r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14064
Expires: Tue, 21 Mar 2023 04:00:28 GMT
Date: Tue, 21 Mar 2023 00:06:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12298
Expires: Tue, 21 Mar 2023 03:31:02 GMT
Date: Tue, 21 Mar 2023 00:06:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5285a032a285729d3e4a546310ed052d
d370c14bbc2d168cc3703bcb6b94ea0ece26e69d
a811aac1eb89de0666a7de8d3eda1dc3affa7ce5353219211a1beee1211536b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A811AAC1EB89DE0666A7DE8D3EDA1DC3AFFA7CE5353219211A1BEEE1211536B5"
Last-Modified: Mon, 20 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15481
Expires: Tue, 21 Mar 2023 04:24:05 GMT
Date: Tue, 21 Mar 2023 00:06:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 23:27:20 GMT
content-type: application/json
age: 2324
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3KYvcjDNoFS9wqhUeub9J37ro0jUgl1ws34Ui4K66NZUs6XPvbJwZFbBnJQndSsObXtw0qtqvoQ=
x-amz-request-id: S86KATVETFTR70XZ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 23:58:54 GMT
age: 430
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 21 Mar 2023 00:06:05 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.saigen.be/wp-includes/usps/verification/index.php
185.103.156.55301 Moved Permanently 0 B URL HTTP/1.1 www.saigen.be/wp-includes/usps/verification/index.php
IP 185.103.156.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/usps/verification/index.php HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
cache-control: no-cache, must-revalidate, max-age=0
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 21 Mar 2023 00:06:04 GMT
expires: Wed, 11 Jan 1984 05:00:00 GMT
location: http://www.saigen.be/wp-includes/usps/verification/
x-redirect-by: WordPress
server: CLB/No-Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 23:17:21 GMT
age: 2924
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7557
Expires: Tue, 21 Mar 2023 02:12:02 GMT
Date: Tue, 21 Mar 2023 00:06:05 GMT
Connection: keep-alive
www.saigen.be/wp-includes/usps/verification/
185.103.156.55404 Not Found 87 kB URL HTTP/1.1 www.saigen.be/wp-includes/usps/verification/
IP 185.103.156.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 4cd8ec1d287a4afe6dc463d2e612d8db
11d66e2e5050657a63c53027e58890264af458be
f5c712a629b49a8cd6614a2d4b3bef46253efc19835d2d5540e5ac71a9561a8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/usps/verification/ HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
date: Tue, 21 Mar 2023 00:06:05 GMT
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://www.saigen.be/wp-json/>; rel="https://api.w.org/"
server: CLB/No-Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
transfer-encoding: chunked
www.saigen.be/wp-content/plugins/ht-contactform/blocks/src/assets/css/style-index.css?ver=1.1.6
185.103.156.55200 OK 0 B URL HTTP/1.1 www.saigen.be/wp-content/plugins/ht-contactform/blocks/src/assets/css/style-index.css?ver=1.1.6
IP 185.103.156.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ht-contactform/blocks/src/assets/css/style-index.css?ver=1.1.6 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
accept-ranges: bytes
cache-control: max-age=21600
content-length: 0
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "0-5f758263fe0dc"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Mon, 20 Mar 2023 17:20:54 GMT
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
www.saigen.be/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 12 kB URL HTTP/1.1 www.saigen.be/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 12518
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "172a9-5f4adaf7d9d3d-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
fonts.googleapis.com/css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=6.1.1
142.250.74.74200 OK 969 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=6.1.1
IP 142.250.74.74:0
Hash d2e411cc2a9607b1d837cce86d0e0f27
883659a026e0c4e00e70de46bebf5587b31b735f
214cedd32d92f28a3b9d8ed660c137fcd854b09b4c2337381a016af7ed8fa808
GET /css?family=Roboto+Condensed%3A300%2C400%2C700%7COpen+Sans%3A400%2C600%2C700%2C800&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 21 Mar 2023 00:06:05 GMT
Date: Tue, 21 Mar 2023 00:06:05 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.saigen.be/wp-includes/css/classic-themes.min.css?ver=1
185.103.156.55200 OK 189 B URL HTTP/1.1 www.saigen.be/wp-includes/css/classic-themes.min.css?ver=1
IP 185.103.156.55:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 189
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "d9-5f4adaf7f6e16-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 5.0 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 5009
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "48b9-5f4adaf8e4ad2-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:15 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
185.103.156.55200 OK 1.0 kB URL HTTP/1.1 www.saigen.be/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
IP 185.103.156.55:0
Hash bc26fb4dff6889e438154a1c731b4d57
1315520d21518545b9a2d8c2f8fec08a4cab0cc0
39464f4a9d8984291bbce2d27f2b49a4cbb021a9e8f1cc7f39dacef7377f8239
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1004
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "b2b-5f5c43fac7bd2-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 28 Feb 2023 15:28:34 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 1.3 kB URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with CRLF line terminators
Hash 0c69c8d30d466a7b76f83e137c8fc23c
b2c076ca8aad8c9573ed07cdf519592b2c749603
a4f9d20240905037b78aaa55ac18a869c41ce7e1e7bd4632a31c9f0746193fc7
GET /wp-content/themes/sports-club-lite/css/nivo-slider.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1270
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "d7b-5f4ad147f6f5d-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:53 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/css/responsive.css?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 1.9 kB URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/css/responsive.css?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with CRLF line terminators
Hash b2e858d02226194158d945b8692669a1
ddd410c34c46085d7d978682f332c67a86571b1b
2ead332c9eb7b1a6271ab2de7c1dff0d754ff44b4dc0506784d344b3e6b8bd37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sports-club-lite/css/responsive.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1949
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "1f16-5f4ad14823267-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:54 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 9.5 kB URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with very long lines (317), with CRLF line terminators
Hash 19c69843b9e21d67ba472a4e4377fcdc
860b8a01b30efe4343ed997aed155a09bbb9377c
e406c3ea265def454a1b538f28a87512468834e34ef53aae9468aa2b3558a362
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sports-club-lite/fontsawesome/css/fontawesome-all.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 9485
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "d7e6-5f4ad14bafda3-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:57 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/plugins/ics-calendar/assets/style.min.css?ver=10.8.8.3
185.103.156.55200 OK 5.3 kB URL HTTP/1.1 www.saigen.be/wp-content/plugins/ics-calendar/assets/style.min.css?ver=10.8.8.3
IP 185.103.156.55:0
File type ASCII text, with very long lines (22988), with no line terminators
Hash c3caa9cf51c8693308af15b9d49cd3d7
4c33d49abaeb32611b62e4f2d464707b7e7aeeab
03273bbfd9a71764d659ab8bf1c759614a50added4112cfbe58825bbb3c1292f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ics-calendar/assets/style.min.css?ver=10.8.8.3 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 5312
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "59cc-5f758265a2f40-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Mon, 20 Mar 2023 17:20:56 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 4.9 kB URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with very long lines (386), with CRLF line terminators
Hash b825babfeb5e8c7187513ee412d73001
0e1b8c8a27ebf7a8fb571b30f955487802348fa6
32840abf7fc3f3e47b9c3643faacb3d2c106e4532021c70c8f53b4aad3af672a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sports-club-lite/js/jquery.nivo.slider.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4886
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "744f-5f4ad14a86f95-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:56 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
185.103.156.55200 OK 4.2 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 185.103.156.55:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "2bd8-5f4adaf899f7e-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:15 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
185.103.156.55200 OK 31 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 185.103.156.55:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 30995
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "15e54-5f4adaf89bebe-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:15 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/js/editable.js?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 816 B URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/js/editable.js?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type ASCII text, with CRLF line terminators
Hash ea3748efaa9c813931059a3496a07411
a5c28b56b1108f827149e4cccde041419c44bb37
7617dac7c3fff1892239b5d213239afdf7166bf231a3abfcfa8ea89810305310
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sports-club-lite/js/editable.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 816
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "8dd-5f4ad14a6fc7c-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:56 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
185.103.156.55200 OK 6.5 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 6532
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "459f-5f4adaf85712b-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
185.103.156.55200 OK 2.5 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 185.103.156.55:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 2457
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "194b-5f4acff57473a-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:18:59 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
185.103.156.55200 OK 1.7 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 185.103.156.55:0
File type ASCII text, with very long lines (4875)
Hash 320b86bb1a9ce650a5e3553b2bb1c430
c56e8668b398641ed5cdcfbd8a8eba7d631cdb9c
c9ebbb8d122c6be3880d18172abfe308bb07db900689484fa765a73b8b20b3ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1661
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "132e-5f4adaf874dbd-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
push.services.mozilla.com/
52.26.112.186101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.26.112.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +YVxkHeXsFp6pHOX8hSbOw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: paajzMpVrYDm/C3V5BxPaMrXj+I=
www.saigen.be/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
185.103.156.55200 OK 3.9 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 185.103.156.55:0
Hash eb22973e4f9791a1b52550f254a1022e
cfa38e2369070741641968207c1dbb8ccd0c9221
0dbbf082b664afe4556aee3cc7c3e173b1cb9ac665e127ddb0b8db2a60237d01
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 3866
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "27f6-5f4adaf861154-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7
185.103.156.55200 OK 3.7 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (8629)
Hash e651ef394bdc457930d7d47d45b05fa6
2ed1e9ace8bcfe4ef9213e46e128a099a34d017e
621430839777691039baf6e92e095bffc529d3f742d36b4d3f8723b5648d4b5f
GET /wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 3727
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "23bb-5f4adaf872a94-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/themes/sports-club-lite/style.css?ver=81582bdb254a94e4464424087c6479a8
185.103.156.55200 OK 6.8 kB URL HTTP/1.1 www.saigen.be/wp-content/themes/sports-club-lite/style.css?ver=81582bdb254a94e4464424087c6479a8
IP 185.103.156.55:0
File type assembler source, ASCII text, with very long lines (808), with CRLF line terminators
Hash 4bcd93c6af24bd353704f50a3671a158
0a6506daa804de8e22d13d518de46ee09b7d4aab
944b7a8380104a408fe586bba6c3fc7d06fdb2bb409e26707873a6a99b8db1f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sports-club-lite/style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 6795
content-type: text/css
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "6463-5f4ad1474b53c-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 18:24:53 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311
185.103.156.55200 OK 2.3 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311
IP 185.103.156.55:0
File type ASCII text, with very long lines (5290)
Hash 88175d3a94bf2d08e9abadea86684e45
0d500829e3840ce368531114bdc8fc662e648b95
9acb6212253a49d77d99f5c2a389751cf5e70953bbfc95ac48b5f11a8957b173
GET /wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 2275
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "14cd-5f4adaf87558d-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
185.103.156.55200 OK 4.5 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP 185.103.156.55:0
File type ASCII text, with very long lines (11082)
Hash 4756660a107bef846c50e1e4009ecc88
f7f32ecf085b6fcaee43de491448b1a1f403493c
40497a04b46616ebf00d086ac9150e00fee31a00b486856fd779be0af5e856dc
GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4470
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "2c3c-5f4adaf855da3-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
185.103.156.55200 OK 25 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (65004)
Hash e2de06a182f7e23aaf18dcbd491eb1be
30febc83196451f315366d32437b5e0b9aa207ff
c000a3a62f0a90be1f5a6b00e17be68e74ad5ab79ffb2dbb14d3194f8be0b4e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 24927
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "115ba-5f4adaf85618b-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
185.103.156.55200 OK 331 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 185.103.156.55:0
File type ASCII text, with very long lines (463)
Hash ba2b50662c393ff6ba69961f66b24d5d
d5694f33b1072b13fc4c3989e90252c0b28030a2
79ad638f020827a6db341526b430e65459aa712bfbdcabf28bb013c6b2c715e9
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 331
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "1f2-5f4adaf8749d5-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
185.103.156.55200 OK 989 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 1a973b2fcb6382cf2f096dc05ac8c879
1b1c2d34623e75e9218132fc3b414543e56af2c3
977f29856fc84e0712763206e1d27ea8aeb94c1d23b2b6de45e293d2284f2360
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 989
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "9cc-5f4adaf87652d-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764
185.103.156.55200 OK 486 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764
IP 185.103.156.55:0
File type ASCII text, with very long lines (917)
Hash b68474754caf31ed498c0b8d8c1bbe2d
bd8c73f15c6ebb21f0c2cad9f2dcd7156246dd1a
1e626ef05a33fd5df51257b64c98ea93f08aaf95268e8a8d6129264eaf5928f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 486
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "3b8-5f4adaf87364c-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849
185.103.156.55200 OK 2.1 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849
IP 185.103.156.55:0
File type exported SGML document, ASCII text, with very long lines (5703)
Hash 7108df5093e13c7255038579d349dae5
8ea2ab919d989fe4cd3e5cf7e2e5837bf96f5bf5
ab4f1d5ea90af9254db4017c63a2328fff309af31ba3e78039766fd23983ac62
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 2145
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "166a-5f4adaf86a9ac-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
185.103.156.55200 OK 39 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1
IP 185.103.156.55:0
File type ASCII text, with very long lines (65290)
Hash c9f61e3f1caf2dcc4474649d819205c6
60b559fffede8bb6099eeccea8e958847ffcc08b
b8216bf09e502f11a29b1902e6ad7a8c6e1c4dad26bcbdd5d91fc48895f48a05
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/react-dom.min.js?ver=17.0.1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 38768
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "1ce9e-5f4adaf85906b-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb
185.103.156.55200 OK 513 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb
IP 185.103.156.55:0
File type ASCII text, with very long lines (777)
Hash d258697e291ff7469c77a0dcea310309
b25e1a246ade33d3f431aa38234134bf87e200c7
9f9ba1386b6c6ff19d40aa20c2f9c9c35c355db8386d8edf8cef61a3582d77da
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 513
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "32c-5f4adaf85d6bb-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9
185.103.156.55200 OK 1.1 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9
IP 185.103.156.55:0
File type exported SGML document, ASCII text, with very long lines (2386)
Hash 8779720a6e14b281f9cc63190e72f414
c71506e00c6a5e99af879646d31e46b6939d46b1
f6575719309fcc8dd2835c650ff9a2dee86ffb08a0fa0716a1466ab700f53be8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1112
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "975-5f4adaf86d4a4-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saigen.be/wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107
185.103.156.55200 OK 4.8 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (13047)
Hash e22663c3cdf7d3d7b1f07eb4f7d03e1b
656c258b5575b53170d30a2f6f720b6be3837bc9
de4881413773a0ad0a567262551608f6c41425221aa6bd7b2aae876920e02865
GET /wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4779
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "331c-5f4adaf8620f4-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
185.103.156.55200 OK 544 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
IP 185.103.156.55:0
File type ASCII text, with very long lines (1104)
Hash f3903c03392b2b1cab9779afe87aa161
e1e86bebb2bebe2fa4ed4cc5e1bc771de27d9758
4cd5a187386a39e4155d2a940b20c039b15862d88c5423ccab9cbeb559ee3cc9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 544
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:05 GMT
etag: "473-5f4adaf870f3c-gzip"
expires: Tue, 21 Mar 2023 06:06:05 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
185.103.156.55200 OK 4.9 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
IP 185.103.156.55:0
File type ASCII text, with very long lines (7680)
Hash 036eb6514bd53e2749b18f7be6f2f9af
b2f2aa1537399601824ac35e8c221b1f92e8966c
a0d7a03e0ba3b988581430c961a267d956a7a65696ae057e8c6a77f246fcdba2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4858
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "2fd6-5f4adaf86153c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee
185.103.156.55200 OK 529 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee
IP 185.103.156.55:0
File type ASCII text, with very long lines (1062)
Hash ebfb95d7a6b548f6ff821e3d07440abb
8ca6236cb85562cb94d2d28e6455e4a12a7276e0
0766c6ec4376bee121dbf322efd2ab344b906aa324e07f784068aa7185272072
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 529
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "449-5f4adaf866b2c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518
185.103.156.55200 OK 12 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (36591)
Hash 6eaeabf0710dbdab7666c0b121dc700d
65e379b1387f46085114ab105838208eca826308
31849b925b6b9931853a1bab9a86929cfc0d14b991e0cbc58df5b1107da3dde6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 11968
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "8f94-5f4adaf875975-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2
185.103.156.55200 OK 1.6 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2
IP 185.103.156.55:0
File type ASCII text, with very long lines (3597)
Hash bfb8cf920ab978c3510fd95a4b970c3f
aca17c2954baa4906102dafdffe4b21064377793
8610814c372b4c10cc4ff83cf8d547e1b6c9abd73bf5ae4d090abf4240b7d584
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1594
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "e30-5f4adaf87076c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89
185.103.156.55200 OK 1.8 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (4172)
Hash d6bb4cb64b46c6f6332b71897fe0d798
2ba58686c0aeaf80bc80b0e39336eafb46d18928
a3d5679f0153fc60bbc84fbbe5c9ec7d59f7a450c07ac95b2fa6a80ec9126d5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1784
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "1077-5f4adaf873e1d-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6
185.103.156.55200 OK 8.3 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6
IP 185.103.156.55:0
File type ASCII text, with very long lines (20121)
Hash ca2bcf3b4940451cf7b6e1fa098a6101
2726758fc50775e883dde16a35780fc83d3695bc
85bd0825d865667ccc6ab5fbd82963750b7a74ce905f407e18a94670d8116208
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 8266
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "663e-5f4adaf8657a4-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6
185.103.156.55200 OK 2.9 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6
IP 185.103.156.55:0
File type ASCII text, with very long lines (8195)
Hash b347d7bfd9f5d4e1b3276f8b4e03f00b
2964d915d42548b785552f57765e5957b95427ef
c8c347dcd76cd0deb1e66f1843a99072c1e71ac924475ec11bfd1d2e62b26e32
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 2871
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "241a-5f4adaf8676e4-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/html-entities.min.js?ver=36a4a255da7dd2e1bf8e
185.103.156.55200 OK 451 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/html-entities.min.js?ver=36a4a255da7dd2e1bf8e
IP 185.103.156.55:0
File type ASCII text, with very long lines (802)
Hash edddf94c2788e77e684ee0109254f6c4
556b31b4bf68426983b4cea660e5a7603633c8ee
054a66b4bc15b5b05140659269ab0962af405dd17f11f4aec6131f36d4375914
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/html-entities.min.js?ver=36a4a255da7dd2e1bf8e HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 451
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "345-5f4adaf870b54-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.youtube.com/s/player/59acb1f3/www-player.css
142.250.74.78200 OK 52 kB URL HTTP/2 www.youtube.com/s/player/59acb1f3/www-player.css
IP 142.250.74.78:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b6e88a3579b069d1dfa508ce80141692
58ca857eccab1029cee1fdf9c6e58c6213104890
ee93e8531617814b75b8ba779b12fbed8cefd2ef3e59ada38e06f7fa2c3b02de
GET /s/player/59acb1f3/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 51796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 09:04:56 GMT
expires: Tue, 19 Mar 2024 09:04:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 00:16:22 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 54070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/59acb1f3/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 110 kB URL HTTP/2 www.youtube.com/s/player/59acb1f3/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (679)
Size 110 kB (110099 bytes)
Hash aa6a04e60d06dee59498d0e75a3e2292
7b08826889db67955fb9c654a559da0b2112cce6
c6ceee24e3abb8cc87d1d855d0de2daca2e86b37eb4f077d3f06af20b3d5b63d
GET /s/player/59acb1f3/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 110099
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 15:46:05 GMT
expires: Thu, 14 Mar 2024 15:46:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 00:16:22 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 462001
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/59acb1f3/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.78200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/59acb1f3/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.78:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/59acb1f3/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 19 Mar 2023 14:42:46 GMT
expires: Mon, 18 Mar 2024 14:42:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 00:16:22 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 120200
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/59acb1f3/player_ias.vflset/en_US/base.js
142.250.74.78200 OK 624 kB URL HTTP/2 www.youtube.com/s/player/59acb1f3/player_ias.vflset/en_US/base.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (555)
Size 624 kB (623688 bytes)
Hash 512e52d3a4d46d74c1c14f9504c97183
957718370d027812ad62d2b0ffcdb6460dc086a7
4540e933980213e76b0c5ccd904a2e9592f0b8a131e1d43c6ead34c5cfee6ee9
GET /s/player/59acb1f3/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 623688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 15:49:37 GMT
expires: Thu, 14 Mar 2024 15:49:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 00:16:22 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 461789
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.saigen.be/wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1
185.103.156.55200 OK 1.1 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1
IP 185.103.156.55:0
File type ASCII text, with very long lines (2210)
Hash ee5e3eb83307f0314bcf83b390e3b709
bc7eaf45474baf84a3a7803264726e85bf7a1d59
e687f9e75e2e9b097c1f18420376559686eb5b3efdd282347a0b63624cefd903
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1070
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "968-5f4adaf85de8b-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e
185.103.156.55200 OK 1.5 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e
IP 185.103.156.55:0
File type ASCII text, with very long lines (3246)
Hash da6f33021622eb1f06ccefd253f9f9ad
9ef3fd6f9efb1ddb4cab75b8e8532881aa0b4e12
41e05cb647db11e2de2fb3a06a127fbcc06095e6c7a4a243c8871fca66e3a0a3
GET /wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1520
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "cd1-5f4adaf86ff9c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
185.103.156.55200 OK 18 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP 185.103.156.55:0
File type ASCII text, with very long lines (57929), with no line terminators
Hash 587b5366d117e896e380a1da908dd00d
65d6bd4b016e434e19d61dbeb523fe05f2b20404
95b278616f303ffa74a394b4e45c120a0a7a8409da6a317b6a9773462b7d365b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 18549
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "e249-5f4adaf857513-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51
185.103.156.55200 OK 11 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (33409)
Hash 0110398a65b5ef4e005b7c8cf902b61e
7e456015300d6922da913f8082d5138d31337246
837def15989f90063d54e89ba99d3a7f8be35ed9ecfd1eb42e1b8c8bd900bbcd
GET /wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 10628
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "82aa-5f4adaf8676e4-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saigen.be/wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d
185.103.156.55200 OK 51 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (56716)
Hash 131ebc65a9ecf9d774d262c6d126d294
cb14cbf55d93e09eb4f2883567bbab539a3db700
645f81fc11c08e30fa5e98652901d39c1de188aeff57a875eabbb88b40a06fd7
GET /wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 51328
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "2913f-5f4adaf86e444-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065
185.103.156.55200 OK 1.8 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065
IP 185.103.156.55:0
File type ASCII text, with very long lines (4454)
Hash ab7abd6d514b0a08aa4e2775193206f4
de1ef693ba2a2190f3a8c1cbdf8ef779f5a854b2
5e276048702f3c8b7705750fcb200f502bf0af3197ac19d100418c86b9ba9348
GET /wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1796
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "1189-5f4adaf86c11c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45
185.103.156.55200 OK 978 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45
IP 185.103.156.55:0
File type ASCII text, with very long lines (2390)
Hash f8a6133c76342aab00179935928f904e
22aaaac312a22456ce70f9fca8f8a57ad4ce2348
c933ac21ace190eab3e3ff2120f04ce4ea2b9458ee6dad5039aa4f5070983232
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 978
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "979-5f4adaf871324-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:56:42 GMT
expires: Fri, 15 Mar 2024 17:56:42 GMT
cache-control: public, max-age=31536000
age: 367764
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
142.250.74.35200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.saigen.be
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15700
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 20 Mar 2023 14:14:38 GMT
Expires: Tue, 19 Mar 2024 14:14:38 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:51:55 GMT
Content-Type: font/woff2
Age: 35488
www.saigen.be/wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43
185.103.156.55200 OK 646 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43
IP 185.103.156.55:0
File type ASCII text, with very long lines (1482)
Hash ec7726426a55daf8f175032ddcc30591
68b9ebf71536b2779d9c54028f9e172c5d23cbc5
6e50e173ae31de7f95888409cf1269a8131ade5a19f0a62ee25bea0d3d9b66e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 646
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "5ed-5f4adaf86b94c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
142.250.74.35200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.saigen.be
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15660
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 16 Mar 2023 21:32:48 GMT
Expires: Fri, 15 Mar 2024 21:32:48 GMT
Cache-Control: public, max-age=31536000
Age: 354798
Last-Modified: Tue, 19 Apr 2022 18:42:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.saigen.be
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 16 Mar 2023 21:13:38 GMT
Expires: Fri, 15 Mar 2024 21:13:38 GMT
Cache-Control: public, max-age=31536000
Age: 355948
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
www.saigen.be/wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2
185.103.156.55200 OK 1.1 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2
IP 185.103.156.55:0
File type exported SGML document, Unicode text, UTF-8 text, with very long lines (2581)
Hash 45409920a14fec588a4753d101043587
596959dfb8b3cfb98acc2a17a4065d55179e4f2f
5d0881100080e6b5da50dbd3af93def0537cbf4a2a496e1bf327ff3db89d151d
GET /wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 1057
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "a44-5f4adaf861924-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/plugins/ht-contactform/blocks/build/htcontactform-block.js?ver=bf4d4eee7c194b718886ada46f475c19
185.103.156.55200 OK 7.8 kB URL HTTP/1.1 www.saigen.be/wp-content/plugins/ht-contactform/blocks/build/htcontactform-block.js?ver=bf4d4eee7c194b718886ada46f475c19
IP 185.103.156.55:0
File type ASCII text, with very long lines (2394)
Hash 3d8f1a04e33d028bf6af6a739684cb44
5411042c58a277b54ba77d64656f7fd4079a787e
9a7b37874df095a6c8a8abd60ece93e59a0beefbe224afd5e7e34d8c80aea486
GET /wp-content/plugins/ht-contactform/blocks/build/htcontactform-block.js?ver=bf4d4eee7c194b718886ada46f475c19 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 7832
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "10abe-5f758263fbdb4-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Mon, 20 Mar 2023 17:20:54 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saigen.be/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4
185.103.156.55200 OK 3.0 kB URL HTTP/1.1 www.saigen.be/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4
IP 185.103.156.55:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 20d191fbcefaf143ff6d9f0234b3afd4
85c302c0f4d2393bd1c3fb724a03741a14860b3a
0398c654fccf925b52ce33037cf350414bc27efc9da7db916ee7dbe646541f7a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 3040
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "2945-5f5c43fad430b-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 28 Feb 2023 15:28:34 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saigen.be/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
185.103.156.55200 OK 4.2 kB URL HTTP/1.1 www.saigen.be/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
IP 185.103.156.55:0
File type HTML document, ASCII text, with very long lines (12948), with no line terminators
Hash 678c30e7006948dac3a4c752eb69fdec
59b5e00c9e94b2763e49af3fc09a11e68383c3c3
e3297c7a025f8ddbfff8efbc586b857959f890085bcec83e57c0ca296a27babe
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 4184
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "3294-5f5c43fad1fe3-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 28 Feb 2023 15:28:34 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb
185.103.156.55200 OK 168 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (48368)
Size 168 kB (167581 bytes)
Hash 0dbd35604f4fa0024b5f84dbe0992f27
8c4864ed95dbce0980c886655a1a3a3da90a78dd
0a09d87c57593ad69855090bbe1c2bfd3805d63875d79ea8e57efa69de78d2cc
GET /wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "8c126-5f4adaf86347c-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
transfer-encoding: chunked
www.saigen.be/wp-content/uploads/2023/02/Worp-aangepast-nieuwe-website.jpg
185.103.156.55200 OK 48 kB URL HTTP/1.1 www.saigen.be/wp-content/uploads/2023/02/Worp-aangepast-nieuwe-website.jpg
IP 185.103.156.55:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1180x933, components 3\012- data
Hash db67ca4eb15e8a9539c3d0b3b423ada8
06bd701adb78c817cb5f0d4d7db9b864394badb1
4a8c892aa4867412a171068f6bc1e744bf666121e8fd287b16d25570ff2316ec
GET /wp-content/uploads/2023/02/Worp-aangepast-nieuwe-website.jpg HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=2700
content-length: 47451
content-type: image/jpeg
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "b95b-5f409c77fdbc7"
expires: Tue, 21 Mar 2023 00:51:06 GMT
last-modified: Mon, 06 Feb 2023 15:35:22 GMT
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
www.saigen.be/wp-content/uploads/2023/02/cropped-5d652baed486b.jpg
185.103.156.55200 OK 40 kB URL HTTP/1.1 www.saigen.be/wp-content/uploads/2023/02/cropped-5d652baed486b.jpg
IP 185.103.156.55:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 1400x200, components 3\012- data
Hash f77c4cb6bae5e7a670c3212722d10a0c
d95bc2ed13805a7102a3e646a16e8f41abbff8e2
c3da1257318cfe65e6a68764df54717c347d585f41f100735284d3cd59bcedf8
GET /wp-content/uploads/2023/02/cropped-5d652baed486b.jpg HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=2700
content-length: 40442
content-type: image/jpeg
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "9dfa-5f41cf54eb127"
expires: Tue, 21 Mar 2023 00:51:06 GMT
last-modified: Tue, 07 Feb 2023 14:28:15 GMT
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 672c5380a8c987464b3ab2f2e8a63b8f
31c35f3dd7e79aa32eed91d534285a69f5459fc6
87be5e3e9b326abda2ec215284abade9d267f81d76b0a037965df9c69d58b22d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87BE5E3E9B326ABDA2EC215284ABADE9D267F81D76B0A037965DF9C69D58B22D"
Last-Modified: Mon, 20 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21489
Expires: Tue, 21 Mar 2023 06:04:15 GMT
Date: Tue, 21 Mar 2023 00:06:06 GMT
Connection: keep-alive
www.saigen.be/wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1
185.103.156.55200 OK 202 kB URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1
IP 185.103.156.55:0
File type Unicode text, UTF-8 text, with very long lines (47890)
Size 202 kB (201603 bytes)
Hash bf13a58fa70f04ab27b98963f00cec02
e045a92e127120a572ba0bdf3e0aa44215f6c537
57b4e9742a1fdbdb3f62a7c9b7475d065dee1942f8409433eb7d37e370f9be20
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1 HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "9cb97-5f4adaf86ec14-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
transfer-encoding: chunked
www.saigen.be/wp-content/uploads/2023/02/cropped-Saigen-PR-nieuw-logo-briefhoofd.jpg
185.103.156.55200 OK 11 kB URL HTTP/2 www.saigen.be/wp-content/uploads/2023/02/cropped-Saigen-PR-nieuw-logo-briefhoofd.jpg
IP 185.103.156.55:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 250x269, components 3\012- data
Hash 0612957cff6e1679ebd6fd9c4df09da4
8e80629619b73907fb0c41e624bf263c4b27ce50
9454078ce93fe64f8c56708ee7c0c6c5514d48a15b25309fb9c35f340f3ea213
GET /wp-content/uploads/2023/02/cropped-Saigen-PR-nieuw-logo-briefhoofd.jpg HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.saigen.be/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2700
content-length: 11214
content-type: image/jpeg
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "2bce-5f409b9af9395"
expires: Tue, 21 Mar 2023 00:51:06 GMT
last-modified: Mon, 06 Feb 2023 15:31:30 GMT
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f012cdd7cf0de250dad5fe3f278cb616
cb16e7ba2d5b470c7ae19546e0b51ce5f2019af7
9e4071dcc60e43a82f4a24c60c8be0eecc25dcf39682c3bbf7d4ac50d6d1f5d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 38d8047ca2045200f0cac13041a1d88f
37b06f9978e5de50a3769981c9408cffaf5c3185
adbbcfb19926e3c6373d5f207c53b8b825bd5f72ac2208cdf1b800de41f4463e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.38200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.38:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 23:58:31 GMT
expires: Tue, 21 Mar 2023 00:13:31 GMT
cache-control: public, max-age=900
age: 455
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 21 Mar 2023 00:06:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 38d8047ca2045200f0cac13041a1d88f
37b06f9978e5de50a3769981c9408cffaf5c3185
adbbcfb19926e3c6373d5f207c53b8b825bd5f72ac2208cdf1b800de41f4463e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f012cdd7cf0de250dad5fe3f278cb616
cb16e7ba2d5b470c7ae19546e0b51ce5f2019af7
9e4071dcc60e43a82f4a24c60c8be0eecc25dcf39682c3bbf7d4ac50d6d1f5d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 21 Mar 2023 00:06:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.saigen.be/favicon.ico
185.103.156.55302 Found 0 B URL HTTP/1.1 www.saigen.be/favicon.ico
IP 185.103.156.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 302 Found
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 21 Mar 2023 00:06:06 GMT
link: <https://www.saigen.be/wp-json/>; rel="https://api.w.org/"
location: http://www.saigen.be/wp-includes/images/w-logo-blue-white-bg.png
x-redirect-by: WordPress
server: CLB/No-Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8535613a8a8fd6ee9e928b3539dcfccd
75d939e05c094dda5410c98b8264d7c3270a6672
b09eaa3afbf3c651a41228d2297ff907b3f98102bce5277c7b9a1af8a1f346f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 93be57f3bf9825dcba70409e17bcaa78
583b662f35016fabbd6a26a77dcaab80af115462
abfc4d86f903f68e35a011654c02ccd21c743a386a619c630eeb037488f607c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/jMXjN2HAYFDikoBAXgfevdpWkHhGH85W_0Jzh_Unf9E.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/jMXjN2HAYFDikoBAXgfevdpWkHhGH85W_0Jzh_Unf9E.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36099)
Hash 45d33e9b830ec1e80474803106d1d142
3d5d0167c298ada9edb0a34b3c369d25df8b2a38
4df98273620e15a604e9e709c6fff93f38208688e2637f5d41f8b5a6cd3a2dbb
GET /js/th/jMXjN2HAYFDikoBAXgfevdpWkHhGH85W_0Jzh_Unf9E.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 05:04:25 GMT
expires: Thu, 14 Mar 2024 05:04:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Mar 2023 10:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 500501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e93bf3c3a6b93bafdc32e0ccfa4f7b43
5218f67bab7a5f74c7b5e478135bccdef291b525
0fdc884c2df134408574eb9caf8240d8e86efb1fc8dd9a8ad5ac64c7d683a943
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 21 Mar 2023 00:06:06 GMT
server: ESF
cache-control: private
content-length: 30999
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/6bBfOjTj4Ww/sddefault.webp
216.58.207.214200 OK 7.1 kB URL HTTP/2 i.ytimg.com/vi_webp/6bBfOjTj4Ww/sddefault.webp
IP 216.58.207.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b279fc264d5f675af797fdc15f6196dc
fa0ca0ba11ca096455680be7c31718f5515fcd10
31ee00c4a6b0520d2dd6a3fef99a30174740b2cb01ee3a2a05a3792d466f0cd7
GET /vi_webp/6bBfOjTj4Ww/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 7096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Mar 2023 00:06:07 GMT
expires: Tue, 21 Mar 2023 02:06:07 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.saigen.be/wp-includes/images/w-logo-blue-white-bg.png
185.103.156.55200 OK 4.1 kB URL HTTP/1.1 www.saigen.be/wp-includes/images/w-logo-blue-white-bg.png
IP 185.103.156.55:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.saigen.be/wp-includes/usps/verification/
Connection: keep-alive
HTTP/1.1 200 OK
cache-control: max-age=2700
content-length: 4119
content-type: image/png
date: Tue, 21 Mar 2023 00:06:07 GMT
etag: "1017-5f4adaf81c7a8"
expires: Tue, 21 Mar 2023 00:51:07 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 93be57f3bf9825dcba70409e17bcaa78
583b662f35016fabbd6a26a77dcaab80af115462
abfc4d86f903f68e35a011654c02ccd21c743a386a619c630eeb037488f607c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7192531b5ad082b63c067aa5932ec07b
1275d7db171b6e336bd755408ae452afa60f48dd
286c0269d72bdc72ae9c52360e8ec2623b2f728f01289b41a206881caf644361
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18285
Expires: Tue, 21 Mar 2023 05:10:52 GMT
Date: Tue, 21 Mar 2023 00:06:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18285
Expires: Tue, 21 Mar 2023 05:10:52 GMT
Date: Tue, 21 Mar 2023 00:06:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18285
Expires: Tue, 21 Mar 2023 05:10:52 GMT
Date: Tue, 21 Mar 2023 00:06:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd02b7e2d-e49d-4cc0-b89e-9fd6221ec202.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd02b7e2d-e49d-4cc0-b89e-9fd6221ec202.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 67a217c6c45d72018d90227abf59bc56
6f93ab1b2c313aefdb2e0b647ff9d299cfc522c0
a62f8a087ec5ea1e758857cc64b53478f26a9fad180fc16191b12017fc5b59e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd02b7e2d-e49d-4cc0-b89e-9fd6221ec202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7254
x-amzn-requestid: 478965d1-a7ad-45a5-bff2-c08d81bf6bd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B6evIEwPoAMF-Pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64141193-0f83de050b14ff0d420bb74d;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 07:06:59 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RZ17RxytmDO8a0hosUh9GqkpSbEHpMo1L0hRjWx5yTbRFGWzBAVN6Q==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 f958a3846d80a3925f664b320dfad9c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 15:03:19 GMT
age: 32568
etag: "6f93ab1b2c313aefdb2e0b647ff9d299cfc522c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b8211ace94cc818c0b092a0f8c24c7e
785e7ca94d770a89c2d738d38c880d676bf14652
f14171e1bf278f881e63d81884e84b0395f37871bfdad187c57ee8b1c337602d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10326
x-amzn-requestid: 21739424-faef-436b-9024-5354854b622c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI8E4poAMFsvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-1627c1db7ff0c2f05f9c4e6e;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RIABIQaX9GWt0kbVqf4YeCZOVYYZRq0I31xV_YXoi4TQKvAQqY7ftA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
age: 8450
etag: "785e7ca94d770a89c2d738d38c880d676bf14652"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 549399285b0e626c036b5a3f7923acb7
47fc867d2850248a0cf58ffe6344bc723c567a92
ebee0635c9e51d080a113627a278b1af7f6e440754a1a43a201dc5e3e2392d5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12272
x-amzn-requestid: 92cdffc1-5ab5-4579-99ae-8f8d7fe7453d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFFxfIAMF7UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-3e0b9ead0718e199373ff06a;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 408SujdURTeUV20k71o-5tJ-ZwsNmGfqLdZtj7GTnoaPAv3MCcVN5g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:01:02 GMT
age: 7505
etag: "47fc867d2850248a0cf58ffe6344bc723c567a92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e14006bd4b8766e373bc11e21bba6c42
70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4
31c962ccd63afaa71a162c7f8b0b259347bd52630427f2387dcdd46ca2bf062f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5906
x-amzn-requestid: aa937d0b-da54-4bf4-a47f-662bea154a65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEYMXEk7oAMFmMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418071b-63ccde3f35f1d1496cc313f4;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:11:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: dggiiyVySzSmFWlwweCoOdgJyGfLG-gsjHRUR1xfv3IDOu_8CRIOkw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:21:34 GMT
age: 60273
etag: "70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07b787370d844cd515ddd9fa2f18dd2f
05af207b7d57654a46bcbaa335b05b05cdc03d48
37064c2c7234ff6172959969ba6d56decc8e8900c9a8f7ef177db7198144a7ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: dabbce3d-fb36-404d-8b37-3bafed979062
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFFfBIAMFdMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-5cdf621e6196e46f7a1e849c;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: YfNJIF6SPWXOGEwKrIhi1h1bVS_RrqAvQQSV6OLbA3EJ8hkwWpoRMg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:52:00 GMT
age: 8047
etag: "05af207b7d57654a46bcbaa335b05b05cdc03d48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d65964786df6f0974add4e6e1557e8b
b0516c8fc89a28344607b18953f4ca6a47f3a766
13b494cee4481fda312d2496d64e6bf538af3560c3147e6d4644a55b53b03874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: e58ccd5e-c06b-4151-a89d-e5be457173a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B5YtUFCwoAMF_zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6413a188-2b2a7f1d27d6e0572129b0e6;Sampled=0
x-amzn-remapped-date: Thu, 16 Mar 2023 23:08:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: g02a1S-uNlNZX1Ee0mWQsaxYJ8p07F0b-jT4aMlfTre5bIx1hIKZcA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:52:17 GMT
age: 8030
etag: "b0516c8fc89a28344607b18953f4ca6a47f3a766"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJUsbnDUcSBtbwSNOdi-93vS3iMYfH0AtF0PKu1f2g=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.1 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJUsbnDUcSBtbwSNOdi-93vS3iMYfH0AtF0PKu1f2g=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash d1bec2817dc239410315e81ac1deec22
6f2d6fdabf7fe60774d1469848284ec4b70b2c92
4996d423a6828a40caac1124131eb56f82436f4489ec991e59c9fb60f7c1067c
GET /ytc/AL5GRJUsbnDUcSBtbwSNOdi-93vS3iMYfH0AtF0PKu1f2g=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3147
x-xss-protection: 0
date: Tue, 21 Mar 2023 00:06:07 GMT
expires: Tue, 21 Mar 2023 11:50:44 GMT
cache-control: public, max-age=86400, no-transform
etag: "v82"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7192531b5ad082b63c067aa5932ec07b
1275d7db171b6e336bd755408ae452afa60f48dd
286c0269d72bdc72ae9c52360e8ec2623b2f728f01289b41a206881caf644361
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 00:06:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 21 Mar 2023 00:06:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.10200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 559161de3d7d7331bafceacdd383c398
31e65a32ad04d4eebd1a5b4d57e4b04bc0121730
82e742631c715c043588371c922a5cd993e61cc9540c8bbc9da8ee55ad7ec4c9
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 883
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 21 Mar 2023 00:06:07 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/embed/6bBfOjTj4Ww?feature=oembed
IP 142.250.74.78:0
GET /embed/6bBfOjTj4Ww?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.saigen.be/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 21 Mar 2023 00:06:06 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=kr8J4gLWW5s; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=sKVwlDfeCzk; Domain=.youtube.com; Expires=Sun, 17-Sep-2023 00:06:06 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+120; expires=Thu, 20-Mar-2025 00:06:06 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.saigen.be/wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be
185.103.156.55200 OK 0 B URL HTTP/1.1 www.saigen.be/wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be
IP 185.103.156.55:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be HTTP/1.1
Host: www.saigen.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.saigen.be/wp-includes/usps/verification/
HTTP/1.1 200 OK
cache-control: max-age=21600
content-encoding: gzip
content-length: 44795
content-type: application/javascript
date: Tue, 21 Mar 2023 00:06:06 GMT
etag: "cee0e-5f4adaf864804-gzip"
expires: Tue, 21 Mar 2023 06:06:06 GMT
last-modified: Tue, 14 Feb 2023 19:08:14 GMT
vary: Accept-Encoding
server: CLB/Cache
age: 0
x-clb-cache: No
x-clb-hits: 0
accept-ranges: bytes