jorritboerma.nl/
149.210.189.25301 Moved Permanently 162 B IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 06 Nov 2022 09:11:21 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jorritboerma.nl/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8286265a56e3e10efd41b41618a54071
5f10ac9a050e15f5598674dc7ee3865b325d01a8
2da2fa0b2b86ccc4029d0baa4e9c5b21a6433228b84b451b72b1d318561d4ef2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DA2FA0B2B86CCC4029D0BAA4E9C5B21A6433228B84B451B72B1D318561D4EF2"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15942
Expires: Sun, 06 Nov 2022 13:37:03 GMT
Date: Sun, 06 Nov 2022 09:11:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5271
Cache-Control: max-age=92854
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:21 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 10:58:55 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9599
Expires: Sun, 06 Nov 2022 11:51:20 GMT
Date: Sun, 06 Nov 2022 09:11:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6bMjoAh+Lf+OmQQytNiGihUiW+5zac6XzZOWysByu2dPEc0n34QJz/N2R4HOBV84uyVC0KWMPkA=
x-amz-request-id: P8CZG5PF5N3CCJGQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 08:47:34 GMT
age: 1427
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de978b828dd4819b1068e775b9599ebc
36284db70f9a22336253e59f89de85d944e9bda2
6d2a10ae5fc3837347655993b399aed325664674019722087eda824bbdc40ec2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D2A10AE5FC3837347655993B399AED325664674019722087EDA824BBDC40EC2"
Last-Modified: Sun, 06 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Sun, 06 Nov 2022 15:10:58 GMT
Date: Sun, 06 Nov 2022 09:11:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db63d54b77502dd6c7bdc792d4fd093e
026ad8186833988279468829c004c6e2a2f2626f
eff89ef67baa622e8a196ffcadc44d29aafff009bb531da3e979a1f47c3b1c36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5897
Cache-Control: max-age=88422
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:22 GMT
Etag: "63661997-1d7"
Expires: Mon, 07 Nov 2022 09:45:04 GMT
Last-Modified: Sat, 05 Nov 2022 08:06:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.189.139.67101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.139.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Dmh8NfKmJVdwrprRItE2nQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: L6nrcFxSc15tSGeozhkQ5lS5sXc=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8316
Expires: Sun, 06 Nov 2022 11:29:59 GMT
Date: Sun, 06 Nov 2022 09:11:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8316
Expires: Sun, 06 Nov 2022 11:29:59 GMT
Date: Sun, 06 Nov 2022 09:11:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8316
Expires: Sun, 06 Nov 2022 11:29:59 GMT
Date: Sun, 06 Nov 2022 09:11:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8316
Expires: Sun, 06 Nov 2022 11:29:59 GMT
Date: Sun, 06 Nov 2022 09:11:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ry_OKFFZDdDoVya2hTxnFlDGtgoSw0JRqieDnCO4mSNFbgV-AuLE5Q==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:33 GMT
age: 41210
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b46edc3-3c38-432b-abec-6c61e93e3e1c.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b46edc3-3c38-432b-abec-6c61e93e3e1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b37723112370a0b108acac266a6dcfd
5434be2648f63624b7729c931c950e54c84d79a9
ae97a46d3825531022f51be38b5932c879fe3996073bad8bcf150e712c571814
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b46edc3-3c38-432b-abec-6c61e93e3e1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5944
x-amzn-requestid: d3d52642-194b-455f-9e12-5fd306607035
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJatbFmLIAMFp1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7ef-03be7b6f337c5cf934c0d741;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:55 GMT
x-amz-cf-pop: SFO5-C3, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TiExsCatpiBUi_m04amHP1xFN2Euj0Qq2RQEI8YOn_R2cmfB9yzlIg==
via: 1.1 7ba3caf71ae7a52dd411d1a543e80cd8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:46:03 GMT
age: 41120
etag: "5434be2648f63624b7729c931c950e54c84d79a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cLOqm36ioY751X1yA1WcQpaXiFYuvzFn8xLQ56MyDTpvi1J4Ruvc9Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 06:27:59 GMT
age: 9804
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 886f94a2b6bfa041d40943e14fee4a18
deba663d6b38f0c151032b2d5b5b5d54f7dd78b0
620c1c5ae68bbbddf31b43bf51161b06d1a3da6b6872643637c057f05cceec6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: fbeabde7-9e76-468d-b945-a3ee931e5f74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabbHUPoAMFg_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-1c372f9206e5923d360e9ed6;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UiyazpCisGgn3fc1ZqqIrF3pUpXHrPZqca5x7wINK-H_cP1ck1Pa8Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:48:58 GMT
age: 40945
etag: "deba663d6b38f0c151032b2d5b5b5d54f7dd78b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b18a8c9f5539ce33476f843f5811e01d
11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b
fc20e507eedccb52078979f2132434b11b9d50d917cab512d8e0c99515b1236c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7573
x-amzn-requestid: d56e7b27-f2cb-4cd3-9f67-ba18d1bfe270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDkhGHmjoAMFxxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364813a-3a1c18b13c41f38673890b00;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:04:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c-u9tBFoIve3sEwtbUvIFZoPu6eudy3ZFQi8j2m9mTPNEarihTvddw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 05:31:43 GMT
age: 13180
etag: "11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa77f05b1af971db287607d9d9a30e0f
276f1493d6da74c8fa3ef83dee77bf48850ff4b4
005d0273b7fe7b68081d1db630df9444c4082140be87c34f3e9e5fb7db9a4160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7220419a-cf8c-4056-a522-11012e67cf32.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14415
x-amzn-requestid: 9eadfbeb-38b2-483a-894a-375e00f646dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabgHcMoAMFTLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-104fa5e61c64aaf230ffb045;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zwi4Hg5iu5MB4zr0EFVhTRAvrnN2J1GnY31mOvlXJW0E_cgQu1gmgA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 22:12:38 GMT
age: 39525
etag: "276f1493d6da74c8fa3ef83dee77bf48850ff4b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jorritboerma.nl/
149.210.189.25200 OK 22 kB IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 55ceaec77ccd47368483b226158fc9cc
7f5e0a2a46ef2b1e13d4eb5a08b6a201dd3617aa
db306e0f8a57f38812e8054bad5315038d2fbd6af0443a1e1cbc348dfbf3664b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: text/html; charset=UTF-8
content-length: 22349
link: <https://jorritboerma.nl/wp-json/>; rel="https://api.w.org/", <https://jorritboerma.nl/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://jorritboerma.nl/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0
expires: Sun, 06 Nov 2022 09:11:21 GMT
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.24.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5460086
expires: Fri, 27 Oct 2023 09:11:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0dxceiP1IluhHkFQjDkf1vmV35HxP7QkrbYEkvdjD2ySzXZYcY4ovjytg4YDgwiSJqQNt4r%2BVFXYf4%2FuL8Qk3rPV3ok2EafqUstsXFNIBgX4vS5GKu9taX2MSKs09GgZJTb84AFm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 765cb3964b5ffac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
149.210.189.25200 OK 5.0 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 73ff684cbe174d564d2d70e58a05dc66
3f1a362c547760db9f7d286e4ca8f2eccb8fd307
1bea29393ba51bc7d2a287a7ecd77c35f80ec4c707644efa5a8061ab868a93e9
GET /wp-content/uploads/2018/10/53-location-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/png
content-length: 4952
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fadf-1358"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
149.210.189.25200 OK 926 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
IP 149.210.189.25:0
Hash b7a6d8eae6b6e0c99d7b948a963ddd58
06d22b27c8fd940387c21f3f2f41ed36d1d66ec4
6c101dbbe46d7763fd4b6e87c0e2a87076824942f3e94c1254c4cbab4c80438f
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-73f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
149.210.189.25200 OK 6.1 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e6a8994b20a49c9abb08142ae194372
cffae4bd4c5489bc993c1cbd4142f0ea93265744
b7354628017d1827aaf049311f7220692217b9217cf8f325f80561ce057d4dba
GET /wp-content/uploads/2018/10/asset_23-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/png
content-length: 6100
last-modified: Tue, 21 Jul 2020 14:25:36 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fae0-17d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
149.210.189.25200 OK 4.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 90f75159ffdc7f3f5eab53cf7aaebb14
5ad2d39ced40869a1c555c844b0f9f089e5ff02e
b1be4f68d3c521c4d4b5fe684e7dc624b18b303471f936fea9cbb22578e2d155
GET /wp-content/uploads/2018/10/36-smartphone-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/png
content-length: 4889
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fadf-1319"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d2b4c49a0fb79e3d3bc40d2a28b27120
3f53633851cf851451354ccfd2931f2ec7a9e40f
a8a4ca2c09bae5cc3375077e531b357e2c1724693433a085ad038e3e6adfd96b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
149.210.189.25200 OK 114 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Size 114 kB (113818 bytes)
Hash 6607f84776e4586a363019ecb2108eb3
4b5d4cb7279e5e09c9002d1fc78de51c15de3e60
d9a37cc485bda1874e35b2ba97a6758f72e11d6d2a7fc76cea2f39287a3b7c12
GET /wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/jpeg
content-length: 113818
last-modified: Thu, 23 Jul 2020 15:01:28 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f19a648-1bc9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
149.210.189.25200 OK 4.4 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash b1609967c4a9c2e8c25d444b31dd8a3c
61741bccf8a2422a32563f6ecace97bcffd356c5
18d99746ced664e2a4a07d414fd9485e27ba16a51beb26858e9b80d1bd41cad0
GET /wp-content/uploads/2018/10/asset_26-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/png
content-length: 4424
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fae1-1148"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
149.210.189.25200 OK 2.8 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c9129503a96684399982e945a883a78
806c89766700b6827fa20af5da7c5c77a3611f65
cbaca883a047ea23874b657578c3732aea62ac35bea1a6f199b7c01fbbfdc430
GET /wp-content/uploads/2018/10/42-email-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: image/png
content-length: 2764
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fadf-acc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
149.210.189.25200 OK 5.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 36f6303528395fc84209fda3e08c3d52
f4639aaa1486369c072eff6ac09b9423d31017bc
6df4dcc92c0b7ce9f98981c0fa2715c2d9a6566671b2e8de820855b0ac6610b5
GET /wp-content/uploads/2018/10/asset_29-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/png
content-length: 5893
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fae1-1705"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
149.210.189.25200 OK 276 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
IP 149.210.189.25:0
File type PNG image data, 264 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a136b62005b12e56ed5deb85b7f454f
53fed8a4edb506ff8934a9087cace97e091eb6b5
c21f355ff7206fe7a7ece0a0a9f8d3a11fa6a20844b6f24ee55f3fd46cb7d0bc
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/png
content-length: 276
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "114-5c3f309282317"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
149.210.189.25200 OK 293 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
IP 149.210.189.25:0
Hash e19bfceb54a7503b54936dd7af4681ed
b7093d46a40d4b55073a40f93e0b4012ae8976cd
b0eea7eac87327cdd7c4303539c68f0ed73aa339fc1a27d5633c3c496cf55d8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jorrit-boerma/style.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
content-length: 293
x-accel-version: 0.01
last-modified: Tue, 13 Mar 2018 08:22:16 GMT
etag: "19c-56746f4ccfe00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
149.210.189.25200 OK 189 B URL HTTP/2 jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
IP 149.210.189.25:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
etag: "d9-5ec7344d4e5f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
149.210.189.25200 OK 1.2 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
IP 149.210.189.25:0
File type PNG image data, 816 x 350, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ad83359d5f2ca212e1314c36e6f62f0
e5192d919dc89352f8a530c47ab98e2b1c4b2979
5c45d25a995af8f4ab1083399454a38ab7872a7451ded73811850d770aaeaa73
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/png
content-length: 1208
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "60ba5239-4b8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
149.210.189.25200 OK 456 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
IP 149.210.189.25:0
File type PNG image data, 536 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash c1beead3ca1b05786fab0172a623a86b
d89e7c8c2af49c2fd4c1d62fe36383de01db6d48
5653c14169450d258081d4f7f6c3229e622bbf4e05f0ed02d9975648adb36c00
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/png
content-length: 456
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "1c8-5c3f3092632fb"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
149.210.189.25200 OK 16 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
IP 149.210.189.25:0
File type PNG image data, 900 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash 085c8a9031293008fece6aba92c24dfc
f06a0d5ee5e6fad2eca25a02e624b05c956b564f
1f099b4c6f6fc77501882e2862cacf59acce0c2771bb3ed23168dfdafabcf40e
GET /wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/png
content-length: 16492
last-modified: Tue, 21 Jul 2020 14:28:11 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fb7b-406c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
149.210.189.25200 OK 384 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:59:50], baseline, precision 8, 1920x1280, components 3\012- data
Size 384 kB (383593 bytes)
Hash 8248ddba1ffebd9e195f3e4269960c12
e21614c59a93dbe27fd73fdeeaa1e5e264b84a39
cc0084fd5458c311ef66e41f61f37694d90806756977d08a27f9dfa30426e040
GET /wp-content/uploads/2018/10/img_0594.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 383593
last-modified: Tue, 21 Jul 2020 14:25:53 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16faf1-5da69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
149.210.189.25200 OK 459 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:57:58], baseline, precision 8, 1920x1280, components 3\012- data
Size 459 kB (459278 bytes)
Hash 244f28bc316969441cf5751cc92ea6ee
8d6efa669715410c9a1bcd433ffa447953916cb7
114723d9d5a7e706671fb34d625fa44382117f5444e98729f04bcb44e9f50e51
GET /wp-content/uploads/2018/10/img_3096-bewerkt.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 459278
last-modified: Tue, 21 Jul 2020 14:26:04 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fafc-7020e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
149.210.189.25200 OK 432 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:50:10], baseline, precision 8, 1920x1280, components 3\012- data
Size 432 kB (431838 bytes)
Hash 60ad7bee4080da8b873d5f0211569e9a
94812c8ec01bc11f289da58fb6ec2e8f38b1c63e
4627b76cd4d6953c4ef3efb8e8d546c6445cd2411853595ad059f2125938edfc
GET /wp-content/uploads/2018/10/img_8820.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 431838
last-modified: Tue, 21 Jul 2020 14:26:19 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fb0b-696de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
149.210.189.25200 OK 12 kB URL HTTP/2 jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 149.210.189.25:0
File type ASCII text, with very long lines (47826)
Hash dcf8e44582f89cf72488aeb1ffb4b58f
d5917a4fe6be58ad39dae9974093c46058329d07
16d861a39c37811449fa2c3651d90f3f2c6eba88eb64fcd701e8e19ab9930686
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"6361d04f-17265"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
149.210.189.25200 OK 748 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 748 kB (747870 bytes)
Hash 200dd5427857b4f6ca63ff6b23f9a0be
fd7b29350d112617628e0505da4701dbe4356b71
3c7ba7677dca68172e9fe651f5324af6d2f2d6e7f19e7f72a7832c0b9cf7a220
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/10/img_0588-1.jpg?id=408 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 747870
last-modified: Tue, 21 Jul 2020 14:25:51 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f16faef-b695e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
IP 142.250.74.10:0
Hash d49bb56c33816ce603e8fc8ad525e8f2
63d4632fe2e65708b4b41e9b562303bc2a465082
116b25e365fea9d45a3188da38b945396374ebb7f3d7d5d97c23dad25fbbfdd0
GET /css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 06 Nov 2022 09:11:24 GMT
date: Sun, 06 Nov 2022 09:11:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
149.210.189.25200 OK 728 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-H1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.3.1 (Windows), datetime=2019:07:22 14:45:56], baseline, precision 8, 1920x1280, components 3\012- data
Size 728 kB (728010 bytes)
Hash b70578246e2d33b89298f69a2f745f71
e5374c1be8a58b628ea1e8624db3a5acabec0c22
074f0b882ffdb65267a64d411ae41fd7c42795bfe900b6ecbb0b3760653b9be9
GET /wp-content/uploads/2019/07/dscf7331-2.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 728010
last-modified: Tue, 21 Jul 2020 14:28:09 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f16fb79-b1bca"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
149.210.189.25200 OK 25 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
IP 149.210.189.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 727c4877bf1d49e9d2519092127cd9a6
98276ea62c318bb613dfaf0024c682debe5e492b
c07c84a9886f00ec89b411e2425995bbf13d825389f134679d60442a3ab06a23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-24ad5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg
149.210.189.25200 OK 5.3 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 698580b6c82023da1afbd1dbf0d49485
9499ad512fed9cfee6846943a7867b173fed2f84
3fd8dfde179704901166023685d5ef09ff9c5ce06939c4d685ab6e8c537461f6
GET /wp-content/uploads/2019/07/cropped-jorit_boerma_camera-192x192.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 5328
last-modified: Tue, 21 Jul 2020 14:28:07 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f16fb77-14d0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
149.210.189.25200 OK 31 kB URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 149.210.189.25:0
File type ASCII text, with very long lines (65447)
Hash eabf253d53468cc798276920df07802f
c681c0089b6e77c625e097d855f5db77ac792d5f
7985362f54b19ff0ca3c9e21873d59640561be9b1e5bf4f5239ae654e8b5e582
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"6361d04f-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
149.210.189.25200 OK 2.2 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
IP 149.210.189.25:0
Hash ede11e1077d816a954073c2f348e6f24
fc68685237ae5c4f6105729ad28077e430e1fc1d
743b7bc481dac25bbf80858ecf6611f32f68e5b557bc059aaa3f39d9772bf09d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-1a16"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 271713
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:46:16 GMT
expires: Fri, 03 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 213908
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Nov 2022 12:31:58 GMT
expires: Sun, 05 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 74366
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 18:59:14 GMT
expires: Tue, 31 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 483130
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qxroqhq5zrov66es5nhzgapevvc4a019lnzg.jpg
149.210.189.25200 OK 133 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qxroqhq5zrov66es5nhzgapevvc4a019lnzg.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 816x350, components 3\012- data
Size 133 kB (133141 bytes)
Hash 4a70e79937465543c7e4e76edb20e98d
e8e159800d5658c29710a510fea1433078f02f45
7a8a6cef1a997dea899f645b182bde048dee8cc485498aff629cd3a47adfc536
GET /wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qxroqhq5zrov66es5nhzgapevvc4a019lnzg.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 133141
last-modified: Thu, 23 Jul 2020 14:59:47 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f19a5e3-20815"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg
149.210.189.25200 OK 180 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 816x350, components 3\012- data
Size 180 kB (179605 bytes)
Hash 97cb91d491b2d02c1c013abd8dca32e7
f44077fa944841e120047b56c2786d03e0e52d4e
f2eed4658b3217cc304b4d0f3ebce414117204634b2a03d4cc3db22ef9f48dd3
GET /wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 179605
last-modified: Thu, 23 Jul 2020 14:59:48 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f19a5e4-2bd95"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9gka5sj5j86bbepvpbk76wv9g2fy9nvvlhv2.jpg
149.210.189.25200 OK 44 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9gka5sj5j86bbepvpbk76wv9g2fy9nvvlhv2.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 264x171, components 3\012- data
Hash 5e6f76db176100d1629a36f33f44968b
e6468b3bb6bdd05988da3ac48db72809decfe07d
b074f189ad062b7d60d419171fa93c12b3d9c9683b38fb8155ead1fde46fce1a
GET /wp-content/uploads/bfi_thumb/img_0506-ossrdf9gka5sj5j86bbepvpbk76wv9g2fy9nvvlhv2.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 43838
last-modified: Thu, 23 Jul 2020 14:59:50 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f19a5e6-ab3e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg
149.210.189.25200 OK 268 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 816x350, components 3\012- data
Size 268 kB (268250 bytes)
Hash 814bcf63ee87a45f991c4171701e208b
7bff83524c9648ca7be3470a7b2fe0025c02b611
e93a8b537d174ba078dc5cb1b7a39013113e1111ffa0949c9cdc0054f882a712
GET /wp-content/uploads/bfi_thumb/img_0506-ossrdf9nad0sb1ougyf6yq9c92f8ezpq15hvvhailo.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 268250
last-modified: Thu, 23 Jul 2020 14:59:48 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f19a5e4-417da"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
149.210.189.25200 OK 38 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
IP 149.210.189.25:0
File type ASCII text, with very long lines (6730)
Hash ab4ed804c37f28fe52a576188e8bc4f5
2a1754ad775869e6a3ca143c201b9d8eb1c968aa
c014cc6acf88b6c302fce9760bdc85380d96e118a8a44443797588603537b27a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-1a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qucw51vpnueqtab4zjs7w6g1kyabdqgmnkby.jpg
149.210.189.25200 OK 54 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qucw51vpnueqtab4zjs7w6g1kyabdqgmnkby.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 536x171, components 3\012- data
Hash 2baaaef11feb8e02b9672a2c4574064e
862a24eee7bd6c74f56d2517f120b37cd023fdad
7e6ae16795260176e4cd52f621f730d69fcdb2c8fddc2b4b4658750d4a89f979
GET /wp-content/uploads/bfi_thumb/final-edit.00_00_31_17.still003-e1534780367193-ossrd7qucw51vpnueqtab4zjs7w6g1kyabdqgmnkby.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 53571
last-modified: Thu, 23 Jul 2020 14:59:49 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:24 GMT
etag: "5f19a5e5-d143"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e20220595764996da3b132db809444b2
7b5e25e40df30de11e8bd6088f59b7131a2702db
b2f5ca6be41e0113663f5f75edc856f49297cd40700043080f3e27c1cce3a185
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
149.210.189.25200 OK 5.7 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
IP 149.210.189.25:0
File type ASCII text, with very long lines (38932), with no line terminators
Hash 1df703ba577f01cb19eab8266f33c6da
ff71270a5d23442fb6ce232887ffa47bbbbc172a
b33d41f01eba38f495fb41071b3369c4ef36466109316864a89c45742ab21362
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Wed, 16 Sep 2020 16:59:26 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"5f62446e-9814"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 06 Nov 2022 08:59:05 GMT
expires: Sun, 06 Nov 2022 09:14:05 GMT
cache-control: public, max-age=900
age: 740
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 06 Nov 2022 09:11:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash dc3b2f9d8f4f89a5f302cf6cb56e034f
d1e91b142e29806f52cd1acb34b60e3377bca766
999c14fab9caa550d98424dd75d7a3ce99458ed1c8c27cf7932fd3298c80cefe
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 06 Nov 2022 09:11:25 GMT
server: ESF
cache-control: private
content-length: 30810
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6b72bfaacba486284aa2ecb4bcd8ebba
89fa4ef09e60380fc432c73b7919a29f26117088
fed14b27362ffe0dfbe0b1696e8dab5f6bba3e08b76bec620e75f0f3f213f69b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/EWuoZ_9LU3hL76PT3YFLg_EjKJdTpZ6rgtgTJA98OBY.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/EWuoZ_9LU3hL76PT3YFLg_EjKJdTpZ6rgtgTJA98OBY.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35974)
Hash 89da5756c3061bf086f28e85c062ea28
d46d62afb0048e31e65c624e26fc5620eb1e7fdd
7c5e7453571c65550671610b433b6a9ce831d3532c6c503539f8a060e5b264df
GET /js/th/EWuoZ_9LU3hL76PT3YFLg_EjKJdTpZ6rgtgTJA98OBY.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14351
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 06 Nov 2022 00:27:13 GMT
expires: Mon, 06 Nov 2023 00:27:13 GMT
cache-control: public, max-age=31536000
age: 31452
last-modified: Thu, 20 Oct 2022 10:30:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
149.210.189.25200 OK 54 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
IP 149.210.189.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 715b88a79cd22643f70e338913a2ec81
27a456877d6b793ddb3f69f70cfeef68628d5e06
1e70353d6e4ccbb1f675e2630f43e979e344de8f2df848f8e57ee198ab527cfe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 16:16:55 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"60ba51f7-64a9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0c958806c8cb4256576529cd7ac57208
ed90ea4236d2e8c96707cda1309a86a2189baf42
d4b6e268c60fcbfff53d5d7387cedb5a8d11f72e60402281b87b48b3edc5e292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4581b506f0ccd486206fae4fe79eb8fd
ea8f75b339daf79e4d6db6b288f23045dd7b47e2
db3f58f8fbd1b53920f8b71348ff31ea8b886e3dfb3d6171d2c68b414b3a6e7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
142.250.74.118200 OK 9.4 kB URL HTTP/2 i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
IP 142.250.74.118:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8c7360f053849a8b38e53c66aa46cd07
55e87ea4be36ac28158d7dfb0185b10ac81fb000
7d1d925ea2342ad75edeab75e3062e2abd088c5d60e699c7a4307904ee18ee41
GET /vi_webp/AFyPFXAc7Gs/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9404
date: Sun, 06 Nov 2022 09:11:25 GMT
expires: Sun, 06 Nov 2022 11:11:25 GMT
cache-control: public, max-age=7200
etag: "1563361880"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4581b506f0ccd486206fae4fe79eb8fd
ea8f75b339daf79e4d6db6b288f23045dd7b47e2
db3f58f8fbd1b53920f8b71348ff31ea8b886e3dfb3d6171d2c68b414b3a6e7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 610b4f0e50cea5e186d72fcf1111afe5
2ce3a82c1bc00877c537e382c4c9819b4e86c501
0b89c3feb2f098b2623e10488252a745f60829e3d1ce7710f0d5d180ce6a4595
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 923
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 06 Nov 2022 09:11:25 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.8 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash f52b183aa213fb8ee6a05aae9fdcf67e
838b42a6466919e957c5ae759fd99156165d07d6
bec6e6e966f58cd6a46f24f99801b6a60078e7a85a89e1c9ed5cc01c4fbda271
GET /ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vdab1"
expires: Mon, 07 Nov 2022 09:11:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 06 Nov 2022 09:11:25 GMT
server: fife
content-length: 3841
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0c958806c8cb4256576529cd7ac57208
ed90ea4236d2e8c96707cda1309a86a2189baf42
d4b6e268c60fcbfff53d5d7387cedb5a8d11f72e60402281b87b48b3edc5e292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
149.210.189.25200 OK 110 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Size 110 kB (110494 bytes)
Hash 662e841bcc02a1bf35336472fe87aaee
8ba8d78947b302f91070299caf208e51d83da470
6cc4bee4be423343ee89d929345348ab669462b18e5431d9d2bdb1f50bc06ecb
GET /wp-content/uploads/2019/12/5.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: image/jpeg
content-length: 110494
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:25 GMT
etag: "5f16fb82-1af9e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 8ce965feb7bc0bcf383316d178461ec1
0fcdfc61b19b1f576fb2cb61e44760fb03c882f4
25192d69892121dfce124ae416244b5c59726de9f3b15a8e80e9a670f1a54407
GET /wp-content/uploads/2019/12/4.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: image/jpeg
content-length: 70003
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:25 GMT
etag: "5f16fb82-11173"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 6a9a3d87fe2e22a43aecff1d85e8675a
0af8fa078fe8c1a12c0759421abf47e8abfcf806
1625649f281f170b01a1e745c4efc6d359acf06338214bee619f823212c14275
GET /wp-content/uploads/2019/12/6.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: image/jpeg
content-length: 69970
last-modified: Tue, 21 Jul 2020 14:28:19 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:25 GMT
etag: "5f16fb83-11152"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c1e1ac256a1e9af6591d093a4987658
63a6e7bac4301ad9f82473c72e5dfdbe9b21f8be
77cbcec0ed5ffe1ef337e276336bc952fe8b6f7224ef44b29d8fbbd72bbc7832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c1e1ac256a1e9af6591d093a4987658
63a6e7bac4301ad9f82473c72e5dfdbe9b21f8be
77cbcec0ed5ffe1ef337e276336bc952fe8b6f7224ef44b29d8fbbd72bbc7832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
149.210.189.25200 OK 72 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
IP 149.210.189.25:0
File type ASCII text, with very long lines (22195)
Hash 35a136a5027adea68c0f4329731fb668
34076618de0e4fdb3aa8b0aaf58c65ecfadb33c2
7aa83209f6059039605736a1a3223a6b9baa666da45d136d6d3a14852dfbfe11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:25 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:25 GMT
etag: W/"609bb5e2-56b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c1e1ac256a1e9af6591d093a4987658
63a6e7bac4301ad9f82473c72e5dfdbe9b21f8be
77cbcec0ed5ffe1ef337e276336bc952fe8b6f7224ef44b29d8fbbd72bbc7832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 09:11:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJb6z5dWikC7qjrrQYq_krFdxWwZYR2F2XOZj0vl5Js2AiBJPXEAr9u1RAwBqtoLCW1ARqSQJEw2eKeDQ44NjLayaA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs=
91.90.45.172200 OK 120 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJb6z5dWikC7qjrrQYq_krFdxWwZYR2F2XOZj0vl5Js2AiBJPXEAr9u1RAwBqtoLCW1ARqSQJEw2eKeDQ44NjLayaA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Size 120 kB (119515 bytes)
Hash b364348597d40cf0051413a683fa6489
4e2e3f63a9e32c7267c402643152746e1313dda2
719e5ea4681ea57792b7a7457443384f7a35cbab2a81b1e8c75ae3ede5e3f700
GET /videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAJb6z5dWikC7qjrrQYq_krFdxWwZYR2F2XOZj0vl5Js2AiBJPXEAr9u1RAwBqtoLCW1ARqSQJEw2eKeDQ44NjLayaA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:19:08 GMT
Content-Type: video/webm
Date: Sun, 06 Nov 2022 09:11:26 GMT
Expires: Sun, 06 Nov 2022 09:11:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 119515
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOgNoGrQo_TcXE_pk-CRoshUet1xi6If71QJWghapLxJAiAEIiKt9ne8Y1MG0NyEiefON9R747XeDfWMGoLUFoFUmw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs=
91.90.45.172200 OK 416 B URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOgNoGrQo_TcXE_pk-CRoshUet1xi6If71QJWghapLxJAiAEIiKt9ne8Y1MG0NyEiefON9R747XeDfWMGoLUFoFUmw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Hash b0059610a977e5fe8e1d8875f192ba5f
60b705b89ab7ef389c8bcbcec7c765602120fd9a
da577d46c43a8d4a4c83014a20de0e4fd2277da785c8b062b800082eb21e1f14
GET /videoplayback?expire=1667747486&ei=PnpnY5eIDYek7QSqjoWoBg&ip=91.90.42.154&id=o-AJagw4GOkneJ1Lgtqnb1EV8a73bIb6VxalXlCmxqKl-i&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5go7ynld&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2065000&spc=SFxXNu9PuHwszrCG_bnj_ISwecdTFHA&vprv=1&mime=video%2Fwebm&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667725483&fvip=1&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIhAOgNoGrQo_TcXE_pk-CRoshUet1xi6If71QJWghapLxJAiAEIiKt9ne8Y1MG0NyEiefON9R747XeDfWMGoLUFoFUmw%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRAIgXcW8PNwaSvt_rDORhbu_dvAbxg28XYTXjaeaWQPl9VECIG5ugHFi2oUGo7vPVG7h198F18MK4UYWyZb8GzKE6AT5&alr=yes&cpn=TVLXloXlNfu-AKwC&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=Dxl2v367iV1VGU7DyBQYTtjuk74OWRNhVPaGrak5jtsprTlpdK1AYLn0QlffAUWEEnNOxSt1sJIpOj2XwGZxfWxE9IXHzksLH7zL0gU82Ejv1gbo6cRM0V47ZarZ8sqtQqOQZPs= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:19:08 GMT
Content-Type: video/webm
Date: Sun, 06 Nov 2022 09:11:26 GMT
Expires: Sun, 06 Nov 2022 09:11:26 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 416
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
www.youtube.com/player_api?ver=6.1
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/player_api?ver=6.1
IP 142.250.74.174:0
GET /player_api?ver=6.1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sun, 06 Nov 2022 09:11:23 GMT
date: Sun, 06 Nov 2022 09:11:23 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=09zfDLNM0Qg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=fuk9D9sVBSc; Domain=.youtube.com; Expires=Fri, 05-May-2023 09:11:23 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+241; expires=Tue, 05-Nov-2024 09:11:23 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-30d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.210.189.25:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
IP 149.210.189.25:0
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-15db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"63614435-14d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 149.210.189.25:0
GET /wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"608a92e4-509d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"63614435-222e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-cdd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
IP 149.210.189.25:0
GET /wp-content/uploads/2019/04/dscf0048.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: image/jpeg
content-length: 1012226
last-modified: Tue, 21 Jul 2020 14:27:14 GMT
cache-control: max-age=31536000
expires: Mon, 06 Nov 2023 09:11:23 GMT
etag: "5f16fb42-f7202"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
IP 149.210.189.25:0
GET /wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"608a92e4-76828"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: application/javascript
last-modified: Fri, 04 Jun 2021 16:16:58 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"60ba51fa-12dfd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
IP 149.210.189.25:0
GET /wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:23 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"609bb5e2-46757"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
IP 149.210.189.25:0
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 09:11:24 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Tue, 06 Dec 2022 09:11:23 GMT
etag: W/"604b06fa-11cf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2