jorritboerma.nl/
149.210.189.25301 Moved Permanently 162 B IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 05 Nov 2022 03:11:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jorritboerma.nl/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14945
Expires: Sat, 05 Nov 2022 07:20:28 GMT
Date: Sat, 05 Nov 2022 03:11:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: max-age=114006
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:23 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:51:29 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: max-age=114006
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:23 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:51:29 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8580
Expires: Sat, 05 Nov 2022 05:34:23 GMT
Date: Sat, 05 Nov 2022 03:11:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gfNFjs4nUZ+JIECBA5gU+JzC1vKcXVYiXQ4mE6vI9HCiVd7aAtljpT409bUG8MhwsaJIF+I5xPw=
x-amz-request-id: R7Z13MDHMMS8B4Z8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 03:09:51 GMT
age: 92
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e41710c114b1d2e41dae5ac4cc56230
bcdb39084c783376e580c513031ca34211ad3f6a
e8cc82d4b0b6e7fc58ff854a8c55ee3c1798b30bae02e920fd5948e38d8eb4c9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8CC82D4B0B6E7FC58FF854A8C55EE3C1798B30BAE02E920FD5948E38D8EB4C9"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21559
Expires: Sat, 05 Nov 2022 09:10:42 GMT
Date: Sat, 05 Nov 2022 03:11:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2312
Cache-Control: max-age=106435
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:24 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 08:45:19 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: L1sC4rWxRUnU9YNYsx0aDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +ZPEy/Wm/0swPAycAAQL8uRhepg=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11071
Expires: Sat, 05 Nov 2022 06:15:56 GMT
Date: Sat, 05 Nov 2022 03:11:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11071
Expires: Sat, 05 Nov 2022 06:15:56 GMT
Date: Sat, 05 Nov 2022 03:11:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11071
Expires: Sat, 05 Nov 2022 06:15:56 GMT
Date: Sat, 05 Nov 2022 03:11:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11071
Expires: Sat, 05 Nov 2022 06:15:56 GMT
Date: Sat, 05 Nov 2022 03:11:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d12961439cd33c86c7b8041ed9d42321
ddb7b18fae0082ce22d8ffa537c7367e1da404a5
d2cc0f7735f04a07c681eb2eae7c52e9f4c75b6d475b3ad4de587899089850a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4662
x-amzn-requestid: 32199e11-d856-4403-ad55-65076eac83ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd5UFJQIAMFf-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd08-1761126e37ed504e46896b4d;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Nu2uC3we8aHv4ERvh7QcmiErm4Ax-NNmdWFovpdU9Or9DguzrIcn5g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:00:38 GMT
age: 18647
etag: "ddb7b18fae0082ce22d8ffa537c7367e1da404a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c1182def5cf59cf834fc33853c55d15
15ac708f7d9fdf2136c980afcd844e8fff6fb7aa
2e0b597618655aa5649787b034e18e8d7a47e03404233a516a68ee6e98a8ad43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3921
x-amzn-requestid: 7b68d999-a1c6-4889-bf79-e1f0abfc1d1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apTueHLRoAMFjyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359fff6-679b214454c013587af76689;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:50:14 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lEDQvyTIRNKTT7J-oz-Rb2PcayFmw0ybRFFrvjMKXJYLwy45Oaun_g==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 14:39:29 GMT
age: 45116
etag: "15ac708f7d9fdf2136c980afcd844e8fff6fb7aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef4c410bf60b7be505437f6bd0741cc
fc8efa7e342e486fc03eba5f4b9a13897e3d6184
c4d4748d9997f417da33dc27c283280fa662f20af21b5f723864b08a98375cb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13204
x-amzn-requestid: 17c52ec3-3ba2-455b-b191-bc4716a80c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHlcEhLIAMFomg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658622-4c003bdf6874045753a27045;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2wMtj6owsrfYWrOfjUWMvtJnQmAAv7KCBWYfMGaR70ByMlYmHCUsqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:09:12 GMT
age: 18133
etag: "fc8efa7e342e486fc03eba5f4b9a13897e3d6184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee20d59c5ac266f8eb9c47057271a10
61dc4e78907f114519ff3fdd3c806b36557ab744
2cba117cfe96fa5e1b53981f98d42eb3e5f956083c3435a1d44d1d40784614bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11427
x-amzn-requestid: 0dcc7ef4-d7fa-492e-8ddf-4342b4bc44e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHxJGJZoAMFWlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365866d-7c3de2ed509a640f37c52843;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gAHLlJ0JzB6TfEUNw_sCNmrjMK-EX1hZbCY34i99xQok7R-wvcpqug==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:59:04 GMT
age: 18741
etag: "61dc4e78907f114519ff3fdd3c806b36557ab744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: 1b709c25-8424-49d8-bc0e-dac3fbc154ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEzH5ZoAMFWdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-3fb0703f27b571cf7f85e59e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9A2gds6rdrlTJCrN3m05Yl3azoOYGCEaCd2OBH8qq21wHR8WgqI3CA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 02:50:14 GMT
age: 1271
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a3b1551512640bb8f5e7deb80c32272
75805b9f03aef14cfad025259936ae5f217d25ca
5baa90853202e78cf9b59e9ab597e16ccfbf143d7e124583e64dc1ad1ee2c2df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7783
x-amzn-requestid: c8f73eac-612d-48e3-a655-41525e97331c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apxM8H7aoAMFT3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2f1f-5470c77a30a11b9423f56837;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:11:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FLFsF-1gAeN0HiZnS03oNMNajnwk12P-5Aro-QOcQNFtkjknh9g5FA==
via: 1.1 0c04e836dfe22246a870a0f54a2d4746.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 19:19:17 GMT
age: 28328
etag: "75805b9f03aef14cfad025259936ae5f217d25ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jorritboerma.nl/
149.210.189.25200 OK 22 kB IP 149.210.189.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 396d6dcec89e9955003e027e6bf1a0d8
bd96a5f34cf7a9802054773e874596c46264c522
0e0d6864ed9bc33a34731a85931bbec8d20593923adba4c737ae13a4304f01e3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/html; charset=UTF-8
content-length: 22345
link: <https://jorritboerma.nl/wp-json/>; rel="https://api.w.org/", <https://jorritboerma.nl/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://jorritboerma.nl/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0
expires: Sat, 05 Nov 2022 03:11:23 GMT
x-powered-by: PHP/7.4.32, PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.25.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5352090
expires: Thu, 26 Oct 2023 03:11:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PssTgJlTcAPuPOLvXhyLl1AzuuC8ar46Tc8f4T%2B8%2F0IE6KZAU8yPnlGXaLDFqyAfHdGgP9by%2FY7%2FxZmkogmyXN60UdBJ5%2FZ18ZzuSaVV77E66JZ0jG0m71DitlaRQJgHde%2BRTAfg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 765266f5fc5ab517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
149.210.189.25200 OK 189 B URL HTTP/2 jorritboerma.nl/wp-includes/css/classic-themes.min.css?ver=1
IP 149.210.189.25:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
content-length: 189
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
etag: "d9-5ec7344d4e5f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
149.210.189.25200 OK 12 kB URL HTTP/2 jorritboerma.nl/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 149.210.189.25:0
File type ASCII text, with very long lines (47826)
Hash b382ee3787eca5418f5703257de46950
27bbf97dd8535f237106f985b4080ca7078b1a81
73b6805405631a3089abbde6abdd6a441f225949b336edcde29875cc85a053bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"6361d04f-17265"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
149.210.189.25200 OK 1.2 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png
IP 149.210.189.25:0
File type PNG image data, 816 x 350, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ad83359d5f2ca212e1314c36e6f62f0
e5192d919dc89352f8a530c47ab98e2b1c4b2979
5c45d25a995af8f4ab1083399454a38ab7872a7451ded73811850d770aaeaa73
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyncpmcodylcmhl7ocg4efamekjwogy5p0zoa4.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 1208
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "60ba5239-4b8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
149.210.189.25200 OK 459 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_3096-bewerkt.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:57:58], baseline, precision 8, 1920x1280, components 3\012- data
Size 459 kB (459278 bytes)
Hash 244f28bc316969441cf5751cc92ea6ee
8d6efa669715410c9a1bcd433ffa447953916cb7
114723d9d5a7e706671fb34d625fa44382117f5444e98729f04bcb44e9f50e51
GET /wp-content/uploads/2018/10/img_3096-bewerkt.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/jpeg
content-length: 459278
last-modified: Tue, 21 Jul 2020 14:26:04 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fafc-7020e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
149.210.189.25200 OK 1.0 MB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/04/dscf0048.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-H1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.2 (Windows), datetime=2019:04:22 21:45:39], baseline, precision 8, 1920x1280, components 3\012- data
Size 1.0 MB (1012226 bytes)
Hash 2607a9738627fd1da5f32586385779be
aefbf45aa4a4d61909d547559e97d7114619b02f
8d0a27f0402a9433985f9d9bd82bc92943a41c6477a0fd0cce9581cf298795a9
GET /wp-content/uploads/2019/04/dscf0048.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/jpeg
content-length: 1012226
last-modified: Tue, 21 Jul 2020 14:27:14 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fb42-f7202"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
149.210.189.25200 OK 5.0 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/53-location-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 73ff684cbe174d564d2d70e58a05dc66
3f1a362c547760db9f7d286e4ca8f2eccb8fd307
1bea29393ba51bc7d2a287a7ecd77c35f80ec4c707644efa5a8061ab868a93e9
GET /wp-content/uploads/2018/10/53-location-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 4952
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fadf-1358"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
149.210.189.25200 OK 16 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png
IP 149.210.189.25:0
File type PNG image data, 900 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash 085c8a9031293008fece6aba92c24dfc
f06a0d5ee5e6fad2eca25a02e624b05c956b564f
1f099b4c6f6fc77501882e2862cacf59acce0c2771bb3ed23168dfdafabcf40e
GET /wp-content/uploads/2019/07/jorrit_boerma_logo_2019_transparant.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 16492
last-modified: Tue, 21 Jul 2020 14:28:11 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fb7b-406c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
149.210.189.25200 OK 4.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/36-smartphone-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 90f75159ffdc7f3f5eab53cf7aaebb14
5ad2d39ced40869a1c555c844b0f9f089e5ff02e
b1be4f68d3c521c4d4b5fe684e7dc624b18b303471f936fea9cbb22578e2d155
GET /wp-content/uploads/2018/10/36-smartphone-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 4889
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fadf-1319"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
149.210.189.25200 OK 276 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png
IP 149.210.189.25:0
File type PNG image data, 264 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a136b62005b12e56ed5deb85b7f454f
53fed8a4edb506ff8934a9087cace97e091eb6b5
c21f355ff7206fe7a7ece0a0a9f8d3a11fa6a20844b6f24ee55f3fd46cb7d0bc
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn5zjhom2fqbuhffhw3pk2auua939pxpfanji.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 276
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "114-5c3f309282317"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
149.210.189.25200 OK 2.8 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/42-email-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c9129503a96684399982e945a883a78
806c89766700b6827fa20af5da7c5c77a3611f65
cbaca883a047ea23874b657578c3732aea62ac35bea1a6f199b7c01fbbfdc430
GET /wp-content/uploads/2018/10/42-email-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 2764
last-modified: Tue, 21 Jul 2020 14:25:35 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fadf-acc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
149.210.189.25200 OK 6.1 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_23-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e6a8994b20a49c9abb08142ae194372
cffae4bd4c5489bc993c1cbd4142f0ea93265744
b7354628017d1827aaf049311f7220692217b9217cf8f325f80561ce057d4dba
GET /wp-content/uploads/2018/10/asset_23-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 6100
last-modified: Tue, 21 Jul 2020 14:25:36 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fae0-17d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
149.210.189.25200 OK 293 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jorrit-boerma/style.css?ver=6.1
IP 149.210.189.25:0
Hash e19bfceb54a7503b54936dd7af4681ed
b7093d46a40d4b55073a40f93e0b4012ae8976cd
b0eea7eac87327cdd7c4303539c68f0ed73aa339fc1a27d5633c3c496cf55d8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jorrit-boerma/style.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
content-length: 293
x-accel-version: 0.01
last-modified: Tue, 13 Mar 2018 08:22:16 GMT
etag: "19c-56746f4ccfe00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
149.210.189.25200 OK 5.9 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_29-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 36f6303528395fc84209fda3e08c3d52
f4639aaa1486369c072eff6ac09b9423d31017bc
6df4dcc92c0b7ce9f98981c0fa2715c2d9a6566671b2e8de820855b0ac6610b5
GET /wp-content/uploads/2018/10/asset_29-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 5893
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fae1-1705"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
149.210.189.25200 OK 384 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0594.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=Canon, model=Canon EOS 7D, xresolution=130, yresolution=138, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 7.5 (Windows), datetime=2018:10:15 15:59:50], baseline, precision 8, 1920x1280, components 3\012- data
Size 384 kB (383593 bytes)
Hash 8248ddba1ffebd9e195f3e4269960c12
e21614c59a93dbe27fd73fdeeaa1e5e264b84a39
cc0084fd5458c311ef66e41f61f37694d90806756977d08a27f9dfa30426e040
GET /wp-content/uploads/2018/10/img_0594.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/jpeg
content-length: 383593
last-modified: Tue, 21 Jul 2020 14:25:53 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16faf1-5da69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
149.210.189.25200 OK 4.4 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/asset_26-128_bruin.png
IP 149.210.189.25:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash b1609967c4a9c2e8c25d444b31dd8a3c
61741bccf8a2422a32563f6ecace97bcffd356c5
18d99746ced664e2a4a07d414fd9485e27ba16a51beb26858e9b80d1bd41cad0
GET /wp-content/uploads/2018/10/asset_26-128_bruin.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 4424
last-modified: Tue, 21 Jul 2020 14:25:37 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fae1-1148"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
149.210.189.25200 OK 456 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png
IP 149.210.189.25:0
File type PNG image data, 536 x 171, 8-bit/color RGBA, non-interlaced\012- data
Hash c1beead3ca1b05786fab0172a623a86b
d89e7c8c2af49c2fd4c1d62fe36383de01db6d48
5653c14169450d258081d4f7f6c3229e622bbf4e05f0ed02d9975648adb36c00
GET /wp-content/uploads/bfi_thumb/dummy-transparent-p86fdyn9atr8ji9fcd8bkpa0onqi578zmo1w4e1kmm.png HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/png
content-length: 456
x-accel-version: 0.01
last-modified: Fri, 04 Jun 2021 16:18:01 GMT
etag: "1c8-5c3f3092632fb"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
x-powered-by: PleskLin
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
149.210.189.25200 OK 471 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_8820.jpg
IP 149.210.189.25:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
GET /wp-content/uploads/2018/10/img_8820.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/jpeg
content-length: 431838
last-modified: Tue, 21 Jul 2020 14:26:19 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f16fb0b-696de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
149.210.189.25200 OK 748 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2018/10/img_0588-1.jpg?id=408
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 748 kB (747870 bytes)
Hash 200dd5427857b4f6ca63ff6b23f9a0be
fd7b29350d112617628e0505da4701dbe4356b71
3c7ba7677dca68172e9fe651f5324af6d2f2d6e7f19e7f72a7832c0b9cf7a220
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/10/img_0588-1.jpg?id=408 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:28 GMT
content-type: image/jpeg
content-length: 747870
last-modified: Tue, 21 Jul 2020 14:25:51 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:28 GMT
etag: "5f16faef-b695e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900
IP 142.250.74.10:0
Hash f882d2dc7e15b2c620a377dca8749119
ed13b631f98788252b782a058835769eb0e27908
8d6f5033470e4084d999216cca98a40a2aadb521438a30c7ebf84fc20dee85ba
GET /css?family=Open+Sans:100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic,100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 03:11:28 GMT
date: Sat, 05 Nov 2022 03:11:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
149.210.189.25200 OK 728 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/dscf7331-2.jpg
IP 149.210.189.25:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, manufacturer=FUJIFILM, model=X-H1, xresolution=126, yresolution=134, resolutionunit=2, software=Adobe Photoshop Lightroom Classic 8.3.1 (Windows), datetime=2019:07:22 14:45:56], baseline, precision 8, 1920x1280, components 3\012- data
Size 728 kB (728010 bytes)
Hash b70578246e2d33b89298f69a2f745f71
e5374c1be8a58b628ea1e8624db3a5acabec0c22
074f0b882ffdb65267a64d411ae41fd7c42795bfe900b6ecbb0b3760653b9be9
GET /wp-content/uploads/2019/07/dscf7331-2.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:28 GMT
content-type: image/jpeg
content-length: 728010
last-modified: Tue, 21 Jul 2020 14:28:09 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:28 GMT
etag: "5f16fb79-b1bca"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.210.189.25200 OK 9.3 kB URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.210.189.25:0
File type ASCII text, with very long lines (11126)
Hash c45f4e89ab848b6c513feb666883a4c9
ec589209ca5dc04e5d0d4134ed65c0fad0519e08
4704cb854bca9a454b724f02b9bbfb6ad18e04272f8b2cd1bc5bc9c17a386db4
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg
149.210.189.25200 OK 1.1 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 0821418891f5fde7c05c1c3efa7ccd26
d40201d19ec539b681e0f1577f5c1bb2a6d7684e
d827f4f15b5a11a24efcdce04cfc75d0b0ccc0baed8515177a8d3fe9ea08cc6f
GET /wp-content/uploads/2019/07/cropped-jorit_boerma_camera-32x32.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:28 GMT
content-type: image/jpeg
content-length: 1113
last-modified: Tue, 21 Jul 2020 14:28:07 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:28 GMT
etag: "5f16fb77-459"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
149.210.189.25200 OK 8.0 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564
IP 149.210.189.25:0
File type ASCII text, with very long lines (38932), with no line terminators
Hash 972ae5a8bd9e4d1c6fd40219b282e939
49a81af7f6587b9145872b0a1d10ed2a2683cd40
e9feba924f2ec600ed5845ed1adf4ad5ab062af62871a32cd464a78056f2a623
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/mk_assets/theme-options-production-1600275566.css?ver=1600275564 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Wed, 16 Sep 2020 16:59:26 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"5f62446e-9814"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
149.210.189.25200 OK 3.2 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722
IP 149.210.189.25:0
File type ASCII text, with very long lines (6730)
Hash 31792d96d62e548370fbdec0d4647235
d8fd0cd1b7fecee68397975f2b3ef700aef169d2
e2ab1f5b958ccf5d02bb1978f612d7a9650b964f7287f1dce05984764b5811f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/smoothscroll.js?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-1a4b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:46:16 GMT
expires: Fri, 03 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 105912
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
149.210.189.25200 OK 157 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722
IP 149.210.189.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 157 kB (157300 bytes)
Hash fc5416c1d75dba64e5b544f2164c77d4
f93463883a1ce21b71bee8438118a372d2c5a5fd
48867e2a40709737db55dd2c83490a0180ffbba4827f4de86cd6a639bb643366
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/stylesheet/min/full-styles.6.9.0.css?ver=1615529722 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-24ad5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 163717
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
149.210.189.25200 OK 54 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1
IP 149.210.189.25:0
File type ASCII text, with very long lines (5334), with no line terminators
Hash e75550995d0d494b0a5ddd233c2ba117
8559923ef6055576c9b78295418423f0b960f8a2
a0cd976eed50189918e766ae68fe38458e55c797f4f17e0ebaba9f532ac8c353
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"63614435-14d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 29 Oct 2022 12:31:58 GMT
expires: Sun, 29 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 571170
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg
149.210.189.25200 OK 180 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg
IP 149.210.189.25:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 816x350, components 3\012- data
Size 180 kB (179605 bytes)
Hash 97cb91d491b2d02c1c013abd8dca32e7
f44077fa944841e120047b56c2786d03e0e52d4e
f2eed4658b3217cc304b4d0f3ebce414117204634b2a03d4cc3db22ef9f48dd3
GET /wp-content/uploads/bfi_thumb/img_2670-ossrdoo16pdnj5b6y2hgnnvy6x4wjyr1eg0qo8wkvg.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:28 GMT
content-type: image/jpeg
content-length: 179605
last-modified: Thu, 23 Jul 2020 14:59:48 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:28 GMT
etag: "5f19a5e4-2bd95"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
149.210.189.25200 OK 36 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0
IP 149.210.189.25:0
Hash 3089366e8a5728e4014fca3bad254087
ed709f38995af1b40c779102ca17a5d727ae4b65
d0b2eb3dd5202ef30603fe107cbea5df0f1fc0614a6bd41705f2ba18562bd4b0
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-row.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-73f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
149.210.189.25200 OK 44 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0
IP 149.210.189.25:0
Hash 760d39362a095f62649d294c0c5061ff
36b064339419e7e227f09837414112a93c52bf76
0161afcfc2164dd9319cee242e30419f1539bd9aafc282edb23d1a459ad0b84a
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-column.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-11cf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jorritboerma.nl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Oct 2022 18:59:14 GMT
expires: Tue, 31 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 375134
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
149.210.189.25200 OK 17 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0
IP 149.210.189.25:0
Hash b55f174074dc84a30988f75a6628eb06
08e6df8e0a123786a6e69476b7655408e8bcbcf4
8f5c5de47fad3fa470a36c1fd67d3e39d7cb93e1439eda7e01650dfa387372c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/js/shortcodes-scripts.min.js?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Fri, 04 Jun 2021 16:16:58 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"60ba51fa-12dfd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c529f3f6856ef48de1a036dff13e0012
e6aa76377376e8144bb8c7574820c1cb262660c3
5824899ab2efa0129ca31c289db9e4711d44bad6a05251d630bab656092e000c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6913d09d2b8cbd80ef370c1997143ec
61873208c5852b9f13b1a60d408ec8b239c48c81
291bfcf11419acdfafebb4a1d789302bcbae25eff3a3a847a251e912ef5854b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378
IP 149.210.189.25:0
File type ASCII text, with very long lines (31989)
Hash 6e217e1c2aa6beb4e1c7c87bacfe4ec6
9bcf1c6186849e5f279a858ef58a76f4278ddd9c
1c8dc70c7eefe88d6aa3b965b6211972410184479944e4a2135aa807dec8f473
GET /wp-content/themes/jupiter/assets/js/min/full-scripts.6.9.0.js?ver=1620817378 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"609bb5e2-46757"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 05 Nov 2022 03:11:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0
IP 149.210.189.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/jupiter/header-builder/includes/assets/css/mkhb-render.css?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-15db"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3ad551a67fd401a7785de9b3e6c10e06
8c4fa19eedb22dd081ce36e0e4498a4dc508969f
f67999e7dd4a7ba445de9c019eeea697d077fd7c9b6b58370d7ae0b68a4ac4bf
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:11:29 GMT
server: ESF
cache-control: private
content-length: 30911
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c529f3f6856ef48de1a036dff13e0012
e6aa76377376e8144bb8c7574820c1cb262660c3
5824899ab2efa0129ca31c289db9e4711d44bad6a05251d630bab656092e000c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6913d09d2b8cbd80ef370c1997143ec
61873208c5852b9f13b1a60d408ec8b239c48c81
291bfcf11419acdfafebb4a1d789302bcbae25eff3a3a847a251e912ef5854b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5de5a7ee16d3f3164758282fbecef0a3
82fb2ac7d306e1f9724adc0ba2ef9e549baa9100
ad55f91c5fb1f872310a5f5777a65b79a338138d241a674449da2e0edde1f2ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c849af827d6fb5966450475d3bc7c180
555a2af46685566d647090060a47f45e2410a2f0
e51a885db5e01667e1c33002c621d273f9a1fde5386f583eccdcf539c6be3d3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
149.210.189.25200 OK 55 kB URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0
IP 149.210.189.25:0
File type ASCII text, with very long lines (65358)
Hash 5d36120ad751d4630aca8200cd2dd4f1
d501b51036bcbe7fb982e761190e32d3ef67e2c8
ea9a9ed4b120b0c6ccd5071dc801b54478eeca6b5ca779376a25d2d5b6a0e2c1
GET /wp-content/plugins/js_composer_theme/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"608a92e4-76828"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3e5d58427eacbf85efaa80becf42008
0ece2b4978596624c49ea661ea36915db8fcd8d4
ef138bbfa2ef9fd69c04c4ae0bff50c69b3723ee8cf2fc262f5711e307915330
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
216.58.207.214200 OK 9.4 kB URL HTTP/2 i.ytimg.com/vi_webp/AFyPFXAc7Gs/hqdefault.webp
IP 216.58.207.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8c7360f053849a8b38e53c66aa46cd07
55e87ea4be36ac28158d7dfb0185b10ac81fb000
7d1d925ea2342ad75edeab75e3062e2abd088c5d60e699c7a4307904ee18ee41
GET /vi_webp/AFyPFXAc7Gs/hqdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Nov 2022 03:11:29 GMT
expires: Sat, 05 Nov 2022 05:11:29 GMT
cache-control: public, max-age=7200
etag: "1563361880"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c849af827d6fb5966450475d3bc7c180
555a2af46685566d647090060a47f45e2410a2f0
e51a885db5e01667e1c33002c621d273f9a1fde5386f583eccdcf539c6be3d3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 05 Nov 2022 03:11:29 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e064e4f9dc56ed0876614fe5cd8c5d3
d43bddadb097c945da2a67ffefd09abc38b49894
e179cb8ec5a0614789ede56e47dd7e3cfaec5e1effd5b498f4ee5ce1f1e31d59
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1246
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 05 Nov 2022 03:11:29 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.8 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash f52b183aa213fb8ee6a05aae9fdcf67e
838b42a6466919e957c5ae759fd99156165d07d6
bec6e6e966f58cd6a46f24f99801b6a60078e7a85a89e1c9ed5cc01c4fbda271
GET /ytc/AMLnZu97ViJgpYW9mAPtVdPQkgRcc2KvlUFfPKlK8fDitsA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3841
x-xss-protection: 0
date: Sat, 05 Nov 2022 03:11:29 GMT
expires: Sat, 05 Nov 2022 08:11:35 GMT
cache-control: public, max-age=86400, no-transform
etag: "vdab1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3e5d58427eacbf85efaa80becf42008
0ece2b4978596624c49ea661ea36915db8fcd8d4
ef138bbfa2ef9fd69c04c4ae0bff50c69b3723ee8cf2fc262f5711e307915330
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
149.210.189.25200 OK 110 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/5.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Size 110 kB (110494 bytes)
Hash 662e841bcc02a1bf35336472fe87aaee
8ba8d78947b302f91070299caf208e51d83da470
6cc4bee4be423343ee89d929345348ab669462b18e5431d9d2bdb1f50bc06ecb
GET /wp-content/uploads/2019/12/5.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:29 GMT
content-type: image/jpeg
content-length: 110494
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:29 GMT
etag: "5f16fb82-1af9e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/4.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 8ce965feb7bc0bcf383316d178461ec1
0fcdfc61b19b1f576fb2cb61e44760fb03c882f4
25192d69892121dfce124ae416244b5c59726de9f3b15a8e80e9a670f1a54407
GET /wp-content/uploads/2019/12/4.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:29 GMT
content-type: image/jpeg
content-length: 70003
last-modified: Tue, 21 Jul 2020 14:28:18 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:29 GMT
etag: "5f16fb82-11173"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
149.210.189.25200 OK 70 kB URL HTTP/2 jorritboerma.nl/wp-content/uploads/2019/12/6.jpg
IP 149.210.189.25:0
File type JPEG image data, baseline, precision 8, 960x165, components 3\012- data
Hash 6a9a3d87fe2e22a43aecff1d85e8675a
0af8fa078fe8c1a12c0759421abf47e8abfcf806
1625649f281f170b01a1e745c4efc6d359acf06338214bee619f823212c14275
GET /wp-content/uploads/2019/12/6.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:29 GMT
content-type: image/jpeg
content-length: 69970
last-modified: Tue, 21 Jul 2020 14:28:19 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:29 GMT
etag: "5f16fb83-11152"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
149.210.189.25200 OK 6.7 kB URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js
IP 149.210.189.25:0
File type ASCII text, with very long lines (22195)
Hash 56072b07f2d4c773d430e631a712baec
dc59b23d7fc101b71ef38cf3205ffc8fef8e018d
776e12ac07687d5b57846bb333a541accbaf86eaaf4c61a04ab34522462c5dfa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/async/min/jquery.flexslider.js HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:29 GMT
content-type: application/javascript
last-modified: Wed, 12 May 2021 11:02:58 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:29 GMT
etag: W/"609bb5e2-56b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f1d20a66ec7f90403f0e97499dc3a07
1fbad084efe465a74983f1d6fd7acd57bec2300b
4a42c2b5044d70efe385a63719f3049ead9f08a72f1bd38ce8910262e0f4e601
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgVzwsEDb6L1l6qae_BieNGh1pQAKCBS7na6L0A_nLFmQCIQC9Cb_nDQJM9OYertyIiD_ctzoOjuEvQRfcZD8X3kzSwA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
91.90.45.172200 OK 120 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgVzwsEDb6L1l6qae_BieNGh1pQAKCBS7na6L0A_nLFmQCIQC9Cb_nDQJM9OYertyIiD_ctzoOjuEvQRfcZD8X3kzSwA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Size 120 kB (119515 bytes)
Hash b364348597d40cf0051413a683fa6489
4e2e3f63a9e32c7267c402643152746e1313dda2
719e5ea4681ea57792b7a7457443384f7a35cbab2a81b1e8c75ae3ede5e3f700
GET /videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=2347863&dur=60.851&lmt=1667121548673440&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRQIgVzwsEDb6L1l6qae_BieNGh1pQAKCBS7na6L0A_nLFmQCIQC9Cb_nDQJM9OYertyIiD_ctzoOjuEvQRfcZD8X3kzSwA%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-119514&rn=1&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:19:08 GMT
Content-Type: video/webm
Date: Sat, 05 Nov 2022 03:11:30 GMT
Expires: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 119515
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
91.90.45.172200 OK 66 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Hash af527c5cc711865daedf643c2817c563
8cd61390d8347209ef75502677c12cb6cbfd6957
810609b9415daf07b4b26b06e7ea59f2636dd444eff36e9aa4b037a69c588fcc
GET /videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-65916&rn=2&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:22:29 GMT
Content-Type: audio/webm
Date: Sat, 05 Nov 2022 03:11:30 GMT
Expires: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65917
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f1d20a66ec7f90403f0e97499dc3a07
1fbad084efe465a74983f1d6fd7acd57bec2300b
4a42c2b5044d70efe385a63719f3049ead9f08a72f1bd38ce8910262e0f4e601
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=65917-131452&rn=4&rbuf=3893&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
91.90.45.172200 OK 66 kB URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=65917-131452&rn=4&rbuf=3893&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type OpenPGP Public Key\012- data
Hash a000312a77fe98e30f9886333efccb1c
f175bfff13de384a8bad6e6faa53b725c19dd81f
1384747265478415f1ca815194d927c8f251875195709c79b0a71e89e3198afd
GET /videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=251&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=audio%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=998509&dur=60.881&lmt=1667121749645926&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5311224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgRyzkD4Lb3x2a1VHRgTtYUQEZY1nGI_6-QHb2f7HCnrICIGv_pTCOSjreV4Nvbr-GidHcld9PMkLJb8j87LE_kd06&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=65917-131452&rn=4&rbuf=3893&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:22:29 GMT
Content-Type: audio/webm
Date: Sat, 05 Nov 2022 03:11:30 GMT
Expires: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 65536
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgUzZq8mgb42cDsH7wdGVXeyZ8oXtvH1t36BiGmGhJtA4CIDpd4Yh_-eYfDquGElGEc9JPusJw_tBuaI4l1gnkllM4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
91.90.45.172200 OK 416 B URL HTTP/1.1 rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgUzZq8mgb42cDsH7wdGVXeyZ8oXtvH1t36BiGmGhJtA4CIDpd4Yh_-eYfDquGElGEc9JPusJw_tBuaI4l1gnkllM4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg=
IP 91.90.45.172:0
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Hash b0059610a977e5fe8e1d8875f192ba5f
60b705b89ab7ef389c8bcbcec7c765602120fd9a
da577d46c43a8d4a4c83014a20de0e4fd2277da785c8b062b800082eb21e1f14
GET /videoplayback?expire=1667639490&ei=YtRlY8fLAZKMyAWBmYqgBQ&ip=91.90.42.154&id=o-AEqw1Jml9icv9tq2NKkr03LHr9fdJTLJDBEPkubNgsbg&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=youtube&requiressl=yes&mh=zf&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeen7k&ms=au%2Crdu&mv=m&mvi=1&pl=21&initcwndbps=2231250&spc=yR2vp7T49rUewUxAdq6Tra6VakeglS4&vprv=1&mime=video%2Fwebm&ns=gkR-UvO2JNw2Df5ogg518ycI&gir=yes&clen=8388740&dur=60.851&lmt=1667121548414915&mt=1667617490&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&txp=5316224&n=-v4RUhoNd3Ly2A&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AOq0QJ8wRAIgUzZq8mgb42cDsH7wdGVXeyZ8oXtvH1t36BiGmGhJtA4CIDpd4Yh_-eYfDquGElGEc9JPusJw_tBuaI4l1gnkllM4&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl%2Cinitcwndbps&lsig=AG3C_xAwRQIhAJ5sAPVc8p0iwN2zZJhKPdU8w5_MctLFZBIRUPSgjatGAiBhV-8ZkXDuBo2AX8LyezVcNiWWhh3eYpgEpJ7dj04efQ%3D%3D&alr=yes&cpn=uHuWB9FcMDJ2pLd_&cver=1.20221030.00.00&range=0-415&rn=3&rbuf=0&pot=D-7U_qzJp7W17u_pskoNq0RPNgLJPQzJILn9CL7DaV1i2Ipa49ZzQA6mHwW3Tr9fglLPhZUPlpM0ZEqAiP9zIkrla075NN2G0oMJ2QMPPbo12Zg5Sqk5F2Wl6kdvM6KTRzqBgL8SZxg= HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 30 Oct 2022 09:19:08 GMT
Content-Type: video/webm
Date: Sat, 05 Nov 2022 03:11:30 GMT
Expires: Sat, 05 Nov 2022 03:11:30 GMT
Cache-Control: private, max-age=21300
Accept-Ranges: bytes
Content-Length: 416
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b19a2f3-4e39-45b1-a802-aa79f81a8a31.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b19a2f3-4e39-45b1-a802-aa79f81a8a31.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a3f235a8a6a70aea08ca45b9025f073
3388d99d480ba57fae4a0ebef3e29a5a9faa3cfc
4afbfa5bd1748be41737f5471ef04f9900cdf8dbc7a9a96e4dc67cc845b3b25e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b19a2f3-4e39-45b1-a802-aa79f81a8a31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7517
x-amzn-requestid: c0a49a26-ceff-4eb4-b7ad-5dc8da5b9a66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajK86HsOoAMFfFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578b85-405cb2a5451f04986800202a;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:08:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Zg1JqihZgfL2qA-JFJR09hA5u5Q-jCxUW5R6AewCxDOnrHFGmV4b1A==
via: 1.1 65cd593770fc4ba0453da1c7897f675c.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 10:21:00 GMT
age: 60632
etag: "3388d99d480ba57fae4a0ebef3e29a5a9faa3cfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg
IP 149.210.189.25:0
GET /wp-content/uploads/bfi_thumb/img_20190217_083955-2-ossrfjefli83h333k76d8iuc8v961t5i5egm08zctc.jpg HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: image/jpeg
content-length: 113818
last-modified: Thu, 23 Jul 2020 15:01:28 GMT
cache-control: max-age=31536000
expires: Sun, 05 Nov 2023 03:11:27 GMT
etag: "5f19a648-1bc9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.2 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Tue, 01 Nov 2022 16:07:17 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"63614435-222e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/player_api?ver=6.1
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/player_api?ver=6.1
IP 172.217.21.174:0
GET /player_api?ver=6.1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 05 Nov 2022 03:11:27 GMT
date: Sat, 05 Nov 2022 03:11:27 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=zRHt5aXVflU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=pq0o-dyKzXk; Domain=.youtube.com; Expires=Thu, 04-May-2023 03:11:27 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+203; expires=Mon, 04-Nov-2024 03:11:27 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/assets/js/plugins/wp-enqueue/min/webfontloader.js?ver=6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-30d8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-render.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-1a16"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/jupiter/header-builder/includes/assets/js/mkhb-column.js?ver=6.9.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 06:15:22 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"604b06fa-cdd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 02:05:03 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"6361d04f-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0
IP 149.210.189.25:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jupiter-donut/assets/css/shortcodes-styles.min.css?ver=1.3.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: text/css
last-modified: Fri, 04 Jun 2021 16:16:55 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"60ba51f7-64a9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
149.210.189.25200 OK 0 B URL HTTP/2 jorritboerma.nl/wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 149.210.189.25:0
GET /wp-content/plugins/js_composer_theme/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: jorritboerma.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jorritboerma.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 03:11:27 GMT
content-type: application/javascript
last-modified: Thu, 29 Apr 2021 11:05:08 GMT
cache-control: max-age=2592000
expires: Mon, 05 Dec 2022 03:11:27 GMT
etag: W/"608a92e4-509d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2