r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4314
Expires: Tue, 27 Sep 2022 23:19:28 GMT
Date: Tue, 27 Sep 2022 22:07:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 21:15:33 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: G3f_AbDyVoYFroN87JMcKWW6YYORT3cfIr5BGqIewEBBb7LV8_w7IA==
Age: 3121
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kg_sWtPaCBvNNv6mRmk860CJ7PKnt5L8GouJ6uZyy4QdAp77KyUZhw==
age: 45801
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:07:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.nikkioverkamp.com/dpdch/
151.101.66.159301 Moved Permanently 162 B URL HTTP/1.1 www.nikkioverkamp.com/dpdch/
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert openphish DPDgroup
fortinet Phishing
GET /dpdch/ HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Location: https://www.nikkioverkamp.com/dpdch/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: kxrkg2fdyk
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Content-Length: 162
Accept-Ranges: bytes
Date: Tue, 27 Sep 2022 22:07:34 GMT
Connection: keep-alive
X-Served-By: cache-bma1673-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664316454.154525,VS0,VE484
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 21:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 21:11:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8z0a1G4gH5ps9AplPC_4wz_PtsXIWNyQ1p4oOfyjINUy0C6WHh1pLA==
Age: 3408
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1562
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:35 GMT
Last-Modified: Tue, 27 Sep 2022 21:41:33 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qFdOU3LmxWVT5+WELrasjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: q8JPqXc0mYrpU9OzOvg2IVoGc5s=
www.nikkioverkamp.com/dpdch/
151.101.66.159404 Not Found 12 kB URL HTTP/2 www.nikkioverkamp.com/dpdch/
IP 151.101.66.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8160), with CRLF, LF line terminators
Hash e63ae3b430efc16b7e0fac20f6d3a86d
b88027d996dcfc95bfa85f70248906ccaec041d4
44170f6178e18655fd6a9cd735ebc85713fb82e09221574396f63f0eae022c1f
Analyzer Verdict Alert openphish DPDgroup
fortinet Phishing
GET /dpdch/ HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.nikkioverkamp.com/wp-json/>; rel="https://api.w.org/"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: NO:Not Cacheable
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316455.698431,VS0,VE1370
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 11680
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/style.css?ver=4.0
151.101.66.159200 OK 13 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/style.css?ver=4.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (2217)
Hash a99af3fd7ef3b52c953556ae896c57ee
c779bbb454ee34cbe491add46a66408183043dd0
5c658b751bf3ef3fb3e16510e988124fedfb3f3340d5fb0ebf103bd7881a45c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theme-kylee-more/style.css?ver=4.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-e262"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.155124,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13135
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.css?ver=6.0.2
151.101.66.159200 OK 1.3 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.css?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (301)
Hash e148e04de433a01338124a8edd392c48
7a2aa67941b6ff325fe2a32aecc8c758788f4cf5
b7e63edc69284fe9e0dbb2d26b2e74ac24978afcb8c98b57598028e04c87379c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 02 Sep 2020 09:28:40 GMT
etag: W/"5f4f65c8-c63"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.155198,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1281
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
151.101.66.159200 OK 14 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (43771)
Hash 1047dd6779111ec73736abd71a40fef9
e08643922ce9a1a488f2a72c0341807f59f7528e
d85287eacda4e97356cf1b53ec765e34c8913558d6fb485b334debf78c89a3bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-15b64"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.157364,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13906
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
151.101.66.159200 OK 18 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (41679)
Hash b60d2ee2d0eedb46e164da85709345e2
6dd31219fd513aee2baab467e21893190387eb85
47d367a58c10b48c4af81c7b62816916ac9892273aaf8a26739c9d0ce06816b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/components/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-19b81"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.163656,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 18457
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
151.101.66.159200 OK 260 B URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (522), with no line terminators
Hash 7cf7ccb7ba8d5931f9e810240a2e7847
fead878c42a0d04cc52f91605248b6cb046397f1
5bc1ae8b638ec9a6d622567a36330c66ba87a9a32d0f2cf29258d12da0acb648
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-20a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.164937,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 260
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
151.101.66.159200 OK 804 B URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (2256)
Hash 7964864e493636e9cc89bdc4ecc64676
c10647ac7177e6f407a7b04f35ddedc59c1a59c8
fded17f4a1a84dbc47bf9b52fa16120bcd15bc62d6ce98667e2358012a076c28
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/nux/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-ae2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.164656,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 804
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
151.101.66.159200 OK 19 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d2f99a45e2b882148a3504b6f63a0d2d
1bcee7336ef3e49ded4f8e91ae399c0abe2779ea
25b5801533392bb7f035dc79857bb1dbfcb9a197a134afb721fc854df4d755b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-1dcbd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.164464,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 19374
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
151.101.66.159200 OK 4.2 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (20364), with no line terminators
Hash 7164b7053a9919f29963af127431de04
c4cfb7f2e04ac6cfce7a0a8ea4b889545d969020
d8b3e1675cde3599a9c9cc5887e6b59c30f4d8aacb996634d337f3be73fefc3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-4fac"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.165155,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4222
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/nmedia-mailchimp-widget//plugin.styles.css?ver=6.0.2
151.101.66.159200 OK 798 B URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/nmedia-mailchimp-widget//plugin.styles.css?ver=6.0.2
IP 151.101.66.159:0
Hash 605a4e3c7cfe5744c18b989486729311
ba39acc761851400f8b9cf284fd5c45da8a09c47
ae44b0656e493f9d6e199e9ad64005e6b26a2b97625005c4849765a2c8f2a698
GET /wp-content/plugins/nmedia-mailchimp-widget//plugin.styles.css?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 02 Sep 2020 09:28:40 GMT
etag: W/"5f4f65c8-896"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.170428,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 798
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/lib/gutenberg/front-end.css?ver=4.0
151.101.66.159200 OK 1.9 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/lib/gutenberg/front-end.css?ver=4.0
IP 151.101.66.159:0
Hash e05d52a47584849e31b940247da827d4
95fc7ceeb5544816ad34c82cda495012fed19262
5931a53ee351d1f206a4989e40069b8f7100eb81421bba513d8089c8522c5717
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theme-kylee-more/lib/gutenberg/front-end.css?ver=4.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-20d3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.171356,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1892
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
151.101.66.159200 OK 453 B URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
IP 151.101.66.159:0
Hash 533a1acd5421a6505b64187ba1d6fd9e
1b3bcb9b25baa8c740c5034dcf655e08c95dfc47
1b41a727d640f2219e1a9b62c8c61385ce1103c1730921456332a892f8b56c8e
GET /wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 03 May 2022 17:52:44 GMT
etag: W/"62716bec-4cc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.171619,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 453
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
151.101.66.159200 OK 34 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (65447)
Hash 22b0253c0ecce70e41e296d176b0d972
a161c363d2092739db21bfeb2cf23c980ec71580
181967b7928e133789c8edbb8bdcb73d44a0328d884b613f8ebfb182b4c3c52e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-15db1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.172370,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34060
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.js?ver=6.0.2
151.101.66.159200 OK 341 B URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.js?ver=6.0.2
IP 151.101.66.159:0
Hash d8d438f08eb095b1dee60ba5151498ef
ef0112e8e623f2e04d56da180e1ce53f5dbcc29f
b5c90978b1b7aa8795daa1bfeee421614813d8e1f1fc61f208a884a1e13d88a7
GET /wp-content/plugins/pinterest-pin-it-button-for-images/ppibfi_pinterest.js?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 02 Sep 2020 09:28:40 GMT
etag: W/"5f4f65c8-1f4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.177153,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 341
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
151.101.66.159200 OK 4.4 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (11126)
Hash 24957bc8161f979c6e661f46fdc3974f
fa1237ffe8b3745baa78ac481239038e133fcc17
46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.176941,VS0,VE13
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/nmedia-mailchimp-widget//js/script.js?ver=6.0.2
151.101.66.159200 OK 270 B URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/nmedia-mailchimp-widget//js/script.js?ver=6.0.2
IP 151.101.66.159:0
Hash f327d9b5a871fe040245948e6a3a3d5e
87a0ef6cff38ea00673a269004e5a89bca9ec505
e8088b9e86329f46d0dc22aa1327b778283dc27d580066eeb0b9c2df556b2ae7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nmedia-mailchimp-widget//js/script.js?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 02 Sep 2020 09:28:43 GMT
etag: W/"5f4f65cb-1be"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.212031,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 270
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
151.101.66.159200 OK 2.0 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
IP 151.101.66.159:0
File type ASCII text, with very long lines (4270)
Hash ea21a921bcc5f186ef74c5066452f440
1665656b8b05ebe0dec993bef55aeaf8d2805e6a
2b8b6341d7d45bf8aa9b0d22b29379bb18d0428b3f1dcd402347632b617a8ea2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:40:22 GMT
etag: W/"61d9f6b6-1193"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.211872,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1971
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/jquery.matchHeight-min.js?ver=1.0.0
151.101.66.159200 OK 1.3 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/jquery.matchHeight-min.js?ver=1.0.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (531)
Hash 73f2ac317992b9188c26e08ec87350f7
07aa53c9695100431f5084f258a9f95b65186a51
40d0fbe9227738f7c7a0d6e00dc149c22239f5730b95aed146de7414ac60e159
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theme-kylee-more/js/jquery.matchHeight-min.js?ver=1.0.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-be5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.213415,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1290
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/matchheight-init.js?ver=1.0.0
151.101.66.159200 OK 514 B URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/matchheight-init.js?ver=1.0.0
IP 151.101.66.159:0
Hash e9a9e61346c90db87bc73cb64a631374
f84fc1e4fef52157737ca43941db2f010965ff42
d8da75f16fd3d69e86198244146354526e4e807cc40e6582e961e8c5c238db13
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/theme-kylee-more/js/matchheight-init.js?ver=1.0.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-3c4"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.213385,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 514
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/responsive-menus.min.js?ver=4.0
151.101.66.159200 OK 1.5 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/js/responsive-menus.min.js?ver=4.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (546)
Hash 6d513c93e5a603a721effb1dee3fc2fa
d52083f629ce77964785f2a78e246c4f395f9c05
49ccc2409367afe73441d60e954b716e68a9d0787556b53f3a15fcafa4e6b6df
GET /wp-content/themes/theme-kylee-more/js/responsive-menus.min.js?ver=4.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-e5c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.213363,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1495
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/uploads/2022/01/nikki-circle.png
151.101.66.159200 OK 1.1 MB URL HTTP/2 www.nikkioverkamp.com/wp-content/uploads/2022/01/nikki-circle.png
IP 151.101.66.159:0
File type PNG image data, 1694 x 1635, 8-bit/color RGBA, non-interlaced\012- data
Size 1.1 MB (1081359 bytes)
Hash 269d53e6794d4fe0966f91ec62a696a4
3e02914d2a80db3db3f527ecdc778be3dd5b2348
30b5a6c7fac7b5ee15907b91e6b85ec868a31817ea450417cb9949cafdb7492e
GET /wp-content/uploads/2022/01/nikki-circle.png HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sat, 08 Jan 2022 21:37:07 GMT
etag: W/"61da0403-10a77b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.211989,VS0,VE5
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1081359
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
151.101.66.159200 OK 5.5 kB URL HTTP/2 www.nikkioverkamp.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 151.101.66.159:0
File type ASCII text, with very long lines (15660)
Hash 17db16eba9de064a60b18a592b36634a
82fc955209623803111e48d5be3cf345315be6f5
1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 20:17:43 GMT
etag: W/"630e7067-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: kxrkg2fdyk
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316456.272370,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0
151.101.66.159200 OK 11 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (15127)
Hash 12edeac2c267241b4e928324613d2496
012c2f0dcbb5d18db0d6d2b3b9ff268ee3081887
021289568f40512b7b7932e04a9ee9f066e4a8eee5615e606131779b1a37c147
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/genesis-simple-share/assets/css/genericons.min.css?ver=0.1.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 08 Jan 2022 20:45:57 GMT
etag: W/"61d9f805-3b4c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.155148,VS0,VE126
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11443
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
151.101.66.159200 OK 1.0 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 151.101.66.159:0
Hash 8c5101cf326d40bd98df98a8d0c0519e
6e81a81ba411ac3f3ef44123ccbeb994c1363f84
7297a73ebadada2be39b896862257140781c6f221c08906553ae463a68ab290e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 27 Sep 2022 17:24:01 GMT
etag: W/"633331b1-aab"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.170279,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1028
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0
151.101.66.159200 OK 4.8 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0
IP 151.101.66.159:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (16200)
Hash fdfbf82cd639e681a9fc519837004cbb
681bb39c9dacaebf79b19544fd6c4f4b5290f6e9
c71660e2b9262573a62a4ce61e9d6d8e7920876243e55016115b02df2c52793f
GET /wp-content/plugins/genesis-simple-share/assets/js/sharrre/jquery.sharrre.min.js?ver=0.1.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:45:57 GMT
etag: W/"61d9f805-3f8e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.177286,VS0,VE127
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4824
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
151.101.66.159200 OK 4.2 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 151.101.66.159:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 658822ff42200cc95868774364216c56
f801f0f0ff37d24ae262422a640fe6027e958003
f707f992071dfa55c940bbe46c8ebf9cdde55dd87318b05b75cc189ff7c74810
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 17:24:01 GMT
etag: W/"633331b1-2fb3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.211935,VS0,VE123
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4212
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nikkioverkamp.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.0
151.101.66.159200 OK 3.5 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (1571)
Hash c49f2ad4638c17c98d534e8732d2c557
bbf4b6c92c33bac0cd2f20b9b44b26c841729359
808be5f0d83e7bde3a865198e1c9553c443bd8ab95fe13a377d5446f8371ccd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.9.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 17:24:07 GMT
etag: W/"633331b7-2e3b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.212041,VS0,VE363
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3479
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8432
Expires: Wed, 28 Sep 2022 00:28:08 GMT
Date: Tue, 27 Sep 2022 22:07:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8432
Expires: Wed, 28 Sep 2022 00:28:08 GMT
Date: Tue, 27 Sep 2022 22:07:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8432
Expires: Wed, 28 Sep 2022 00:28:08 GMT
Date: Tue, 27 Sep 2022 22:07:36 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Prata%7CPoppins%3A400%2C700&display=swap&ver=4.0
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Prata%7CPoppins%3A400%2C700&display=swap&ver=4.0
IP 142.250.74.10:0
Hash e0383a581f6b42436d0b4cfadb90cc96
38039ded54ea58b3beedf81b0382310321eb25df
6ad2edcb313106a481e92b59cde185d64ea6091520537f2e488e8d71c2d07975
GET /css?family=Prata%7CPoppins%3A400%2C700&display=swap&ver=4.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 22:07:36 GMT
date: Tue, 27 Sep 2022 22:07:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8432
Expires: Wed, 28 Sep 2022 00:28:08 GMT
Date: Tue, 27 Sep 2022 22:07:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 1603
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-98014947-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-98014947-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (2039)
Hash cec033a0c1772604c3223862a31c6290
44385f79c583e5e9744c18221e274898de10b00e
165db133613043acf3c99b56546ee38cb11ca16ecf5a56a85566608c5fa6f512
GET /gtag/js?id=UA-98014947-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Sep 2022 22:07:36 GMT
expires: Tue, 27 Sep 2022 22:07:36 GMT
cache-control: private, max-age=900
last-modified: Tue, 27 Sep 2022 21:09:45 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42346
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 1233
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F838bed0c-c665-42d6-8c20-1decd709953c.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F838bed0c-c665-42d6-8c20-1decd709953c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c58fdf09a7d552be0c8666522a29de7
60c873f097c85376797fed366804119f7e9c445e
24569f084d3fd428526503bde8b3da64152911934cd5e0e9140c06d954e4bcd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F838bed0c-c665-42d6-8c20-1decd709953c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9314
x-amzn-requestid: 0639452b-7f17-4513-aeb1-20b465ed3e93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HzCIAMF-vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-52afa1da17c4557c5e8c3564;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4mjt2-5F0Chu1G7jShI6rXfTuBMd6JOYxFMtla-EgL7i82SThJnp5w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:38:41 GMT
age: 1735
etag: "60c873f097c85376797fed366804119f7e9c445e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0596-5b8b-4a41-a6fb-93e46d7eebaf.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0596-5b8b-4a41-a6fb-93e46d7eebaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d569b3ae8d704ad9100ba4f11a632cb8
d311aa07fe9e05f84f6bcc4320c7bea6b95dd202
3425f374243fabdd434e2b555ec1561dd91c2bedbc187cf5c49ce38b4b7642da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0596-5b8b-4a41-a6fb-93e46d7eebaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10593
x-amzn-requestid: 58b209eb-53a6-49ac-8ac9-6c13fb4e3b45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e8HucIAMFlfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-5bc4f2611f8ff58c7d072836;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YT_GF_IRrLKChEgvImp4uUgKTldYGRNlCzEKbzg5TKJxr31w4p-w8Q==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:52 GMT
age: 1604
etag: "d311aa07fe9e05f84f6bcc4320c7bea6b95dd202"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 1607
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=3.2.3
151.101.66.159200 OK 0 B URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=3.2.3
IP 151.101.66.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/robo-gallery/includes/extensions/block/dist/blocks.style.build.css?ver=3.2.3 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 27 Sep 2022 17:24:25 GMT
etag: "633331c9-0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.165471,VS0,VE482
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0
151.101.66.159200 OK 2.0 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0
IP 151.101.66.159:0
File type Unicode text, UTF-8 text, with very long lines (10161)
Hash fd64ba72b1049c8d0de4cb5f06573417
4c370bca33d37333cbacd04c3f10ce7888755fb1
e840b5d4231de4dce85d7a8996f8189e832acf092224e6e389625948d15100ff
GET /wp-content/plugins/genesis-simple-share/assets/css/share.min.css?ver=0.1.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 08 Jan 2022 20:45:57 GMT
etag: W/"61d9f805-27fb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.155187,VS0,VE485
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1952
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0
151.101.66.159200 OK 2.6 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0
IP 151.101.66.159:0
File type ASCII text, with very long lines (7511)
Hash 16fe65fe3fcfaa41ac30669bc2688d88
cb5fecee822652a2d7ed665d6259733934fd2be8
84508f5db211cb8fc1f8ed86f76b6d38f9bbabb7a4f08feef704298cfdf4b479
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/genesis-simple-share/assets/js/waypoints.min.js?ver=0.1.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 08 Jan 2022 20:45:57 GMT
etag: W/"61d9f805-1d87"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.179443,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2602
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/ltkwidget/ltkwidget.js
143.204.55.27200 OK 102 kB URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/ltkwidget/ltkwidget.js
IP 143.204.55.27:0
Size 102 kB (102348 bytes)
Hash 4b0aff134d1ef7efa9795cbd4ab4b98c
bd18cfb41a53abe8e19ba35e5ac59a4c6e0d133d
eb65ea6607c5a4516afc9d6a50eb0864bddeee31b31c3b71103cab128924e284
GET /widgets2_0/client/pub/ltkwidget/ltkwidget.js HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 22 Apr 2022 21:30:12 GMT
x-amz-version-id: njz_8nYvtcVaZB7R9qXX6HRCD2deAyWs
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
content-encoding: gzip
date: Tue, 27 Sep 2022 00:09:05 GMT
etag: W/"8f54087b53aab17c1a1085fa141ecb0e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nnjZwWDquMttB9gvz5nypvmkKfarEjxOAFUWgrFShll0M_NDAazsmg==
age: 79351
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
151.101.66.159200 OK 3.1 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 151.101.66.159:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 123080c8da1820b99f317c0763a6341e
62b0a0c21711ec16d583eb65dc6e3caf737a3523
0a9f4aa957091b1706a4140613fd64903c1736ffadc92f92067dcefe532ac032
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 17:24:01 GMT
etag: W/"633331b1-25d0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.211966,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 3127
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0
151.101.66.159200 OK 132 B URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0
IP 151.101.66.159:0
File type ASCII text, with no line terminators
Hash bf4fe460b8cea77cc01f5dbb20da5da9
6253a2c2df2d410772d122b62fc286fd40fe3bf3
1911d773519773e70483c75a8a8faf59ccf51d189a66690edbbf553246ce93b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0 HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 18:22:56 GMT
etag: W/"63333f80-84"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664316456.211880,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 132
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/images/to-top.png
151.101.66.159200 OK 1.5 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/images/to-top.png
IP 151.101.66.159:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 04f559597aa9bab6d14fbee4b8112319
a7af1d1458ea7c50931583f0af7b1e9f63777463
960424f8cc1eb0c562b7a81b72e2a62211678b511c7bd89dc372e9ae51e5bef9
GET /wp-content/themes/theme-kylee-more/images/to-top.png HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/style.css?ver=4.0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: W/"61d9f71a-c77"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316457.709828,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1475
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/uploads/2022/01/cropped-BLOG-LOGO_2022.png
151.101.66.159200 OK 33 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/uploads/2022/01/cropped-BLOG-LOGO_2022.png
IP 151.101.66.159:0
File type PNG image data, 800 x 221, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b2d350d502ba3a33e706f0d3ea6ca19
f18531c0f57b5eb98f5e0dd29d8ffaad6ee9f484
7c030e7cb45eddf47063a8b649e9860ec1716b41419e237c36cc3820b720835e
GET /wp-content/uploads/2022/01/cropped-BLOG-LOGO_2022.png HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 09 Jan 2022 04:43:15 GMT
etag: W/"61da67e3-83b2"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316457.711748,VS0,VE2
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 33125
X-Firefox-Spdy: h2
www.nikkioverkamp.com/wp-content/plugins/simple-social-icons/symbol-defs.svg
151.101.66.159200 OK 8.2 kB URL HTTP/2 www.nikkioverkamp.com/wp-content/plugins/simple-social-icons/symbol-defs.svg
IP 151.101.66.159:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2479)
Hash b756f8fb3b4f77368b3de0be41ebe1df
451b2bce52beeb3bf753d24479b0c8f34658236d
6958e3174f4d01b4bff383853e1ab24ed935be265fac39b363844c53deaa407f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-social-icons/symbol-defs.svg HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 03 May 2022 17:52:45 GMT
etag: W/"62716bed-4b81"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
content-encoding: gzip
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316457.713750,VS0,VE1
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
access-control-allow-origin: *
x-fw-type: VISIT
content-length: 8227
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/faunaone/v13/wlpzgwTPBVpjpCuwkuEB3kZK.woff2
142.250.74.163200 OK 9.2 kB URL HTTP/2 fonts.gstatic.com/s/faunaone/v13/wlpzgwTPBVpjpCuwkuEB3kZK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9212, version 1.0\012- data
Hash e64fa4e267b9c227c01b33efddf4fc40
8842449ed1bf44310f5fed4a1dad365cb8ee214a
ef7949fcabf4b5b0421194d350223cf551b194abc6292cec9a9e951b388fc08d
GET /s/faunaone/v13/wlpzgwTPBVpjpCuwkuEB3kZK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 01:03:36 GMT
expires: Sat, 23 Sep 2023 01:03:36 GMT
cache-control: public, max-age=31536000
age: 421440
last-modified: Thu, 21 Apr 2022 16:27:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:32:09 GMT
expires: Thu, 21 Sep 2023 19:32:09 GMT
cache-control: public, max-age=31536000
age: 527727
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/prata/v18/6xKhdSpbNNCT-sWPCm4.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/prata/v18/6xKhdSpbNNCT-sWPCm4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18396, version 1.0\012- data
Hash 7f5f11a646c474d90c06755a90d9eeac
ac8b7cb4f98fa30bc7338ce97bf6992d6a402229
75bcb1e2c165a9dab26ede996b90fc62ce359f19cdcf076aa09876a943f20075
GET /s/prata/v18/6xKhdSpbNNCT-sWPCm4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 18:49:05 GMT
expires: Tue, 26 Sep 2023 18:49:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:41:47 GMT
content-type: font/woff2
age: 98311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d35193e9ec9d6ce8f397cea01fde4fa
30017b45b20b3ecbe1b6ff8a02e2730a2c62029a
7eeb48260543a450e3c294ba4081f807d07bccc5d0eb82eda21fcc95f730b085
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EEB48260543A450E3C294BA4081F807D07BCCC5D0EB82EDA21FCC95F730B085"
Last-Modified: Mon, 26 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18570
Expires: Wed, 28 Sep 2022 03:17:06 GMT
Date: Tue, 27 Sep 2022 22:07:36 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/images/favicon.ico
151.101.66.159200 OK 62 B URL HTTP/2 www.nikkioverkamp.com/wp-content/themes/theme-kylee-more/images/favicon.ico
IP 151.101.66.159:0
File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Hash 52115113a2c692a18c37f34bc363c043
d865d16410e8893c81671355d90fe8713c17840e
a665ada7d1159514527cee7791293241f439a046372971dd6b77fb33ec4b2d0c
GET /wp-content/themes/theme-kylee-more/images/favicon.ico HTTP/1.1
Host: www.nikkioverkamp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nikkioverkamp.com/dpdch/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
last-modified: Sat, 08 Jan 2022 20:42:02 GMT
etag: "61d9f71a-13e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: kxrkg2fdyk
cache-control: public, max-age=31536000
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:07:36 GMT
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664316457.851650,VS0,VE1
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
content-length: 62
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Tue, 27 Sep 2022 20:34:43 GMT
expires: Tue, 27 Sep 2022 22:34:43 GMT
cache-control: public, max-age=7200
age: 5573
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/widget-modal-main.html
143.204.55.27200 OK 625 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/widget-modal-main.html
IP 143.204.55.27:0
File type ASCII text, with very long lines (477)
Hash 56ecbc42076495fce728eff8e34b16d5
25834ba2ad1663ce223f2fa5bf32125aeea78061
430341f29a0092d245b139a4a457ceb1d1830e075a17880ff069665cc0c2a29c
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/widget-modal-main.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 625
date: Tue, 27 Sep 2022 05:06:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:42 GMT
etag: "56ecbc42076495fce728eff8e34b16d5"
x-amz-version-id: TlLLULfDoD3qVqpoArH8qoKj3pjPGwjS
accept-ranges: bytes
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1yZtH5KIvh1WS-XE_RhuUnxQg8dtkGi-uDGqloeYY8-7v7sjSSJ3tQ==
age: 61290
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/ltk-widget.html
143.204.55.27200 OK 350 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/ltk-widget.html
IP 143.204.55.27:0
Hash fcee4309ed3975bc997d601f8950366a
027b3473b1203405997aa217a3e19258f01f6c46
8fd895f9e3eff06f0107c84bcd6397082d558fdf682616618c5cd9a22422e25d
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/ltk-widget.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 350
date: Tue, 27 Sep 2022 05:06:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:43 GMT
etag: "fcee4309ed3975bc997d601f8950366a"
x-amz-version-id: VOzSbyXDq6dvAz246ZmP5FqiknQIaQtd
accept-ranges: bytes
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8qNjV0DpD12eti7TyzDoaAMcwJhnxPuYLBmmwWIW0z8Mk9nsq4azFA==
age: 61290
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalFooter/widget-modal-footer.html
143.204.55.27200 OK 719 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalFooter/widget-modal-footer.html
IP 143.204.55.27:0
Hash 44607009ca9eb480a1efe9f7221eaded
eca1b538c3c244a44dc4c2ce44302236b57ee0ee
25426cb4d8300bc8654c0bc4ba1c0b88d3c13505f6c7b21d27ca8fd45b347a32
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalFooter/widget-modal-footer.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 719
date: Tue, 27 Sep 2022 05:06:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:42 GMT
etag: "44607009ca9eb480a1efe9f7221eaded"
x-amz-version-id: Lr39JV1.tWKKN3LsSp9icrZJiBsVMUqg
accept-ranges: bytes
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 21DzRCCyYDsTJeb_rDeGDlTUG6-aw2Lo13oYqsMExYdRap355Jb0PA==
age: 61291
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 47 kB URL HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (65136), with no line terminators
Hash e3faa6e255430bd92cbe2d390315b5ca
e330fcdafe92f9458c6e9696cff661bc5bb79941
41456c17603e176c09ef301f44f5a2686426e568eb25e86493be7edfd344c4d9
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:07:36 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"632df00d-20793"
last-modified: Fri, 23 Sep 2022 17:42:37 GMT
cdn-storageserver: DE-200
cdn-requestpullsuccess: True
cdn-fileserver: 463
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/24/2022 05:34:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fcd1c0c11be244b68bebb007cc6e87f6
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-98014947-1&cid=150907841.1664316455&jid=1177229431&gjid=1554406644&_gid=1031325011.1664316455&_u=YEBAAUAAAAAAAC~&z=1644291704
64.233.165.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-98014947-1&cid=150907841.1664316455&jid=1177229431&gjid=1554406644&_gid=1031325011.1664316455&_u=YEBAAUAAAAAAAC~&z=1644291704
IP 64.233.165.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-98014947-1&cid=150907841.1664316455&jid=1177229431&gjid=1554406644&_gid=1031325011.1664316455&_u=YEBAAUAAAAAAAC~&z=1644291704 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.nikkioverkamp.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 27 Sep 2022 22:07:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:07:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/img/home/LIKEtoKNOWit_Icon.svg
143.204.55.27200 OK 826 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/img/home/LIKEtoKNOWit_Icon.svg
IP 143.204.55.27:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (826), with no line terminators
Hash cb0bf67b57d2aaed92dd6d86d8557232
8819c1bcbe7ca08ac0204465c99a14774a098d6d
e85adcc3187986f592743f1ac7e7d0da02d596f3a277333f7b871e8be179197e
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/img/home/LIKEtoKNOWit_Icon.svg HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 826
last-modified: Wed, 20 Apr 2022 18:46:41 GMT
x-amz-version-id: znJYpTddpIpGiaxPgpzShc6FXv_F0pFi
accept-ranges: bytes
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
date: Tue, 27 Sep 2022 06:47:14 GMT
etag: "cb0bf67b57d2aaed92dd6d86d8557232"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R42qpMX2VmGgpfPPK743o9NSkuO8pbGqYjhkyfnB9dZUed51UMKobQ==
age: 55871
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v11/2V_mouV5odI0UgtVODTOwvesZW2xOQ-xsNqO47m55DA.woff
142.250.74.163200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/lato/v11/2V_mouV5odI0UgtVODTOwvesZW2xOQ-xsNqO47m55DA.woff
IP 142.250.74.163:0
File type Web Open Font Format, TrueType, length 27320, version 1.1\012- data
Hash de1857ec690b16c84dc8269caa1e3cc1
1da6ee540e218c914700fd2d3db46e78334b51aa
5b08d23162db012a2dc8a39550182ec7ff7d7988e494e8bf50a43724f33efbd8
GET /s/lato/v11/2V_mouV5odI0UgtVODTOwvesZW2xOQ-xsNqO47m55DA.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://widgets-static.rewardstyle.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 06:41:18 GMT
expires: Mon, 25 Sep 2023 06:41:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Oct 2014 20:40:47 GMT
content-type: font/woff
age: 228379
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
images.liketoknow.it/48a3f433-fa20-11ec-87a3-0242ac110002?w=405
54.230.111.119200 OK 104 kB URL HTTP/2 images.liketoknow.it/48a3f433-fa20-11ec-87a3-0242ac110002?w=405
IP 54.230.111.119:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 405x540, components 3\012- data
Size 104 kB (104185 bytes)
Hash 02772b1c75f8dfdede7641a1217f3bfe
04baad264b1ab8098266e30b7b3f7e9dcebcceab
9dd0752c2b9e8c4640e32fb3c76bca06fb6f22ce3a66072ad217d42c08eee05d
GET /48a3f433-fa20-11ec-87a3-0242ac110002?w=405 HTTP/1.1
Host: images.liketoknow.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 104185
server: CloudFront
date: Mon, 26 Sep 2022 10:48:57 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-allow-headers: *
access-control-allow-credentials: true
timing-allow-origin: *
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BHhdh09BGCl23An8BCsN52MUhlheBrilaJnT1tMhkPqAxiz-JJMA1Q==
age: 127120
X-Firefox-Spdy: h2
images.liketoknow.it/ddd950a0-def8-11ec-9d2f-0242ac110003?w=405
54.230.111.119200 OK 85 kB URL HTTP/2 images.liketoknow.it/ddd950a0-def8-11ec-9d2f-0242ac110003?w=405
IP 54.230.111.119:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 405x720, components 3\012- data
Hash c845cc6ba3023d34d2e807a3aeba16ba
cb428596d80ae499ba3ac2c384b3d7fb2a207f5e
9e85fa76a3a99928ddcc8644484d8e74a3a917088e5210510a5a184794d29442
GET /ddd950a0-def8-11ec-9d2f-0242ac110003?w=405 HTTP/1.1
Host: images.liketoknow.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 85087
server: CloudFront
date: Mon, 26 Sep 2022 10:49:01 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-allow-headers: *
access-control-allow-credentials: true
timing-allow-origin: *
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eossOGnHCWvD0IncvHyzbgzLjTjBGyyZpb50Hw9121vdKyrZIKDy8g==
age: 127116
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 663b473df772839dc9fd52e92b97cebe
7841d28663ca2fa363c305facc7ee619e714b313
c52bc8f0a6077c5211d920b2b4dc659d720dbc7248fc965c96dafaf6dc6e7843
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 22:07:37 GMT
Last-Modified: Tue, 27 Sep 2022 21:21:28 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u6pofl0zmy_nnzafQGkHRiPXS37-dP3tnivid50UnyZJPkzVpMiGQw==
Age: 2770
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/widget-modal-body.html
143.204.55.27200 OK 94 kB URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/widget-modal-body.html
IP 143.204.55.27:0
Hash 6fe571f4c3bf89f3520cd4e9472e55c4
940f87ad891b0385ab87af64d5b3d2f6a67828f3
46d09c6662fb88d692ef3dcb59e7aa339bc44e2819aa7793d69a099a6dd79177
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/widget-modal-body.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Tue, 27 Sep 2022 05:06:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:42 GMT
etag: W/"46a8b09d3281cf2fed92858d22616ca9"
x-amz-version-id: rnDBHTJuUZsnGCUN9c8cMviL4O38u4N.
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nmXZJPg9oudon4hQU2nvVv_H4Ehre0K8cShjiH23fwtVqtCc-WHdzA==
age: 61290
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
34.120.237.76200 OK 0 B URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP 34.120.237.76:0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VLZucSrpwv4p9vPso373WdFZsbrj-savmu1WPx7nkUuTDaZJ6NWzwg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 1233
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKHero/widget-modal-ltkhero.html
143.204.55.27200 OK 0 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKHero/widget-modal-ltkhero.html
IP 143.204.55.27:0
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKHero/widget-modal-ltkhero.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Tue, 27 Sep 2022 05:06:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:42 GMT
etag: W/"b93e075e1a0d70ddec1b272099c4e25a"
x-amz-version-id: w5PhK_lMUjdU2055T8ewYN5mBNWQxiRe
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Udxk9eVxmXbChatlFlj0jR0MxFtEqz0kwRTP3aHhIu9QdLVWneU5eg==
age: 61290
X-Firefox-Spdy: h2
widgets.rewardstyle.com/Ltk/320124?count=9&widget_id=777295127&display_name=&profile_id=e2a61f63-dbf9-11e9-8e71-ca1e925a6f1d
143.204.55.22200 OK 0 B URL HTTP/2 widgets.rewardstyle.com/Ltk/320124?count=9&widget_id=777295127&display_name=&profile_id=e2a61f63-dbf9-11e9-8e71-ca1e925a6f1d
IP 143.204.55.22:0
GET /Ltk/320124?count=9&widget_id=777295127&display_name=&profile_id=e2a61f63-dbf9-11e9-8e71-ca1e925a6f1d HTTP/1.1
Host: widgets.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Tue, 27 Sep 2022 22:07:37 GMT
server: nginx
x-powered-by: PHP/8.1.3
access-control-allow-credentials: false
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: must-revalidate, max-age=0, s-maxage=300
pragma: no-cache
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: *
access-control-max-age: 86400
x-cache: Miss from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HbBCsZHeGQ8SXArukSfXU28VZF4Ry7yETt4m7CpvidRP2NIKMzFiGg==
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?display=swap&family=Fauna+One
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?display=swap&family=Fauna+One
IP 142.250.74.10:0
GET /css2?display=swap&family=Fauna+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 22:07:36 GMT
date: Tue, 27 Sep 2022 22:07:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/home/widget-content-main.html
143.204.55.27200 OK 0 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/home/widget-content-main.html
IP 143.204.55.27:0
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/home/widget-content-main.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
date: Tue, 27 Sep 2022 05:06:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:41 GMT
etag: W/"19868836ad32717fba8995b5ac031236"
x-amz-version-id: 0.J03rfMavjBdZgWiEiA9kRsfXw7Oyrq
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: spTfpV9H9IVIjB3a2NAxaqT_I0ti7qfrC__aah2MoyiF038j0Dn1kg==
age: 61290
X-Firefox-Spdy: h2
widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKDetails/widget-modal-ltkdetails.html
143.204.55.27200 OK 0 B URL HTTP/2 widgets-static.rewardstyle.com/widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKDetails/widget-modal-ltkdetails.html
IP 143.204.55.27:0
GET /widgets2_0/client/pub/b284702e44c231d47676d6f8237e45a6aa9f7769/ltkwidget/modal/modalBody/modalLTKDetails/widget-modal-ltkdetails.html HTTP/1.1
Host: widgets-static.rewardstyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nikkioverkamp.com
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Tue, 27 Sep 2022 05:06:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3000
last-modified: Wed, 20 Apr 2022 18:46:42 GMT
etag: W/"24d705f3eba8c9273061d69443320ae7"
x-amz-version-id: 6zUvjFQmBxDHmNljtiV74hKK2ge9fXkk
server: AmazonS3
access-control-cache-control: max-age=86400
access-control-allow-credentials: false
access-control-allow-headers: *
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j7sZjO405tnAQp2K59S_el-mhIBgeOJREaNiVrrPJ0ODcN6kQWdoQA==
age: 61290
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=4.0
172.67.69.29200 OK 0 B URL HTTP/2 code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=4.0
IP 172.67.69.29:0
GET /ionicons/2.0.1/css/ionicons.min.css?ver=4.0 HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:07:36 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Tue, 28 Jun 2022 16:06:13 GMT
access-control-allow-origin: *
etag: W/"62bb26f5-c854"
expires: Mon, 26 Sep 2022 23:32:26 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: 0802:66B4:5D4A98:5FE94B:633234F8
via: 1.1 varnish
age: 67498
x-served-by: cache-bma1673-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664248959.742057,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 347079565cff311785049b4212962a81b1f6ba25
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5QND2W6V5clrRs0LtNK7LCZHVjTy%2B%2FJbJQEUtxDEkq7Jmxf1HVhAbFpuv6ioE%2BX%2F18EAKiArw6EOg7S%2BanTm2aaoUalx%2FsdvzbWDiXLCWWehsihKYkm7km%2FNgkduRODgQi3UzWEKfxsK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75178d9b4a510b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.css
194.242.11.186200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nikkioverkamp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:07:36 GMT
content-type: text/css
server: BunnyCDN-NO-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"632df018-464c"
last-modified: Fri, 23 Sep 2022 17:42:48 GMT
cdn-storageserver: DE-165
cdn-requestpullsuccess: True
cdn-fileserver: 151
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/24/2022 05:35:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 06fe79fb0107b14602504b066dfa9aca
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2