jorritboerma.nl/
149.210.189.25301 Moved Permanently 162 B IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 04 Nov 2022 08:11:29 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jorritboerma.nl/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8093
Expires: Fri, 04 Nov 2022 10:26:23 GMT
Date: Fri, 04 Nov 2022 08:11:30 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5986
Cache-Control: max-age=97164
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:30 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 11:10:54 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5986
Cache-Control: max-age=97164
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:30 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 11:10:54 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 078950c3ba9ad01927f3da494b1d1de4
443c8a8247e4e3e04c14d21e0227fc4e8f396142
dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2852
Expires: Fri, 04 Nov 2022 08:59:02 GMT
Date: Fri, 04 Nov 2022 08:11:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DhUk7Lk+zgdF/Nus+vprU4K/Gwi9DU6ua0XIff4/fPG3xaSyEFxh0KeN8q+iDIcwc4fdTnCxbaA=
x-amz-request-id: 09CMZE2GXEV6W5XN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 08:09:31 GMT
age: 119
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a4f8ba165a4772c876c65ddffd0e6916
7d080f8efe46524bcbd6019c65ab2a06348c1ab8
24ce7ca8bfee2dac7ba621164ffad095addaa79ac95a2d209c39df168f5bcf34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24CE7CA8BFEE2DAC7BA621164FFAD095ADDAA79AC95A2D209C39DF168F5BCF34"
Last-Modified: Thu, 03 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Fri, 04 Nov 2022 14:10:35 GMT
Date: Fri, 04 Nov 2022 08:11:30 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6073
Cache-Control: max-age=92191
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:30 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 09:48:01 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.219.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.219.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /sjCJ5dzKjK/nnXs0tNaEQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y0DbuHEBsZUSNSOsTksdslPYL5g=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11871
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 08:11:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11871
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 08:11:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11871
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 08:11:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11871
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 08:11:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11871
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 08:11:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c472942cb4b85610a3e83edf7527f923
8191eb019b21bed2b9f53c755e1c24d08dc70760
0dc7f9902567b0130c1c34b6e356b8239f8e6c83e1d38ac9b74588270000279c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10810
x-amzn-requestid: 85c9096f-2671-4f0e-94a3-607254d036d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC057E5yIAMFcXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364350c-3c93b6e56e6141a63d1285eb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:39:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Rr6GO1Bb6pdxYxNFuwmG2Srs9uGM7tOTffgnyWys0zDjGCDrONRxUA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
etag: "8191eb019b21bed2b9f53c755e1c24d08dc70760"
content-type: image/jpeg
age: 37112
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:00 GMT
age: 37112
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e2c2868516a60c335361ccef89c6090
b71b29860aca017ac124fb4037cec5dc3101474e
3ac5d5410a9d31317c2f31fe3e08cdb188e26bfffce5275b85cce986f2841d22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3559
x-amzn-requestid: 63f00dbe-834f-4fbb-91c0-5e5378dc48aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0SvEOaIAMFRBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643411-43380b3457de631756afdb81;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aJvfSrMGHDPyvjiAKHpqxfv7u4JNottpvAEcRBvmZ51qmQb9ucUEdA==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:09 GMT
age: 37103
etag: "b71b29860aca017ac124fb4037cec5dc3101474e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e9d2fd6fad0411accce30c67be288f6
99e30a61aca3e5b861ec3f2f56ec242d06c84e03
36e0a989f24023e8df7e65f48d02b8ff44f5976c72e3add2a035f69a30a027ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10102
x-amzn-requestid: 88180740-5e32-4c86-ac47-5385bf32ae6c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RqG1joAMFtkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-24dec56b1fff968d717cb075;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ekzGt2vPATtPpGvnlZOnwSAA1CzaAexQVHYWkaDWR2xDkKyt3dFUJA==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:21:08 GMT
age: 35424
etag: "99e30a61aca3e5b861ec3f2f56ec242d06c84e03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 18:32:15 GMT
age: 49157
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 214b020ed417fbc4785b92f2bdb98834
57eed480ede736a0a948e9bd7c604427a8acf8a2
4228512d040b122d6e5d50418c507edeedbef4aee2fbb0a952da270734ece18f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 2d0c493a-5c15-415e-a9d3-516c03b11dd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WwGueIAMF--w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342b-4d68f618620e18050704340e;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fSwsKH1erxART-SQu0L7QcUoKiGiSkFNu-no6OvsVFJMHu4yOUdAGg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:10:40 GMT
age: 36052
etag: "57eed480ede736a0a948e9bd7c604427a8acf8a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jorritboerma.nl/
149.210.189.25200 OK 22 kB IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash c3d4cbcc16eaf676c93f3d9d8472c3c8
d37f297a28024933749d7c6ee53065fed0afd2f5
3aa3e42a1ecb161deaa89ed7f3eea50e6e66bb66cb2deb0bc5cc9abc1d24b0a2
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/html; charset=UTF-8
content-length: 22350
link: <https://jorritboerma.nl/wp-json/>; rel="https://api.w.org/", <https://jorritboerma.nl/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://jorritboerma.nl/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0
expires: Fri, 04 Nov 2022 08:11:30 GMT
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.25.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5283696
expires: Wed, 25 Oct 2023 08:11:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=93gc41vXTwODZwHDlnfuMBs2msteu39MGvDGlj7itgMNkbgw2k9av8cLCxwRNIndFPyGLRRaCupASD1PkAz34FNF7c8zO8XGSrY97mR9gPkHvstDiqncV%2FhWCjqhuXo%2FJ23peqkD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 764be12cc9bfb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4fdb0f884e2d376e753995ab31d6aa08
8230670e7d72c676bf84ff64ca414573db984eda
1f90423e8de9f82bd5a7079cb66c7a0c84836ab08d08de2465aba0854bd8ee6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4fdb0f884e2d376e753995ab31d6aa08
8230670e7d72c676bf84ff64ca414573db984eda
1f90423e8de9f82bd5a7079cb66c7a0c84836ab08d08de2465aba0854bd8ee6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
149.210.189.25200 OK 384 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:59:50], baseline, precision 8, 1920x1280, components 3\012- data
Size 384 kB (383593 bytes)
Hash 8248ddba1ffebd9e195f3e4269960c12
e21614c59a93dbe27fd73fdeeaa1e5e264b84a39
cc0084fd5458c311ef66e41f61f37694d90806756977d08a27f9dfa30426e040
GET /wp-content/uploads/2018/10/img_0594.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 383593
last-modified: Tue, 21 Jul 2020 14:25:53 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16faf1-5da69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
149.210.189.25200 OK 1.0 MB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-H1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.2 (Windows), datetime=2019:04:22 21:45:39], baseline, precision 8, 1920x1280, components 3\012- data
Size 1.0 MB (1012226 bytes)
Hash 2607a9738627fd1da5f32586385779be
aefbf45aa4a4d61909d547559e97d7114619b02f
8d0a27f0402a9433985f9d9bd82bc92943a41c6477a0fd0cce9581cf298795a9
GET /wp-content/uploads/2019/04/dscf0048.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 1012226
last-modified: Tue, 21 Jul 2020 14:27:14 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fb42-f7202"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
149.210.189.25200 OK 16 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
IP 149.210.189.25:0
File type PNG image data, 900 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash 085c8a9031293008fece6aba92c24dfc
f06a0d5ee5e6fad2eca25a02e624b05c956b564f
1f099b4c6f6fc77501882e2862cacf59acce0c2771bb3ed23168dfdafabcf40e
GET /wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 16492
last-modified: Tue, 21 Jul 2020 14:28:11 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fb7b-406c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
149.210.189.25200 OK 456 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
IP 149.210.189.25:0
File type PNG image data, 536 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash c1beead3ca1b05786fab0172a623a86b
d89e7c8c2af49c2fd4c1d62fe36383de01db6d48
5653c14169450d258081d4f7f6c3229e622bbf4e05f0ed02d9975648adb36c00
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 456
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "1c8-5c3f3092632fb"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
149.210.189.25200 OK 459 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:57:58], baseline, precision 8, 1920x1280, components 3\012- data
Size 459 kB (459278 bytes)
Hash 244f28bc316969441cf5751cc92ea6ee
8d6efa669715410c9a1bcd433ffa447953916cb7
114723d9d5a7e706671fb34d625fa44382117f5444e98729f04bcb44e9f50e51
GET /wp-content/uploads/2018/10/img_3096-bewerkt.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 459278
last-modified: Tue, 21 Jul 2020 14:26:04 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fafc-7020e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
149.210.189.25200 OK 432 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:50:10], baseline, precision 8, 1920x1280, components 3\012- data
Size 432 kB (431838 bytes)
Hash 60ad7bee4080da8b873d5f0211569e9a
94812c8ec01bc11f289da58fb6ec2e8f38b1c63e
4627b76cd4d6953c4ef3efb8e8d546c6445cd2411853595ad059f2125938edfc
GET /wp-content/uploads/2018/10/img_8820.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 431838
last-modified: Tue, 21 Jul 2020 14:26:19 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fb0b-696de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
149.210.189.25200 OK 1.2 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
IP 149.210.189.25:0
File type PNG image data, 816 x 350, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ad83359d5f2ca212e1314c36e6f62f0
e5192d919dc89352f8a530c47ab98e2b1c4b2979
5c45d25a995af8f4ab1083399454a38ab7872a7451ded73811850d770aaeaa73
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 1208
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "60ba5239-4b8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
149.210.189.25200 OK 276 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
IP 149.210.189.25:0
File type PNG image data, 264 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a136b62005b12e56ed5deb85b7f454f
53fed8a4edb506ff8934a9087cace97e091eb6b5
c21f355ff7206fe7a7ece0a0a9f8d3a11fa6a20844b6f24ee55f3fd46cb7d0bc
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 276
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "114-5c3f309282317"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
149.210.189.25200 OK 293 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
IP 149.210.189.25:0
Hash e19bfceb54a7503b54936dd7af4681ed
b7093d46a40d4b55073a40f93e0b4012ae8976cd
b0eea7eac87327cdd7c4303539c68f0ed73aa339fc1a27d5633c3c496cf55d8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jorrit-boerma/style.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
content-length: 293
x-accel-version: 0.01
last-modified: Tue, 13 Mar 2018 08:22:16 GMT
etag: "19c-56746f4ccfe00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
149.210.189.25200 OK 5.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 36f6303528395fc84209fda3e08c3d52
f4639aaa1486369c072eff6ac09b9423d31017bc
6df4dcc92c0b7ce9f98981c0fa2715c2d9a6566671b2e8de820855b0ac6610b5
GET /wp-content/uploads/2018/10/asset_29-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 5893
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fae1-1705"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
149.210.189.25200 OK 2.8 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c9129503a96684399982e945a883a78
806c89766700b6827fa20af5da7c5c77a3611f65
cbaca883a047ea23874b657578c3732aea62ac35bea1a6f199b7c01fbbfdc430
GET /wp-content/uploads/2018/10/42-email-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 2764
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fadf-acc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
149.210.189.25200 OK 4.4 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash b1609967c4a9c2e8c25d444b31dd8a3c
61741bccf8a2422a32563f6ecace97bcffd356c5
18d99746ced664e2a4a07d414fd9485e27ba16a51beb26858e9b80d1bd41cad0
GET /wp-content/uploads/2018/10/asset_26-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 4424
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fae1-1148"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
149.210.189.25200 OK 4.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 90f75159ffdc7f3f5eab53cf7aaebb14
5ad2d39ced40869a1c555c844b0f9f089e5ff02e
b1be4f68d3c521c4d4b5fe684e7dc624b18b303471f936fea9cbb22578e2d155
GET /wp-content/uploads/2018/10/36-smartphone-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 4889
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fadf-1319"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
149.210.189.25200 OK 5.0 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 73ff684cbe174d564d2d70e58a05dc66
3f1a362c547760db9f7d286e4ca8f2eccb8fd307
1bea29393ba51bc7d2a287a7ecd77c35f80ec4c707644efa5a8061ab868a93e9
GET /wp-content/uploads/2018/10/53-location-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 4952
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fadf-1358"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
149.210.189.25200 OK 189 B URL HTTP/2 jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
IP 149.210.189.25:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
etag: "d9-5ec7344d4e5f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
149.210.189.25200 OK 6.1 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e6a8994b20a49c9abb08142ae194372
cffae4bd4c5489bc993c1cbd4142f0ea93265744
b7354628017d1827aaf049311f7220692217b9217cf8f325f80561ce057d4dba
GET /wp-content/uploads/2018/10/asset_23-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/png
content-length: 6100
last-modified: Tue, 21 Jul 2020 14:25:36 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16fae0-17d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
149.210.189.25200 OK 1.4 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
IP 149.210.189.25:0
File type ASCII text, with very long lines (5334), with no line terminators
Hash a9a79c5ea11f644f69160074ba4e79ed
e6b2ac3cd245bc9236078fe519baaba192095242
de52b896084915362d6f61e4e3b585c46f9f536c9a0efc8a3ac989ccae06d95e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"63614435-14d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
IP 142.250.74.10:0
Hash a786dc309ef5df948ccfe49f0af60005
9807e731d6814f3f6545327d7b02ec459390e016
1fc30ddf478c58fed4abb348aad878ac1a06aa4d7a47a78fadb3cc096a3ac85a
GET /css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 08:11:33 GMT
date: Fri, 04 Nov 2022 08:11:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
149.210.189.25200 OK 748 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 748 kB (747870 bytes)
Hash 200dd5427857b4f6ca63ff6b23f9a0be
fd7b29350d112617628e0505da4701dbe4356b71
3c7ba7677dca68172e9fe651f5324af6d2f2d6e7f19e7f72a7832c0b9cf7a220
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/10/img_0588-1.jpg?id=408 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 747870
last-modified: Tue, 21 Jul 2020 14:25:51 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f16faef-b695e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
149.210.189.25200 OK 728 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-H1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.3.1 (Windows), datetime=2019:07:22 14:45:56], baseline, precision 8, 1920x1280, components 3\012- data
Size 728 kB (728010 bytes)
Hash b70578246e2d33b89298f69a2f745f71
e5374c1be8a58b628ea1e8624db3a5acabec0c22
074f0b882ffdb65267a64d411ae41fd7c42795bfe900b6ecbb0b3760653b9be9
GET /wp-content/uploads/2019/07/dscf7331-2.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:34 GMT
content-type: image/jpeg
content-length: 728010
last-modified: Tue, 21 Jul 2020 14:28:09 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:34 GMT
etag: "5f16fb79-b1bca"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg
149.210.189.25200 OK 1.1 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 0821418891f5fde7c05c1c3efa7ccd26
d40201d19ec539b681e0f1577f5c1bb2a6d7684e
d827f4f15b5a11a24efcdce04cfc75d0b0ccc0baed8515177a8d3fe9ea08cc6f
GET /wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:34 GMT
content-type: image/jpeg
content-length: 1113
last-modified: Tue, 21 Jul 2020 14:28:07 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:34 GMT
etag: "5f16fb77-459"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg
149.210.189.25200 OK 5.3 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 698580b6c82023da1afbd1dbf0d49485
9499ad512fed9cfee6846943a7867b173fed2f84
3fd8dfde179704901166023685d5ef09ff9c5ce06939c4d685ab6e8c537461f6
GET /wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:34 GMT
content-type: image/jpeg
content-length: 5328
last-modified: Tue, 21 Jul 2020 14:28:07 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:34 GMT
etag: "5f16fb77-14d0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 72 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
Hash 8a93903649e81a7b6e40676563750231
777940407781514ed5d39d27593ff4f7c2c19c8e
ebfc4116d650620277940042e23c7afb2bc7bcb5ac52276e73bcee24b1887247
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 95323
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 18:59:14 GMT
expires: Tue, 31 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 306740
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Oct 2022 12:31:58 GMT
expires: Sun, 29 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 502776
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:46:16 GMT
expires: Fri, 03 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 37518
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f62b37b31acd5a1918c3a4453a7b39c5
95ca904e055cb2646e0194e429cf6374213cabe6
94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
149.210.189.25200 OK 97 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
IP 149.210.189.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 909434cd49e6d4507c7b0739d15313e4
eee50825514659f91248b252d3081a1bfe13c52e
0d8702a48780549bd834c7ed599ccaac0872f6a5de9023a5eb2dbcdcdbcb1bcd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 16:16:55 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"60ba51f7-64a9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
149.210.189.25200 OK 94 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
IP 149.210.189.25:0
File type ASCII text, with very long lines (65358)
Hash 5498734fd0b35532a820c35a6f40d259
d21976a1d32dfbc3c84f9e61be563d343315ce9d
16bb961e1b3683b1a44c1a66ff101e277c4fb2c5333edb82cfa60bcd458267cc
GET /wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"608a92e4-76828"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
149.210.189.25200 OK 41 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
IP 149.210.189.25:0
File type ASCII text, with very long lines (38932), with no line terminators
Hash 751bc8f078ad06bfb4ca5daa308b0746
041dc8fbc30c67407e9b14425eb5267e2efba2ec
428f465e26d418aeba4262625973e8828797cb8462c61316998513538af22e62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Wed, 16 Sep 2020 16:59:26 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"5f62446e-9814"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
149.210.189.25200 OK 134 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
IP 149.210.189.25:0
Size 134 kB (133596 bytes)
Hash 036b4cb3a84620a7139dcae537cc1229
d840c2054c8cdb5ab8cfd203887c87d9a3ddd83d
069e504d97eaac4221a131d440d7ebf53238308d0bd208d51c8a1c94b3deb26b
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-73f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
149.210.189.25200 OK 180 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
IP 149.210.189.25:0
Size 180 kB (180286 bytes)
Hash 938a131800241dd4d7828d4b3e060921
f941c2f3077f8d466184318ca4dbaaa14add911e
77626a1d5b4c46671571ce78d3649596ac2a354488513785c449920a3699261d
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-11cf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg
149.210.189.25200 OK 268 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 816x350, components 3\012- data
Size 268 kB (268250 bytes)
Hash 814bcf63ee87a45f991c4171701e208b
7bff83524c9648ca7be3470a7b2fe0025c02b611
e93a8b537d174ba078dc5cb1b7a39013113e1111ffa0949c9cdc0054f882a712
GET /wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:34 GMT
content-type: image/jpeg
content-length: 268250
last-modified: Thu, 23 Jul 2020 14:59:48 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:34 GMT
etag: "5f19a5e4-417da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2cda334cbe835b7867000db3e99f2d92
9bc9a2437f984f8c92c0c3088abaec7850af3cac
7906fa2c3a8b73604aa846b04437c5b4c817932266bae78dfe06a702d86e338b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a644ddcaf2f9fe6164915e985675d450
4725d446ea8dcd7d79d35e01f2a8a1406cc6aca3
d2806d80997c9999e65cc65b10d0efac04e0160edfe4e84376a5de166c0afe8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 07:59:05 GMT
expires: Fri, 04 Nov 2022 08:14:05 GMT
cache-control: public, max-age=900
age: 750
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 04 Nov 2022 08:11:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 04 Nov 2022 08:11:35 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ebead59aeb86dc76353a824a4bf2e3f5
9cca010727121145643927a3c5d001bfade975e3
b7f08036a23f83c87dcc219e6953c1ab6ef6749c5d0faf90cdf8892431bf5d6f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 04 Nov 2022 08:11:35 GMT
server: ESF
cache-control: private
content-length: 31036
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 2cda334cbe835b7867000db3e99f2d92
9bc9a2437f984f8c92c0c3088abaec7850af3cac
7906fa2c3a8b73604aa846b04437c5b4c817932266bae78dfe06a702d86e338b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4e07861c1447376729f17ea09b72ca90
dd3f1d68fd87b4ba20c03e2f31ddc6a294b38cd3
d8953ad7676624da5b08bc21e4e68a647a636709f5fc9c4b0a4e8914f37adfc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a644ddcaf2f9fe6164915e985675d450
4725d446ea8dcd7d79d35e01f2a8a1406cc6aca3
d2806d80997c9999e65cc65b10d0efac04e0160edfe4e84376a5de166c0afe8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36070)
Hash 7d6dc2989ad5a0a0590a37f1e0d2fb53
d8a8adcb74248ab834fa21e83d4935dd9a1ff4aa
92dfcdcf42525cfbe070b98ead507fa1cb2db11b4e5d390b64f04fc661c6515c
GET /js/th/gMsH84TQuiDEVfr1BCtG5xcdN73b4dVBHpnGqNHnahs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 30 Oct 2022 00:44:53 GMT
expires: Mon, 30 Oct 2023 00:44:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 20 Oct 2022 10:30:00 GMT
content-type: text/javascript
age: 458802
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f2268fea5e553a57c6ca950d6338230a
79d0730c5185d60bfad5b50edbbcb99f0a50193f
9d0980b6cac6c6803cc29402088030a5e1253005cdb4c559319f9d975e5ae8a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 667755b7a91dcaf6e0742e6dadbca816
19c3ab166e7a4c47eb95c928e852e7bef6fac5d0
accb77411cf4ebd4338954ccbe530aa549200a9fc2fa454c647e0906108b3718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
142.250.74.182200 OK 9.4 kB URL HTTP/2 i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8c7360f053849a8b38e53c66aa46cd07
55e87ea4be36ac28158d7dfb0185b10ac81fb000
7d1d925ea2342ad75edeab75e3062e2abd088c5d60e699c7a4307904ee18ee41
GET /vi_webp/AFyPFXAc7Gs/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9404
date: Fri, 04 Nov 2022 08:11:35 GMT
expires: Fri, 04 Nov 2022 10:11:35 GMT
cache-control: public, max-age=7200
etag: "1563361880"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4bbd10ed33ca85624711be78583e0264
7a596c50ff675c4eb052081339d43c41a0066776
eba6f332bef344900a16313750243968b9fb880ff95ebbab8e230b3f61691a5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f2268fea5e553a57c6ca950d6338230a
79d0730c5185d60bfad5b50edbbcb99f0a50193f
9d0980b6cac6c6803cc29402088030a5e1253005cdb4c559319f9d975e5ae8a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 04 Nov 2022 08:11:35 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 54b606b16f9125a021f1fc61e18f6f5b
b588d93527096807b5ea57c119aa81539193ce49
d4db92fd4bd2915c87ac7ea99c6fcc0663ccd43b2ecfb0be88728589ca71f4ca
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1324
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 04 Nov 2022 08:11:35 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.8 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash f52b183aa213fb8ee6a05aae9fdcf67e
838b42a6466919e957c5ae759fd99156165d07d6
bec6e6e966f58cd6a46f24f99801b6a60078e7a85a89e1c9ed5cc01c4fbda271
GET /ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vdab1"
expires: Sat, 05 Nov 2022 08:11:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 04 Nov 2022 08:11:35 GMT
server: fife
content-length: 3841
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4bbd10ed33ca85624711be78583e0264
7a596c50ff675c4eb052081339d43c41a0066776
eba6f332bef344900a16313750243968b9fb880ff95ebbab8e230b3f61691a5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 6a9a3d87fe2e22a43aecff1d85e8675a
0af8fa078fe8c1a12c0759421abf47e8abfcf806
1625649f281f170b01a1e745c4efc6d359acf06338214bee619f823212c14275
GET /wp-content/uploads/2019/12/6.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 69970
last-modified: Tue, 21 Jul 2020 14:28:19 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:36 GMT
etag: "5f16fb83-11152"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
149.210.189.25200 OK 110 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Size 110 kB (110494 bytes)
Hash 662e841bcc02a1bf35336472fe87aaee
8ba8d78947b302f91070299caf208e51d83da470
6cc4bee4be423343ee89d929345348ab669462b18e5431d9d2bdb1f50bc06ecb
GET /wp-content/uploads/2019/12/5.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 110494
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:36 GMT
etag: "5f16fb82-1af9e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 8ce965feb7bc0bcf383316d178461ec1
0fcdfc61b19b1f576fb2cb61e44760fb03c882f4
25192d69892121dfce124ae416244b5c59726de9f3b15a8e80e9a670f1a54407
GET /wp-content/uploads/2019/12/4.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 70003
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:36 GMT
etag: "5f16fb82-11173"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a8309cf1f2a98160da1681aa7ca542a1
7648685a295ddd09071dc7195ddb8071f794d38d
5ddce03f60443255767f2e09a3fd64d76c9328a0d8a5829ee798b319b68ba8b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a8309cf1f2a98160da1681aa7ca542a1
7648685a295ddd09071dc7195ddb8071f794d38d
5ddce03f60443255767f2e09a3fd64d76c9328a0d8a5829ee798b319b68ba8b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a8309cf1f2a98160da1681aa7ca542a1
7648685a295ddd09071dc7195ddb8071f794d38d
5ddce03f60443255767f2e09a3fd64d76c9328a0d8a5829ee798b319b68ba8b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=audio%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPpF8_9QTT2RSqpilU1WCgt6vhc2K5FOzKOva9SZ2b0IAiEAmkyYTuI5-F8xEXV7VOVYRbkrpRQ_UlNXMm4wiYXNDMo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
91.90.45.172200 OK 66 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=audio%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPpF8_9QTT2RSqpilU1WCgt6vhc2K5FOzKOva9SZ2b0IAiEAmkyYTuI5-F8xEXV7VOVYRbkrpRQ_UlNXMm4wiYXNDMo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Hash af527c5cc711865daedf643c2817c563
8cd61390d8347209ef75502677c12cb6cbfd6957
810609b9415daf07b4b26b06e7ea59f2636dd444eff36e9aa4b037a69c588fcc
POST /videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=audio%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAPpF8_9QTT2RSqpilU1WCgt6vhc2K5FOzKOva9SZ2b0IAiEAmkyYTuI5-F8xEXV7VOVYRbkrpRQ_UlNXMm4wiYXNDMo%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:22:29 GMT
Content-Type: audio/webm
Date: Fri, 04 Nov 2022 08:11:36 GMT
Expires: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65917
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAIYwMxdfpX_I6Oq9Rb7QcEXfZA_GTaQSgFf74oAFT6WzAiEAtIGmCLGdsaAgJXjX63rX0-ZuTGHCl5vmmqY4UlAaNms%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
91.90.45.172200 OK 120 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAIYwMxdfpX_I6Oq9Rb7QcEXfZA_GTaQSgFf74oAFT6WzAiEAtIGmCLGdsaAgJXjX63rX0-ZuTGHCl5vmmqY4UlAaNms%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Size 120 kB (119515 bytes)
Hash b364348597d40cf0051413a683fa6489
4e2e3f63a9e32c7267c402643152746e1313dda2
719e5ea4681ea57792b7a7457443384f7a35cbab2a81b1e8c75ae3ede5e3f700
POST /videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=593750&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667549144&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRgIhAIYwMxdfpX_I6Oq9Rb7QcEXfZA_GTaQSgFf74oAFT6WzAiEAtIGmCLGdsaAgJXjX63rX0-ZuTGHCl5vmmqY4UlAaNms%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgP6pfNPQU0g8TxA82ePUJBXGbIV1nJopmtsVOqXYcKFACICKvFlS1gGJimul5wvRB9e2PAZr0PzHC2vvfPG3mEP1W&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:19:08 GMT
Content-Type: video/webm
Date: Fri, 04 Nov 2022 08:11:36 GMT
Expires: Fri, 04 Nov 2022 08:11:36 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 119515
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash c99a15fa828eeaf61076b8149f0197c8
b297edfbe8d174096327e4ffaec493b2a5f5e7bb
d365496af4812d1a0ec3372ee5c0e0001aba2b7041e83006c097edaea7ac5118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=4221037&dur=60.851&lmt=1667121548787095&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOaPLVXVBkshtAkZfddAtM0bANbRHSEjnqYm1Mt3bacqAiABembTYFyJgiGp_YJLIDONxNJ5zGPg9XyI11-DyAL0RQ%3D%3D&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=zf&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1667549366&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALjibEtclP-Yr8dSk2mqaDjIKwkgHYP37QaDJrp2dvg1AiEAy2_T9uISzPDGcln4cNvMiDUvqvs6tJK8JlyApoUG6Vw%3D&range=0-415&rn=5&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
74.125.111.70200 OK 1.3 kB URL HTTP/1.1 rr1---sn-5go7ynld.googlevideo.com/videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=4221037&dur=60.851&lmt=1667121548787095&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOaPLVXVBkshtAkZfddAtM0bANbRHSEjnqYm1Mt3bacqAiABembTYFyJgiGp_YJLIDONxNJ5zGPg9XyI11-DyAL0RQ%3D%3D&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=zf&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1667549366&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALjibEtclP-Yr8dSk2mqaDjIKwkgHYP37QaDJrp2dvg1AiEAy2_T9uISzPDGcln4cNvMiDUvqvs6tJK8JlyApoUG6Vw%3D&range=0-415&rn=5&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM=
IP 74.125.111.70:0
File type ASCII text, with very long lines (1260), with no line terminators
Hash 2370e167634b5c3e92c682a4b85916a3
b43379f48ae51e0b6594b574208e5a43beb85ebf
04f36047437682c533ded555d4f541582a371579d8c887493e00c7b3ad5dc40e
POST /videoplayback?expire=1667571096&ei=OMlkY9iAE8KJpATFyKagCg&ip=91.90.42.154&id=o-ANRGRGTs-ucNXieuHqw33RacsoKVOFxV9zPHyilebHH1&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&spc=yR2vp3pzklNr4ZDhOy-vHKLXcLXYjsI&vprv=1&mime=video%2Fwebm&ns=-eX3zsjGuNy61kjRC0KPXUMI&gir=yes&clen=4221037&dur=60.851&lmt=1667121548787095&keepalive=yes&fexp=24001373,24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=8qLZowz2uC0Kmw&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOaPLVXVBkshtAkZfddAtM0bANbRHSEjnqYm1Mt3bacqAiABembTYFyJgiGp_YJLIDONxNJ5zGPg9XyI11-DyAL0RQ%3D%3D&alr=yes&cpn=XcIZ0-xUzNSHZTR9&cver=1.20221030.00.00&redirect_counter=1&cm2rm=sn-capm-vnae7e&cms_redirect=yes&cmsv=e&mh=zf&mm=29&mn=sn-5go7ynld&ms=rdu&mt=1667549366&mv=m&mvi=1&pl=21&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRgIhALjibEtclP-Yr8dSk2mqaDjIKwkgHYP37QaDJrp2dvg1AiEAy2_T9uISzPDGcln4cNvMiDUvqvs6tJK8JlyApoUG6Vw%3D&range=0-415&rn=5&rbuf=0&pot=D9WQfttcVPV-1ahUmMyhdleQKw5OKg8X92g37WjrSiA3tsLhIWLS91cYwcPOSrS7gRcjTt1YoxyEUIe6PWBjVpNaMGT8Tsipr534N3AMhg2uDA6YgvMBmzFeCVQO-NmOfocajYM= HTTP/1.1
Host: rr1---sn-5go7ynld.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Wed, 02 May 2007 10:26:10 GMT
Date: Fri, 04 Nov 2022 08:11:37 GMT
Expires: Fri, 04 Nov 2022 08:11:37 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 1260
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash c99a15fa828eeaf61076b8149f0197c8
b297edfbe8d174096327e4ffaec493b2a5f5e7bb
d365496af4812d1a0ec3372ee5c0e0001aba2b7041e83006c097edaea7ac5118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 08:11:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.210.189.25:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-1a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 149.210.189.25:0
GET /wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"608a92e4-509d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/player_api?ver=6.1
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/player_api?ver=6.1
IP 216.58.211.14:0
GET /player_api?ver=6.1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 04 Nov 2022 08:11:33 GMT
date: Fri, 04 Nov 2022 08:11:33 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=yqjnl4FAc0E; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=7uleTUsQ7GA; Domain=.youtube.com; Expires=Wed, 03-May-2023 08:11:33 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+227; expires=Sun, 03-Nov-2024 08:11:33 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:36 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:36 GMT
etag: W/"609bb5e2-56b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-30d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"6361d04f-17265"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
IP 149.210.189.25:0
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-15db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"6361d04f-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
IP 149.210.189.25:0
GET /wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: image/jpeg
content-length: 113818
last-modified: Thu, 23 Jul 2020 15:01:28 GMT
cache-control: max-age=31536000
expires: Sat, 04 Nov 2023 08:11:33 GMT
etag: "5f19a648-1bc9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"63614435-222e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-cdd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
IP 149.210.189.25:0
GET /wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"609bb5e2-46757"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 04 Jun 2021 16:16:58 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"60ba51fa-12dfd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-24ad5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Sun, 04 Dec 2022 08:11:33 GMT
etag: W/"604b06fa-1a16"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2