last-modified: Fri, 04 Feb 2022 14:14:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1544793
expires: Sat, 18 Nov 2023 18:33:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DbVOSX2IirvJxBvd%2FD8HbnNQCnKFDmgVb%2FlgAww7j7aG%2BAZbiPyOYO4ZvMCWIlKi1%2BXaj5cTVsktdOagy3H4dyTu6x7MA6Kk1RDH9WjDM1cxaVmsON%2FlWMqda1Lm8K71pnsWOD2W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771530f16ad00b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.datatables.net/1.11.4/css/jquery.dataTables.min.css?ver=1.0.0
200 OK 2.3 kB URL HTTP/2 cdn.datatables.net/1.11.4/css/jquery.dataTables.min.css?ver=1.0.0
IP
File type ASCII text, with very long lines (14660)
Hash a1302dc123c6bb59dbb95cc9cc5c17d8
a6bd4478917c000ae96eeaa7e1f26fb8366e3cff
4c6024c38a95dee1cc6b8f2ca2398950c86f3edfbb7a920b2ea6d9f5dfdebc08
GET /1.11.4/css/jquery.dataTables.min.css?ver=1.0.0 HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:18 GMT
content-type: text/css; charset=utf-8
content-length: 2288
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:46:28 GMT
etag: "12a151b-3945-5ed32f467ee80-gzip"
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 18:33:17 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 771530f07b2fb4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
virtuele-detachering.com/wp-content/themes/hello-elementor-child/fonts/BrandonGrotesque-Regular.woff2
200 OK 33 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/fonts/BrandonGrotesque-Regular.woff2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 33040, version 1.0\012- data
Hash c2b7fab1079fe65bd9948dc7c5810dcb
5a718a1f0353ffde04b7d27556801ac05f206203
ec2e569de2d8ff8a2759a9f9f56024d9d5c33d11cc283d6ee81ca0aef334c29d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor-child/fonts/BrandonGrotesque-Regular.woff2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: font/woff2
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "8110-63808f2c-d1087e5370db293e;;;"
accept-ranges: bytes
content-length: 33040
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
200 OK 78 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: font/woff2
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "13174-63808f2c-67270faddc0f2dad;;;"
accept-ranges: bytes
content-length: 78196
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2021/12/logo.png
200 OK 47 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2021/12/logo.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 211 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 622872f2db150fa8ead856f86d67e631
73dd29e57674c478ed664d4557c6b438fa5283c0
6c43b27dc9ca946a62a425342ad25f7380a78069cc42209329769da56a9c38d2
GET /wp-content/uploads/2021/12/logo.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "b862-63808f2c-39d888c6b13c5e91;;;"
accept-ranges: bytes
content-length: 47202
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-T7TXF8X
200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T7TXF8X
IP
File type ASCII text, with very long lines (3910)
Hash 2e58f43d0f46f3ddadf01f682f486de6
1df93162a03e2ad5a7ca99433e90f910759e0705
0b6633da0c267fd2a958fd14c9059d9c86fd4b9d998f60c383b175f34c5fd4cd
GET /gtm.js?id=GTM-T7TXF8X HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 18:33:18 GMT
expires: Mon, 28 Nov 2022 18:33:18 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64004
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leadinfo.net/ping.js
200 OK 49 kB IP
Hash 4df161bbd75d2a408d9270e37a8d656d
33dcaa02450f80ed99348de06d5a9c2b75455c12
77660fc41b8fbb736d09b1991ddd496ffdfddd11045280f6d5428a4bda925c08
GET /ping.js HTTP/1.1
Host: cdn.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 27 Sep 2022 23:56:56 GMT
last-modified: Mon, 29 Aug 2022 10:11:50 GMT
etag: W/"e9d23815b541934c4bf60ebcb7c4c581"
cache-control: private, max-age=900
x-amz-version-id: 1nxpdTzCyJ_sIAuIDK5m_GlZE_sh9FQV
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HrVatploYEg-CdzbXd-pgSL-JOFU7Cey87KFIF-nnhPwIXIpTGFqgw==
age: 5337383
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7265
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:33:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7265
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:33:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7265
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:33:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7265
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:33:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:18 GMT
age: 74820
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 29985
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 73892
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 73892
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:42:14 GMT
age: 75064
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 70UuQl2XCoplrZYENrKleE2mcvB-xP9zZGs8Tuh21NidSiHvA97sXw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 74529
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 97db653ea29dc92ed7e644c38a83725a
5d2564878db4991851c9e600c8c7ae19fb749739
434cd4ecd02892494d318de478b2adfef13cb47334b13a3d96d9c1c3e0ab0db0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100132
Date: Mon, 28 Nov 2022 18:33:18 GMT
Etag: "6383cbc8-1d7"
Expires: Tue, 29 Nov 2022 22:22:10 GMT
Last-Modified: Sun, 27 Nov 2022 20:42:48 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dPoQY6g_XqnxdihmTFwgMtOrTbASI8hOjG1rp9zuT-A_Slj5eKnhag==
Age: 5962
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6f2acd339e82227284b48e7420ee4240
55e2bf5c68f1fde36a572c519355f2c7081f4dd8
ee34d22102e0c69f3200870252e969e1670ad5cd210daa41b262d98332fd86af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140106
Date: Mon, 28 Nov 2022 18:33:18 GMT
Etag: "63846aa8-1d7"
Expires: Wed, 30 Nov 2022 09:28:24 GMT
Last-Modified: Mon, 28 Nov 2022 08:00:40 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aOY5hRU8L-ZCeZcjbYhDyP22UR4Mzpb1Js02scPSt0Z51PpDNidl7Q==
Age: 5264
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
200 OK 3.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (36838)
Hash b537f621368c48bde8e23c0beab137fa
e50ceecb1eec87a22426b2ff760d3862b2f880cb
1d840099bef17db00db5e17ad8e871a679c8d7a6d927859d44d4ef681a3960a7
GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "9011-638091f6-599de3a14fe85adb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3375
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
collector.leadinfo.net/config/LI-5CFA4EC32C23C/
200 OK 2 B URL HTTP/2 collector.leadinfo.net/config/LI-5CFA4EC32C23C/
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /config/LI-5CFA4EC32C23C/ HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://virtuele-detachering.com
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:19 GMT
content-type: application/json; charset=utf-8
content-length: 2
access-control-allow-origin: https://virtuele-detachering.com
vary: Origin
X-Firefox-Spdy: h2
api.leadinfo.com/v1/identify/LI-5CFA4EC32C23C
200 OK 2 B URL HTTP/2 api.leadinfo.com/v1/identify/LI-5CFA4EC32C23C
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /v1/identify/LI-5CFA4EC32C23C HTTP/1.1
Host: api.leadinfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://virtuele-detachering.com
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:19 GMT
content-type: application/json; charset=UTF-8
content-length: 2
server: Apache/2.4.54 (Debian)
x-powered-by: Leadinfo
access-control-allow-origin: https://virtuele-detachering.com
access-control-allow-headers: Origin
access-control-allow-methods: GET
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/10/virtuele-detachering-header-home-bg1.jpg
200 OK 33 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/10/virtuele-detachering-header-home-bg1.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x615, components 3\012- data
Hash 35864d46067d577eb6a81825aeec14e5
767c5179032bc86e5dca2971530ea93a7e14f1a1
62d0f8ff49e5be5e5df2b6b0e432a044eb7debbbba5e1ed10df1cf2f8be37afe
GET /wp-content/uploads/2022/10/virtuele-detachering-header-home-bg1.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/uploads/elementor/css/post-16.css?ver=1669370435
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:18 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "8198-63808f2c-1e647115d0d5e884;;;"
accept-ranges: bytes
content-length: 33176
date: Mon, 28 Nov 2022 18:33:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2021/12/bg-purple.jpg
200 OK 67 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2021/12/bg-purple.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Windows), datetime=2021:12:21 15:53:43], progressive, precision 8, 1600x370, components 3\012- data
Hash c87ed71a687d4c4322764c698dd973a5
f556352d51fc71dd8c86287b591b07a3f4271ce8
da81917e63e6e68f888e1df8e84e7ac66acece1a652bb40579a34b21b4c723bd
GET /wp-content/uploads/2021/12/bg-purple.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/uploads/elementor/css/post-16.css?ver=1669370435
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "104ff-63808f2c-5d0162aec3e1cb5e;;;"
accept-ranges: bytes
content-length: 66815
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2021/12/plus-bg.png
200 OK 77 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2021/12/plus-bg.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 416 x 416, 8-bit/color RGBA, non-interlaced\012- data
Hash e8621d90b87737e18997d2d69946a4fc
c97f84863af4664f07a76dcfd5b629318b4e7e97
cfc919b82fdac884d00cda77a453f3c42f082791efdbb12ac4fe3a1282fe4d61
GET /wp-content/uploads/2021/12/plus-bg.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/uploads/elementor/css/post-16.css?ver=1669370435
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "12d4d-63808f2c-69888c5880a33514;;;"
accept-ranges: bytes
content-length: 77133
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/01.png
200 OK 47 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/01.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 88 x 88, 8-bit/color RGB, non-interlaced\012- data
Hash f20961108ef121121804786273d7b3b2
6597ef2147bf3278fc8400415b5162963bf8d8fa
711d6220d1a17f65c2b5568575ebf6cdab67f689478f59e0e22f1936127eb2c4
GET /wp-content/themes/hello-elementor-child/images/01.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "b6bb-63808f2c-502bc90fc7d24687;;;"
accept-ranges: bytes
content-length: 46779
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/02.png
200 OK 48 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/02.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 88 x 88, 8-bit/color RGB, non-interlaced\012- data
Hash 78d65c4140cbfd80326783fffa744deb
507270b88d66ef25aa690753d3e6bb66cc5b56e4
6462b6d227b31b22c31c194d6994699804738117473af446fef0b8362d9e3b70
GET /wp-content/themes/hello-elementor-child/images/02.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "b975-63808f2c-dcd5349b27782251;;;"
accept-ranges: bytes
content-length: 47477
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/03.png
200 OK 48 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/03.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 98 x 98, 8-bit/color RGB, non-interlaced\012- data
Hash 11faad61e2bd9589751f27f6d6f3403b
bb4d78b1d424247ed53a878824cc68cda9bcc848
2723dbd509fbaa0be688cee21d74e97f13a44d572a2278620a5710201316cdd0
GET /wp-content/themes/hello-elementor-child/images/03.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "bb16-63808f2c-321f35770d0e8518;;;"
accept-ranges: bytes
content-length: 47894
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/04.png
200 OK 47 kB URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor-child/images/04.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 98 x 98, 8-bit/color RGB, non-interlaced\012- data
Hash 58d1ed344445905a1d24a56a7c5b4fac
359835be21c7767641f25fb992e8797ff791b28f
d2299abb14057ff37233d55449973514b8a5d66957b5dc871981b07b71f0f004
GET /wp-content/themes/hello-elementor-child/images/04.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/themes/hello-elementor-child/style.css?ver=1.0.0
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "b90a-63808f2c-5149eae95bf1c8ae;;;"
accept-ranges: bytes
content-length: 47370
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/allianz.jpg
200 OK 22 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/allianz.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=207, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=833], progressive, precision 8, 360x300, components 3\012- data
Hash 159fe5f56868a30a6e61bae4d217b213
cdeb7bbe61a69356c359bda7b97324f07691e081
2751ecf4516b832e0177c90d95bd1a42024b624657f2829d7120a0e0d705d994
GET /wp-content/uploads/2022/03/allianz.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "580e-63808f2c-56570c2e7f08d37d;;;"
accept-ranges: bytes
content-length: 22542
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/Ambrasoft.jpg
200 OK 20 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/Ambrasoft.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.2 (Windows), datetime=2022:03:10 14:21:24], progressive, precision 8, 360x300, components 3\012- data
Hash 39bdfc181c02d3cda23190cb9a042935
e85d4beb3ba3ccfec7a8d87e5fac4cbfe4b425d0
cb20eaf5681e807054459b8e23526f8ce387a2924791048ef9c8b738836f023c
GET /wp-content/uploads/2022/03/Ambrasoft.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4db6-63808f2c-7b6154c8d7521dc1;;;"
accept-ranges: bytes
content-length: 19894
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/augusoft.jpg
200 OK 16 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/augusoft.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.2 (Windows), datetime=2022:03:10 14:22:13], progressive, precision 8, 360x300, components 3\012- data
Hash 5d061f03d5f9f1771ebaf8904504601e
378704968a65dc75e151736c2fcb0a697b0cdaaa
cae08944132041c10f46561cfd4182eb6cc27af5ade9f5dce03214d87f0a45e8
GET /wp-content/uploads/2022/03/augusoft.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "3ff0-63808f2c-d63d68a9a5b3b6a6;;;"
accept-ranges: bytes
content-length: 16368
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/autowiki.jpg
200 OK 22 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/autowiki.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.2 (Windows), datetime=2022:03:10 14:20:30], progressive, precision 8, 360x300, components 3\012- data
Hash 60a394c0e128d272997d90a58527610f
08fb40cca2fa622a5aa6405484637b54fc798441
c288c1d54ea04ea5ab928fa0679fd1b179702cca2cd829fb4a8ba8bc12fd1572
GET /wp-content/uploads/2022/03/autowiki.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "559b-63808f2c-452b787bc7729c8a;;;"
accept-ranges: bytes
content-length: 21915
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/07/Eindexamensite.jpg
200 OK 23 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/07/Eindexamensite.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.4 (Windows), datetime=2022:07:13 11:50:02], baseline, precision 8, 360x300, components 3\012- data
Hash 74883b6b53200632c4712de6e3e49b21
55c902a320ede6e14db5dfb8d56e92f2af02b607
48f043ccd160ffc8ac77b216477bc886367e901c7d94d4c29a955737170dcfc6
GET /wp-content/uploads/2022/07/Eindexamensite.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "5920-63808f2c-c5449b089abc6bad;;;"
accept-ranges: bytes
content-length: 22816
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/famas-logo.jpg
200 OK 42 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/famas-logo.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=300, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 360x300, components 3\012- data
Hash 1ee4fae6ab1c52d5c7ce0bab40963a8e
d3013723c4c08c783626284ff432c901ddf903ab
4f4afba253337f81547adbd4b726a8d2ef46e79450c28f0d195d3aa866b33cb3
GET /wp-content/uploads/2022/03/famas-logo.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "a4a4-63808f2c-34567f393d5f7577;;;"
accept-ranges: bytes
content-length: 42148
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/fenna.jpg
200 OK 36 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/fenna.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=400, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=400], progressive, precision 8, 360x300, components 3\012- data
Hash 7391d8ce70e329343bf49a1893dfdd2b
a1741fdc59a19a2d2ec93722b591b3c04ab3f0ba
71c407aa8dcded430b0aa9afaac44d8d57484a8aee4ec27e9010d5962d4b1c25
GET /wp-content/uploads/2022/03/fenna.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "8c6a-63808f2c-b8dbf1fda3ec498d;;;"
accept-ranges: bytes
content-length: 35946
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/justis.jpg
200 OK 30 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/justis.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=300, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 360x300, components 3\012- data
Hash e06d4acc88469aefe8378413ce7d6f75
275eb3125d5d49bcaf1f13f39ca135c3336489c6
4676532be5b077129d8eece13b243d0c81d7080a5ebc99883e4f53a2fd7f2af8
GET /wp-content/uploads/2022/03/justis.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "74f9-63808f2c-9fa912939eaaa57c;;;"
accept-ranges: bytes
content-length: 29945
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/Noordhoff.jpg
200 OK 19 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/Noordhoff.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.2 (Windows), datetime=2022:03:10 14:25:00], progressive, precision 8, 360x300, components 3\012- data
Hash 9a1070eaeff008487c6984e803fb5a79
2645aea31c45a31067993cc37d7d60ef6ba3bb5d
ada8c5b4e040281cb99634c1ed0aad0ab9aaa94fce25c09d38f831f5240bc05d
GET /wp-content/uploads/2022/03/Noordhoff.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4a35-63808f2c-beeff7bde915ce56;;;"
accept-ranges: bytes
content-length: 18997
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/teamatwork.jpg
200 OK 26 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/teamatwork.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=358, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1356], progressive, precision 8, 360x300, components 3\012- data
Hash c4554582016cb1f81b14aabc5000ec8e
d0b864f2e1c7986c7f7368207b75ae88a2f0f1ae
e96b4064191bd5493a541d8480067d153bd3b982293f63ec23e6ff47ad4d675e
GET /wp-content/uploads/2022/03/teamatwork.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "643d-63808f2c-6fef50fa00eac822;;;"
accept-ranges: bytes
content-length: 25661
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/testgroup.jpg
200 OK 28 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/testgroup.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=300, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 360x300, components 3\012- data
Hash 3e1f52153779970718eaed04d8e48ce7
b94ef567bc00afa80f008c4328e08a2e455807ed
e46c04e0e191db7fb2a31fddd7508a7c487d1aaebd72aa4f09277c5bda03ebe5
GET /wp-content/uploads/2022/03/testgroup.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "6f09-63808f2c-d6ae5c3c6cf01b47;;;"
accept-ranges: bytes
content-length: 28425
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/03/VanIn-logo.jpg
200 OK 29 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/03/VanIn-logo.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 360x300, components 3\012- data
Hash f22553cbdab25d9050adf00949ecbf73
aaef73e20fc7f7d873e9bb6212bfd32808f91e35
7bdd14c5e826985dd42306de4df27bed1823752711c7a31a6a99cbce374b8d80
GET /wp-content/uploads/2022/03/VanIn-logo.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "70e8-63808f2c-5caf3ebb2d676115;;;"
accept-ranges: bytes
content-length: 28904
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
200 OK 28 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
Hash e043fe19f17c41a42f050ea0fec98eb0
fc12e0fe31a41ce1e577ae265988c24dfc9f28b0
60a9f744aa9c2bf7a08a1db0f5fa7386d48022bca84299aa3b3786b0f8372c6a
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 18:33:18 GMT
date: Mon, 28 Nov 2022 18:33:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/08/webedu-logo.jpg
200 OK 18 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/08/webedu-logo.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=207, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=833], progressive, precision 8, 360x300, components 3\012- data
Hash 70392f077ec0d9878e928078c628be44
21ae31592283e7e9835e0c6e1e212dc0e1db2263
87776478484ecac5b89c5b4456d15e7c501b0dd7fbe628bcbfecb7bd9108952f
GET /wp-content/uploads/2022/08/webedu-logo.jpg HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/jpeg
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "468a-63808f2c-22437eb4b83de45;;;"
accept-ranges: bytes
content-length: 18058
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
200 OK 93 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: font/woff2
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "16cbc-63808f2c-496a98159d231d3;;;"
accept-ranges: bytes
content-length: 93372
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://virtuele-detachering.com/
Origin: https://virtuele-detachering.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:19 GMT
content-length: 0
server: spray-can/1.3.3
access-control-allow-origin: https://virtuele-detachering.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2021/12/phone.png
200 OK 20 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2021/12/phone.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash f85ef3070ec2df893590d2a62b1d57a3
a17795604ecf2864f101581fbefaa84d5ee98e6b
1ef5fbf244893a1982efb4efd7193f8e7146365f9983b27e30d6ffb987ddb877
GET /wp-content/uploads/2021/12/phone.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4ce9-63808f2c-daf9a411ef02fc24;;;"
accept-ranges: bytes
content-length: 19689
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2021/12/location.png
200 OK 19 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2021/12/location.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 20 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash ed5b335a093cf6b05a8971a8fc0dcd58
53a0b0589886f414a3a045c4040457d82e87e39b
9a9c942cb6c1c4bf5ca646576edb083d968500044d00353ce9cbc5d05e0067a2
GET /wp-content/uploads/2021/12/location.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4bc3-63808f2c-b0290587bea5116a;;;"
accept-ranges: bytes
content-length: 19395
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
200 OK 906 B URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11736)
Hash dfa4e3add9f185eaf959509b12a3f2f2
e9fcec09acb8cb18203b3c9c4133ab808576df38
060ede880f21b0bfe96d2e2b5f36606cef794e7e8814d1baf877c4868eca8a43
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "2dff-63808f2c-1d96e28ba659bdfa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 906
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 collector.leadinfo.net/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: collector.leadinfo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 934
Origin: https://virtuele-detachering.com
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:33:19 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: spray-can/1.3.3
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://virtuele-detachering.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
platform.linkedin.com/in.js
200 OK 163 kB URL HTTP/2 platform.linkedin.com/in.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41594)
Size 163 kB (163353 bytes)
Hash da4721479e3eebb502449a14c05ee952
69891f90cc545992346f3eab81e9aa2ba5834261
8c582baf4cef5b98699f420de88571cc698c5df8b303782be05ee1ddebb014b8
GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Mon, 28 Nov 2022 18:58:11 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 163353
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
x-li-uuid: AAXui51hVYUic6ydZUTI0A==
date: Mon, 28 Nov 2022 18:33:19 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
200 OK 2.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "4824-63808f2c-878cc685db05e1f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
200 OK 953 B URL HTTP/2 virtuele-detachering.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3164), with no line terminators
Hash 4a7d773f90facef221a9cfa11bdb2973
5ecb3100b641b2af7f7d56533a14b23fcaf15787
0fe42ed1de09f98dd0cc32f562d016a8d9cc13fcd0a0d407a11a66714c999fca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "c5c-63808f2c-c2fe5f454aa07760;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 953
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
200 OK 6.9 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (25115)
Hash e8d8c6e4997a420abc51e5fa8c1caa8b
39ae930f057de725cff8549eed82f31f8d0816c1
730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "6272-638091f6-7c4d04b4143fa43d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.7 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "15fd-63808f2c-3e0116a15f5a460b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
200 OK 2.2 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5191)
Hash 233d96a672074852cbd7ecedbc8eee64
71e3fe1862b612de69ff626ea6bb0cfc2a879393
264f41a95c63e7d816bcdb3c49960d16300bb5f1967fd00431d985a76a6e2bcf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "1472-638091f6-b7e68627b9a2f9e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2207
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
200 OK 2.0 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4918)
Hash 918938b0ee6977d6506f2e0fa248bd66
292ba27818bec580f76945b53fee4ff6cddcb2c2
a1da723cfdb1f8ea57aa7278637d07a83f39ff410dfbba24d8205882a110444e
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "135d-63808f2c-4b4cfb1a451fa097;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
200 OK 10 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash 72fd7d7a61961996172a081cb3eed6cb
7f6d4dc14ef08153606c57d374fd50b685ba383d
757fe1355fa4c3eed3c286520c6af9d344ab9d15a78d8d54a17e7573f866b9be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "80b3-63808f2c-25a11412c7fc25dd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10425
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.4 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6475), with no line terminators
Hash 4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "194b-63808f2c-fe9793deb9cc5c8e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 6.3 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash fecbc00e8af71d8cfb678cd811c7cb2e
44e5dd77f62cb5c67271442b75cdff10d45f2f8d
d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "459f-63808f2c-9dab8506ac7b6146;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6335
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
200 OK 1.6 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4875)
Hash 06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "132e-63808f2c-13aa05ad77580249;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1575
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
200 OK 3.7 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash f7acc55c5b34188d3e66c5f2ecf3ba80
802270f7a221e406af63d622d364b119d912c15b
826c4e13764f5bf1bd0a17f2e693d943f8605df1024815f67f43694f4338b713
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "27f6-63808f2c-8b3d8879cf77dd1d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3717
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
200 OK 5.5 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (21520)
Hash 333db9207d50b2852755022a6477e604
28e889950912a8d3aed412c58d3b6d9d6cb6c6c7
c347f169dea2cf7bd52e267a23909dcec71ee4658ec6efbb603251d6085f8ac1
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "543b-638091f6-85751a20bc5e51eb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5541
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 2.9 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12198), with no line terminators
Hash 869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "2fa6-63808f2c-1f5561dd32d85c91;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
200 OK 6.8 kB URL HTTP/2 virtuele-detachering.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "53c0-63808f2c-e69a7363d398de84;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6800
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
200 OK 12 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (40474)
Hash cf45d3e8044770ba8eabf3833e30fdbe
90f787b69fa2f83b87c28f3caa67985b04b333bd
c83321c916d9ca392150cf727108c0927ce9394be70e9b08920cff666f823fb4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "9e41-63808f2c-a51685b87671dd9a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11702
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2
200 OK 5.3 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (24753)
Hash c0c4df38d6e28a22703d9d5ef0365b5a
1a2dda7e4af8ebb5b76ee3fefe43fc305f05fc8c
e4bce73ece0b616076fa3b4aeb26b8f26e9c715caf9d78d884d30da7f1006d56
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "60dc-638091f6-164618a1653a8641;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5343
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
200 OK 1.4 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3720)
Hash 28591e063f51afa032f2605cfb94e626
abdf45f59842867e3e07a79b902b59b53cdb02c7
a9801cf7c307371a05e3353dcf3da66ae32588136a92732a88d0745b8e08d100
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "e89-638091f6-813a4165d25185a3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1442
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/02/cropped-favicon-VD-192x192.png
200 OK 6.2 kB URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/02/cropped-favicon-VD-192x192.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash ec5dca0cf34875275c9c7413b0d1bbc1
849139256df47c96caf3ae1cbf14d022a7e7a1e8
1498fabe3c7ef9bb24fa9c164dd618d2dc17e2f47383ce7623f01ad19c4fce49
GET /wp-content/uploads/2022/02/cropped-favicon-VD-192x192.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "1857-63808f2c-fac23531c8ecd6bc;;;"
accept-ranges: bytes
content-length: 6231
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/uploads/2022/02/cropped-favicon-VD-32x32.png
200 OK 829 B URL HTTP/2 virtuele-detachering.com/wp-content/uploads/2022/02/cropped-favicon-VD-32x32.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ecf979821eb654fd43ecc20c96b4492
fb493f671fbd2f61f1bef21ad355732d7dfc1812
e331ca2d3360dec2a49bcacd7c06a6893a711e880b41f274382b509e94341c2d
GET /wp-content/uploads/2022/02/cropped-favicon-VD-32x32.png HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: image/png
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "33d-63808f2c-98171d05f86d2f0f;;;"
accept-ranges: bytes
content-length: 829
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 16:41:08 GMT
expires: Mon, 28 Nov 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6731
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-YM2SDJXY3W>m=2oeb90&_p=1342368659&cid=1648200835.1669660398&ul=en-us&sr=1280x1024&_s=1&sid=1669660398&sct=1&seg=0&dl=https%3A%2F%2Fvirtuele-detachering.com%2F&dt=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-YM2SDJXY3W>m=2oeb90&_p=1342368659&cid=1648200835.1669660398&ul=en-us&sr=1280x1024&_s=1&sid=1669660398&sct=1&seg=0&dl=https%3A%2F%2Fvirtuele-detachering.com%2F&dt=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YM2SDJXY3W>m=2oeb90&_p=1342368659&cid=1648200835.1669660398&ul=en-us&sr=1280x1024&_s=1&sid=1669660398&sct=1&seg=0&dl=https%3A%2F%2Fvirtuele-detachering.com%2F&dt=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://virtuele-detachering.com
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://virtuele-detachering.com
date: Mon, 28 Nov 2022 18:33:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
200 OK 3.3 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10544)
Hash 3821415a39954c48c7927e661467c6b8
dfe1116a0efc9898cb6caf094213880da83d6990
5f7f5b28f47c366a0bb70435dc3b2253278222c92429f013084f71fd7d29a32e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "29ba-63808f2c-6f6c07fab087b462;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3268
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1063516508/?random=1669660398041&cv=11&fst=1669660398041&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&auid=1550033491.1669660398&rfmt=3&fmt=4
200 OK 944 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1063516508/?random=1669660398041&cv=11&fst=1669660398041&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&auid=1550033491.1669660398&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2103), with no line terminators
Hash 59463a03520196f7bfec66a02f3a6f31
6df069739d2876e987332b16197c587e956a2caf
501526ab0a6b51774f35224b63225cc4a9602c8e74c4bc094496279e70143a56
GET /pagead/viewthroughconversion/1063516508/?random=1669660398041&cv=11&fst=1669660398041&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&auid=1550033491.1669660398&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 18:33:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 944
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 18:48:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/search-form.a396372f407d3c16a0ef.bundle.min.js
200 OK 675 B URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/search-form.a396372f407d3c16a0ef.bundle.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1869)
Hash 07224809d51c4432d049872fe7b8aa2e
2691b14abdaa3eea07dce7470afed0c4545b81eb
0cea64f57b1ea70c101a120ae7aca8002678c097add060ad8eba17e60646381e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/search-form.a396372f407d3c16a0ef.bundle.min.js HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.1.1648200835.1669660398
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "778-638091f6-a2680881dab2f000;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 675
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
200 OK 1.2 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3262)
Hash f58f68fcf74efd2df6a416b334fa5dec
ce30280e6b9049695c0037c66998aa97a1d152c8
59a7a1d8e558098686d85b4d73f71c3a1cc94f285786944146b29d8c366f171c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.2.1648200835.1669660398; _gid=GA1.2.655113037.1669660399; _gat_UA-24672824-16=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "ce9-638091f6-9c2ff665c58b849f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1173
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
virtuele-detachering.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
200 OK 599 B URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1320)
Hash b59e163b50b8e62a7e08b4ce88241b48
4f45b1e9e0270133c35c43a1a33d5b2d292b8693
73ba293d6c6c5c89f37eb310eead199d2a7268ada96c881f41ec8ca5b7f693bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.2.1648200835.1669660398; _gid=GA1.2.655113037.1669660399; _gat_UA-24672824-16=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "54f-63808f2c-54269b04d70325ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 599
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 03ad9fc0b00b5df3165dc2fb1e3b0a3e
f8243335a8bc24d989bddd346048a055e1d0bdeb
366b28d491f7fd632e31c1ce97f939555f7dcee14bb6875737ed2d3e96fa32ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 18:33:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1063516508/?random=1669660398041&cv=11&fst=1669658400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fvirtuele-detachering.com%2F&tiba=Virtuele%20Detachering%20%E2%80%93%20Developer(s)%20of%20ontwikkelteam%20nodig%3F%20Wij%20leveren%20parttime%20of%20fulltime%20software%20ontwikkelcapaciteit%20op%20afstand.&fmt=3&is_vtc=1&random=3903662170&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 18:33:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/media-carousel.aca2224ef13e6f999011.bundle.min.js
200 OK 1.9 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/media-carousel.aca2224ef13e6f999011.bundle.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6959)
Hash 593f09ed550423c53eff535205b5fb9c
9cf9b339e0095522ea2ed6051e4e55703f0ef7ba
47df70e2e82085aa1a2cf51cb2ccec8bfe21803424ce0b55b0e83c5a88c06bec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/media-carousel.aca2224ef13e6f999011.bundle.min.js HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.2.1648200835.1669660398; _gid=GA1.2.655113037.1669660399; _gat_UA-24672824-16=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "1b5a-638091f6-6ec66d70b11b28a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1939
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
200 OK 1.6 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4970)
Hash 8ca045da57a6dd5b1617b7bc1be83e0e
399024388544de1d07ef2845e72e773bec82f20e
c27a39ca2d92e73f992711737a84e831f2d45d7e58e3866c07dfe2f731d29c07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.2.1648200835.1669660398; _gid=GA1.2.655113037.1669660399; _gat_UA-24672824-16=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:59:18 GMT
etag: "1395-638091f6-f476d185a6c79a3f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1596
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 34 kB URL HTTP/2 virtuele-detachering.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65280)
Hash 83a90323ac82b98062b4b2c8ac8c5051
d7d376677e3546b756b4fec6219be72b85c4f8f5
7fd68e9ea0ebd35958da46d7373113d1a3646a671217cf2cf471c65c3d710613
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Cookie: _gcl_au=1.1.1550033491.1669660398; _ga_YM2SDJXY3W=GS1.1.1669660398.1.0.1669660398.0.0.0; _ga=GA1.2.1648200835.1669660398; _gid=GA1.2.655113037.1669660399; _gat_UA-24672824-16=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 05 Dec 2022 18:33:19 GMT
content-type: application/x-javascript
last-modified: Fri, 25 Nov 2022 09:47:24 GMT
etag: "21f91-63808f2c-f11de81ed52ead25;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34004
date: Mon, 28 Nov 2022 18:33:19 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:33:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24672824-16&cid=1648200835.1669660398&jid=435306128&gjid=705911160&_gid=655113037.1669660399&_u=YADAAEAAAAAAACAAI~&z=1474740893
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24672824-16&cid=1648200835.1669660398&jid=435306128&gjid=705911160&_gid=655113037.1669660399&_u=YADAAEAAAAAAACAAI~&z=1474740893
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-24672824-16&cid=1648200835.1669660398&jid=435306128&gjid=705911160&_gid=655113037.1669660399&_u=YADAAEAAAAAAACAAI~&z=1474740893 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://virtuele-detachering.com
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://virtuele-detachering.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 18:33:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.linkedin.com/pages-extensions/FollowCompany.js?version=0.1.170
200 OK 487 B URL HTTP/2 www.linkedin.com/pages-extensions/FollowCompany.js?version=0.1.170
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d430148646cb1fbdabe1cf96a82d511a
4a251ee36edfbeb31afb6da0045a09a5f805259e
dc5ef387d1cf064568c49888820321835f68d42669addf5a6b1205489c179ecf
GET /pages-extensions/FollowCompany.js?version=0.1.170 HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 487
content-type: application/javascript; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Fri, 01 Feb 1980 00:00:00 GMT
accept-ranges: bytes
etag: "683eadaa70398ffc6f601b8782a6ba156a6d3cba"
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&81cb28e8-a497-4031-83f0-c7ebd8695c45"; Domain=.linkedin.com; Expires=Tue, 28-Nov-2023 18:33:19 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221128183319d017b09e-a00e-428c-88ce-87b831965ff7AQHoKgobPysmSEa4Pk3KA0a7D3R7VZAw"; Domain=.www.linkedin.com; Expires=Tue, 28-Nov-2023 18:33:19 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njk2NjAzOTk7MjswMjEzszxbGg2DdTaCSqjHqOqHsT3d/ILEHXxZzzVy4T5BFQ==; Domain=.linkedin.com; Expires=Sat, 27 May 2023 18:33:19 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2378:u=1:x=1:i=1669660399:t=1669746799:v=2:sig=AQFu16feA0JHpg3959vS1Sd4VTb93tWp"; Expires=Tue, 29 Nov 2022 18:33:19 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; child-src blob: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; report-uri /security/csp?e=p&f=nf
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXujBsHCNvjaahAGujGgQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F5A8C553A1B54508921FBA1F358A14D5 Ref B: OSL30EDGE0413 Ref C: 2022-11-28T18:33:19Z
date: Mon, 28 Nov 2022 18:33:19 GMT
X-Firefox-Spdy: h2
www.linkedin.com/pages-extensions/FollowCompany?id=72734944&counter=bottom&xdOrigin=https%3A%2F%2Fvirtuele-detachering.com&xdChannel=5e304682-5c3d-49ad-958b-946c1635d78f&xd_origin_host=https%3A%2F%2Fvirtuele-detachering.com
200 OK 811 B URL HTTP/2 www.linkedin.com/pages-extensions/FollowCompany?id=72734944&counter=bottom&xdOrigin=https%3A%2F%2Fvirtuele-detachering.com&xdChannel=5e304682-5c3d-49ad-958b-946c1635d78f&xd_origin_host=https%3A%2F%2Fvirtuele-detachering.com
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (381)
Hash 8010ae3781def3563e85d44fe8ed7b3d
50e013ae68eaba248d4c83e81aa06f330b4e02db
4ebf15ddf6cee4861a8deab9c670cd9d8907d2a5a60708ba3fc1df9a7679f56f
GET /pages-extensions/FollowCompany?id=72734944&counter=bottom&xdOrigin=https%3A%2F%2Fvirtuele-detachering.com&xdChannel=5e304682-5c3d-49ad-958b-946c1635d78f&xd_origin_host=https%3A%2F%2Fvirtuele-detachering.com HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuele-detachering.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 811
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
set-cookie: JSESSIONID=ajax:1807639542131408984; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&4bb4f024-d516-43ad-8210-b802b92748d8"; Domain=.linkedin.com; Expires=Tue, 28-Nov-2023 18:33:20 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221128183320fff4cda7-c7b5-48c6-8f96-043d465bfe9eAQFX22lTwnz1qDeD6UF_8h4uppJD7PRa"; Domain=.www.linkedin.com; Expires=Tue, 28-Nov-2023 18:33:20 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2Njk2NjA0MDA7MjswMjHcwxxXLQ9OG5jqKn/4NrtiIpqnD4r5fXQvmorA+V1cIA==; Domain=.linkedin.com; Expires=Sat, 27 May 2023 18:33:20 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2378:u=1:x=1:i=1669660400:t=1669746800:v=2:sig=AQFmvD89od-TCfZNzDdbMMots1IgmITo"; Expires=Tue, 29 Nov 2022 18:33:20 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; child-src blob: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; report-uri /security/csp?e=p&f=nf
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXujBsKhdGAIhFeTVy2+Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F7F205B4B917413A88CB088A2E93D1DB Ref B: OSL30EDGE0413 Ref C: 2022-11-28T18:33:19Z
date: Mon, 28 Nov 2022 18:33:19 GMT
X-Firefox-Spdy: h2
platform.linkedin.com/xdoor/scripts/in.js
200 OK 163 kB URL HTTP/2 platform.linkedin.com/xdoor/scripts/in.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41594)
Size 163 kB (163354 bytes)
Hash 6834173933515a586d22f313480d05ab
3a8a0173818d0287fde821eab2eb4c1a3e6304e9
695b032465f7718d0dd71caaff778a5f8d3aa4cb00ae37d2c739b73f60556b47
GET /xdoor/scripts/in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Play
expires: Mon, 28 Nov 2022 19:06:04 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 163354
x-li-fabric: prod-lor1
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
x-li-uuid: AAXui7mHnsJCQ/UQdwrung==
date: Mon, 28 Nov 2022 18:33:20 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
virtuele-detachering.com/
200 OK 0 B URL HTTP/2 virtuele-detachering.com/
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: virtuele-detachering.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.28
content-type: text/html; charset=UTF-8
link: <https://virtuele-detachering.com/wp-json/>; rel="https://api.w.org/", <https://virtuele-detachering.com/wp-json/wp/v2/pages/16>; rel="alternate"; type="application/json", <https://virtuele-detachering.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 18:33:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
34.91.108.71
23.36.77.32
93.184.220.29
34.102.187.140
54.220.223.198
104.17.24.14