thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
192.124.249.102301 Moved Permanently 510 B URL HTTP/1.1 thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
IP 192.124.249.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5a2251634921326dc4ff94c2064ac670
c78e2e90a043a196bb5b17f1e4f2886539b54dbf
5e5c58ff6eaba0ccd63ccdb0b8d236471ee4d18823be7131df268579b33bfe70
GET /wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Sat, 17 Sep 2022 14:08:14 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 510
Connection: keep-alive
X-Sucuri-ID: 19002
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Location: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
X-Sucuri-Cache: BYPASS
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2235
Expires: Sat, 17 Sep 2022 14:45:29 GMT
Date: Sat, 17 Sep 2022 14:08:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 13:11:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pIZJ7iou3DqtjBYIfBwN37x8_GsKh4FZGeHiBxJQao9tGuuA0NqrTQ==
Age: 3410
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T-X7FYk4bVSe7UcSLJFxnGDQH1SoxbnWI70ne3kdOns5YhhEOl0e5w==
age: 38252
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 27a968deddc18121a91a5d61d466bd6e
1d6bddd9dff82e02c8c2fa50ecf986fa1724723c
66ed8c89ea902889b8c28d595f7ced028391070d8a4087983fb9cbb1b6e255e9
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 17 Sep 2022 14:08:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 16 Sep 2022 22:14:13 GMT
Expires: Sat, 17 Sep 2022 22:14:13 GMT
ETag: "1d6bddd9dff82e02c8c2fa50ecf986fa1724723c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 14:41:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _VQi2bP2NADB242SqNmBkFX9k8YkeIWmLQcHP_Tug54akF8HTaSf1A==
Age: 292
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6002
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 14:08:14 GMT
Last-Modified: Sat, 17 Sep 2022 12:28:12 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EFokOucXaPGXUdZSfGSIMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4T1rqe6upBSJKorJ5Br4MI9cmcE=
thelouise.be/wp-content/themes/the_louise_wp_theme/style/fonts.css
192.124.249.102200 OK 591 B URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/fonts.css
IP 192.124.249.102:0
Hash 3372bf179dc03c9da878761960dd2522
06b6a252aec42cdb3123cf880d499849b09be097
1764a8ed35f06b9ddaca224e2f8e71c58c8b981300a09ba3e0f0135c97d16c49
GET /wp-content/themes/the_louise_wp_theme/style/fonts.css HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 591
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:36:52 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/locomotive-scroll/locomotive-scroll.min.css
192.124.249.102200 OK 1.6 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/locomotive-scroll/locomotive-scroll.min.css
IP 192.124.249.102:0
Hash 4cb56024a921299ca6fc3023e0a16e17
d4a877ddd9f047f559cbd1a38ac779f759a5def7
5c87ff643fdfe52e8bc6488bd2cba16b0666307bb4a8db63d5ac8e68af74c511
GET /wp-content/themes/the_louise_wp_theme/syjs/vendors/locomotive-scroll/locomotive-scroll.min.css HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 1616
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/style/reset.css
192.124.249.102200 OK 954 B URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/reset.css
IP 192.124.249.102:0
Hash 382bcbc70b6614b3a3bdf90699659524
a6b77b3881f2358fdd608b688e1f09429254a7ef
0d18b6c8dbb3e6ba4cb7206c8a8a1014eb737da72d3a66297489d07998d2a6d3
GET /wp-content/themes/the_louise_wp_theme/style/reset.css HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 954
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:36:52 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/style/main.css
192.124.249.102200 OK 32 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/main.css
IP 192.124.249.102:0
File type assembler source, Unicode text, UTF-8 text
Hash 44543dddee3b8908da846b88e4ff1473
2f85134488e0059d064661db042867e99b1c123c
5894b4dd6caccebcc924bf326631e9ecabad3f412ca60ba70f0a000e3b46fa3c
GET /wp-content/themes/the_louise_wp_theme/style/main.css HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 31886
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:36:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/content-views-query-and-display-post-page/public/assets/css/cv.css?ver=2.4.0.2
192.124.249.102200 OK 78 kB URL HTTP/2 thelouise.be/wp-content/plugins/content-views-query-and-display-post-page/public/assets/css/cv.css?ver=2.4.0.2
IP 192.124.249.102:0
File type ASCII text, with very long lines (65371)
Hash 6cef5f462709ce76c505e9606e6b178f
681b36020474bead510cf5914fccedf9155acece
7a8fee0a8096e3de089202f91f26ec7a5fdf7aa08106b35a8e5bc39fbcd978c2
GET /wp-content/plugins/content-views-query-and-display-post-page/public/assets/css/cv.css?ver=2.4.0.2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 78058
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:45:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.1
192.124.249.102200 OK 3.1 kB URL HTTP/2 thelouise.be/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.1
IP 192.124.249.102:0
Hash 20e8490fab0dcf7557a5c8b54494db6f
285db746dfc0d43b9ca42f8d65b69c908ff72ca5
fbe820b6140ad28e86f34ffae507d807cf591a22697a05b71958f2014e96a9e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=2.1.1 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 3106
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:41:16 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 119c5835189416e8496e0f9081a53c55
e7283983282fdac08f22aec62035ab2b99b3fab4
e6f31f17c32168d784a59ba53603db7239962b3062effd51aacd20739f46b7f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6F31F17C32168D784A59BA53603DB7239962B3062EFFD51AACD20739F46B7F3"
Last-Modified: Sat, 17 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7424
Expires: Sat, 17 Sep 2022 16:11:59 GMT
Date: Sat, 17 Sep 2022 14:08:15 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 14:08:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thelouise.be/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.1
192.124.249.102200 OK 27 kB URL HTTP/2 thelouise.be/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.1
IP 192.124.249.102:0
Hash e9c31aa79ba52df251b0c62c65e221e6
77f79b69d816118ee229ea21e5c50b5168865baa
3567e08672ec8edff0f2305cefa2825f1bc610d6e6159fbde366906de7163bc7
GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=2.1.1 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 27251
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:41:16 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
192.124.249.102200 OK 4.0 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 192.124.249.102:0
Hash a9df041d122839ca80bde8891d0e7e14
0bde89721a2508ed25b548790b6aa28a6cb52462
dceed1deb7cf1629e1389e4867c58d10d63efea7d6d5eafdc40c13baccdf9506
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 4028
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
192.124.249.102200 OK 7.6 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6
IP 192.124.249.102:0
File type ASCII text, with very long lines (7609)
Hash 84cbc0580ef0d3c6c96905c3eeac6c96
908f5fb3dc296cab8df371b394842074d2ebd278
d26baa5d013bc5bc052d4929df801fadbbe52a2d8e3d780ab5480864e518aa76
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.4.6 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 7610
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
192.124.249.102200 OK 43 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 192.124.249.102:0
File type ASCII text, with very long lines (42839), with no line terminators
Hash f59e3f4c0087b4d8ddc27bdd9c9ab92b
fac9b521062feb5250c04d62128a8c3ddb312632
247184981eb6f698a94e431a83d68c6b0df623cce57b6e29dc5a6c11e23aa195
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 42839
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.10
192.124.249.102200 OK 45 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.10
IP 192.124.249.102:0
File type ASCII text, with very long lines (45363), with no line terminators
Hash 935f6588f6f4faac21e3adc378a3fecc
c385e0155438fde9ccb1eb36d54962f23b83fbbb
607e6649c4234b9484c0a26c9c406f63a0b224d6ca2462e37ef1a9d69b95321c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.10 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 45363
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.1.2
192.124.249.102200 OK 2.1 kB URL HTTP/2 thelouise.be/wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.1.2
IP 192.124.249.102:0
File type ASCII text, with very long lines (2066), with no line terminators
Hash 15d378e90fef62fd49dc72a33b2e7aa1
0329db7510968b61b5480a84ad926df5d7f630f1
f3de3770c78dfd07872add113afd585866f7a3d3ec5521a0439df6c117f2ebf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/complianz-gdpr/assets/css/cookieblocker.min.css?ver=6.1.2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 2066
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:38:23 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.124.249.102200 OK 11 kB URL HTTP/2 thelouise.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.124.249.102:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 11224
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:19:55 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.1
192.124.249.102200 OK 35 kB URL HTTP/2 thelouise.be/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.1
IP 192.124.249.102:0
Hash 0890893a0f735d9c79254616a90976af
c8d86b82634782c73f2b2191e38c1d69ee082fcc
8c106f968e6dae4cc1049fd8205860cbd57eba3b59803c5688a1f417b57d9b65
GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=2.1.1 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 35069
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:41:17 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
192.124.249.102200 OK 22 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6
IP 192.124.249.102:0
File type ASCII text, with very long lines (1518)
Hash 2ed97891e0a448815edd04a37a5d5da3
d79a3b0fff5930bf1a7838836157b35f94eb378c
5555617065279e031d5d4f93dfd8ce37aab481221c6c1d38eda5d90798cc4ea5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.4.6 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 22221
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
192.124.249.102200 OK 25 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 192.124.249.102:0
File type HTML document, ASCII text, with very long lines (25075)
Hash 35dba86729f7328d9d79eb1d13792393
860560994a5717d9e3df391bb5f51f03f2e61a5f
cfa956b9f39aec424ed6f9411c71da1f9fbd0c77e4cdccd9089d394a1877d866
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 25172
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
192.124.249.102200 OK 46 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 192.124.249.102:0
File type ASCII text, with very long lines (32001)
Hash 47caf35a29f15dd5c20a41298b3586ea
c4ee5f891da78820029f9974a65e01a07d88f7eb
d281c3057af206c0a210770246ef115057cd21081778be6229fd85f4a99d18bb
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 45479
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
192.124.249.102200 OK 6.3 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 192.124.249.102:0
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 9365b9e965c8e638a21745217e5f2d5c
2a1964476db3f43551f24c1754e272b2917a934b
e959dd8ec932148a2df2bc3f2d63d9fe02104910a31ed6dab421e96c03692088
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 6341
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate.js?ver=5.9.4
192.124.249.102200 OK 29 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate.js?ver=5.9.4
IP 192.124.249.102:0
Hash deb680629055b231cb16f43541c537d1
6d69af5198db5006a1d8af190effd215259e0049
8ca5127d06f5f9656bb9b20a764b12eabf2bed060efbc53b2d5459710fd969c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate.js?ver=5.9.4 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 28649
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.124.249.102200 OK 90 kB URL HTTP/2 thelouise.be/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.124.249.102:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 89521
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:19:54 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate_init.js?ver=5.9.4
192.124.249.102200 OK 3.8 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate_init.js?ver=5.9.4
IP 192.124.249.102:0
File type Java source, Unicode text, UTF-8 text
Hash 5f3e0bb16b5a33cec41443b08e23eb41
f32c70fd5bd252de2c9fab78c4784333dd8a87d3
ab0b08ce7efdb884ac2ce47bc5d63450a6fadadefb70ca9620cc927da57c60a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate_init.js?ver=5.9.4 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 3777
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.10
192.124.249.102200 OK 190 kB URL HTTP/2 thelouise.be/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.10
IP 192.124.249.102:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 190 kB (189573 bytes)
Hash f155759a4141fbbe79b2e8768f43406f
b1343c91218537ca46befb6aab93aa3e16ffdef2
43639b3ca296b94ff0534c970cc69045f45144fffd1afcace5e4ebae070bc241
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.10 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 189573
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 09:12:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 14:08:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thelouise.be/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
192.124.249.102200 OK 18 kB URL HTTP/2 thelouise.be/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP 192.124.249.102:0
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 18181
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:17:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
172.217.21.170200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 10:39:21 GMT
expires: Fri, 15 Sep 2023 10:39:21 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 185334
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js
192.124.249.102200 OK 18 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js
IP 192.124.249.102:0
File type Java source, Unicode text, UTF-8 text
Hash d02d8713174bf15517e4a3ea777a9b34
eae43294f3634856acd8cd8f4f33be2cd5faf5c7
d7d8563d7eede35ce5e5258a1eb5a56d8381406f1ddc9c9aa9564a913c762581
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/smooth_state/smoothstate_init.js?ver=5.9.4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 18333
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:42:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 14:08:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 14:08:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_slides.js
192.124.249.102200 OK 4.1 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_slides.js
IP 192.124.249.102:0
Hash de4349cee17f8c0623a3f17e8e76b41c
796f4714b446d611c142ffd5e8d9ed2f1144d7fd
2c6141c9ed7fa29a7c00589b6d031c70c80f9519ce6a29bffe7e7a9dea3b652e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/classes/sy_slides.js HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 4088
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:42:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_viewport.js
192.124.249.102200 OK 2.6 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_viewport.js
IP 192.124.249.102:0
Hash 0ff8e82586636d564164372b8ad41806
53da4e485beaaa624b3cb6912df805e987ee57fa
69e56ea9d1f752c952cbbae2ae59b376d962561894a4184eca67ab60ddfca09d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/classes/sy_viewport.js HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 2580
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:42:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/momentum_scrolling/js/SmoothScroll.js
192.124.249.102200 OK 3.9 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/vendors/momentum_scrolling/js/SmoothScroll.js
IP 192.124.249.102:0
Hash b6d7f3ff3ec11318b076ae12fc007060
184854a33b89107980b97bee8ed1c7fde00ab34a
69bbf888d575de0beedb2708a2446da454dcf1495d56a932ca1c315a8f7dfdbd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/syjs/vendors/momentum_scrolling/js/SmoothScroll.js HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/syjs/classes/sy_lib.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
content-length: 3888
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:49:56 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/images/the-louise-logo-blue.svg
192.124.249.102200 OK 10 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/images/the-louise-logo-blue.svg
IP 192.124.249.102:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e1a3b25a622f731a10f2192955f2527f
b69894023cf8c5be05645b7d67ea73737c4987db
673a78a32dadb9124776eade02f19cd01b2759556551460a9e293b5a1eaf4e62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/images/the-louise-logo-blue.svg HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: image/svg+xml
content-length: 10529
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:36:48 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskDSPro45Lt/font.woff2
192.124.249.102200 OK 60 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskDSPro45Lt/font.woff2
IP 192.124.249.102:0
File type Web Open Font Format (Version 2), TrueType, length 59936, version 0.0\012- data
Hash 8220ffa06be942fc2ae418c5a8c6637b
53aec237e7b43253aeff46bd7d948fe589934030
5e50630153066dfd3b589f2f9ab057e0aacb674b1453e52dd0b7461f3b738a1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskDSPro45Lt/font.woff2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/style/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: font/woff2
content-length: 59936
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:18 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro55Rg/font.woff2
192.124.249.102200 OK 68 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro55Rg/font.woff2
IP 192.124.249.102:0
File type Web Open Font Format (Version 2), TrueType, length 68140, version 0.0\012- data
Hash b401f4dfea718ba96e96a306d096bfd5
74e666f1f0387077a67e2cde0741e1624710f51d
96788cfa16fd12866672bda195b0ab50e6224ef14145ecf8d083afcce04b5ed8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro55Rg/font.woff2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/style/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: font/woff2
content-length: 68140
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro65Md/font.woff2
192.124.249.102200 OK 73 kB URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro65Md/font.woff2
IP 192.124.249.102:0
File type Web Open Font Format (Version 2), TrueType, length 72760, version 0.0\012- data
Hash eedb2276a7da72143e7d0d4369f275c3
4c97bd80d815b4c0578ceac2ed99ccc6d5de6222
c46e347f576a4e36263799c835898ee085da6d12e2e979b7f0dcb6902d6d27e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/the_louise_wp_theme/style/webFonts/NHaasGroteskTXPro65Md/font.woff2 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://thelouise.be/wp-content/themes/the_louise_wp_theme/style/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: font/woff2
content-length: 72760
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:47:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-content/themes/the_louise_wp_theme/images/logo-white.png
192.124.249.102200 OK 500 B URL HTTP/2 thelouise.be/wp-content/themes/the_louise_wp_theme/images/logo-white.png
IP 192.124.249.102:0
Hash ae5eecad9a7cdf72f3c84fe3299913d9
21a6e494cb92d5a8af09499b69005a7a7fd5eda7
65dc264caeda12349d382ce0cea4db59366258f1db12a0f9b69264625d06477a
GET /wp-content/themes/the_louise_wp_theme/images/logo-white.png HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: image/png
content-length: 127440
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:36:49 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13737
Expires: Sat, 17 Sep 2022 17:57:13 GMT
Date: Sat, 17 Sep 2022 14:08:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4abe181b1d086cd7e122d7de32f63fb6
e3482d4df0d59c247109ff7fb97f20ec6f142c4d
63c277b85854c244e38f5b3e60a073eb15962a0784ba1b726353e3ec0c3e9e02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13737
Expires: Sat, 17 Sep 2022 17:57:13 GMT
Date: Sat, 17 Sep 2022 14:08:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 571f174a66e87ea77b36542c6c7a29a4
5dc0ef56244f8a5ddbb7823e25c61312860b2d0f
e624e35cc734b8cacc2a8eaa80c81175a879c1195d7a4c65cdcd769836b96a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b772c6-a258-481b-9f13-545de0b247e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9280
x-amzn-requestid: 5259d496-f145-492c-8825-579f5b107ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeKEwGsaIAMFR5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632256eb-71f620793182ed767adad592;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILrdhzS2nnvB959D0ZhvdD_jqQKVc-gWgnt8NSzlC0s1Fb8vbHGKQQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 12:07:11 GMT
age: 7265
etag: "5dc0ef56244f8a5ddbb7823e25c61312860b2d0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f1583c126dab43886a89cda3f82d760
5740a5507f21449319597ef49dbb456cbf7372b5
3b8ea2490bd6d777ec64358a84a07bdb1ccd4a6dfa30969feed45cfa7725745f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F269c619b-7793-4ef9-ae9d-9464582f4b56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12221
x-amzn-requestid: ede87d50-8626-40bf-bb1a-d3f95e252f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUrGuqIAMF7tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-2952b2ba7271a5b516295a55;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 39THgu_2WIUs5Hx0CElOMyYu8f9XzzgwzO1naHT1gWJiAyo83lnzuw==
via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:31 GMT
age: 58665
etag: "5740a5507f21449319597ef49dbb456cbf7372b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pPCI5VDX3PIldEnkLv-VNCFWuykiarYQdLYguNTfmbwxYCDVaS2EcA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:01:45 GMT
age: 57991
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 67046c783f8a224572cb8c70625cec67
6b17fa76a13bca3d75efb59a2f4b04c4a43477b6
44aed2e381a512e648202a775c70b7e5ebd5ce8f2c8762bb24c8bb8ee9b98f4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98d68511-1d61-4e7e-9647-8c57b409e85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: d9194b5e-17bc-4e08-b1bb-97dda96ac30e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknslF7KoAMF8xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ecb6-56733ebe2050abfd16e2d5a1;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Meblc1VO8Te1dcBvdt5QsMM6ACc9gnE0OvPomm4vjJD-_IHDefh4zA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:50:26 GMT
age: 58670
etag: "6b17fa76a13bca3d75efb59a2f4b04c4a43477b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: clBnXbh8x6GItJ6ObFVEM4Es3jAKlfMS8CMGlU6RBf_eshZ_HfFkOA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:13 GMT
age: 56223
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:51:13 GMT
age: 58623
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
thelouise.be/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
192.124.249.102200 OK 0 B URL HTTP/2 thelouise.be/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP 192.124.249.102:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/css
content-length: 83419
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 08 Jul 2022 08:20:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
192.124.249.102404 Not Found 0 B URL HTTP/2 thelouise.be/wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8
IP 192.124.249.102:0
GET /wp-admin/js/widgets/shl/wp-adm/.login.microsoftonline.com-cn-2ahUKEwjDiMC9qqz4AhVDgRoKHe4UB4cQ_AUoAXoECAEQAw&biw/approval-Annual/error.php?email&source=page.landing_protected&locale=en_US&question_box=v8 HTTP/1.1
Host: thelouise.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://thelouise.be/wp-json/>; rel="https://api.w.org/"
x-sucuri-cache: BYPASS
X-Firefox-Spdy: h2
consent.cookiefirst.com/sites/thelouise.be-ae6b0d8d-ef6a-4b32-badf-05680477b030/version.json?v=1663423678479
194.242.11.186404 Not Found 0 B URL HTTP/2 consent.cookiefirst.com/sites/thelouise.be-ae6b0d8d-ef6a-4b32-badf-05680477b030/version.json?v=1663423678479
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /sites/thelouise.be-ae6b0d8d-ef6a-4b32-badf-05680477b030/version.json?v=1663423678479 HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thelouise.be
Connection: keep-alive
Referer: https://thelouise.be/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: text/html
vary: Accept-Encoding
server: Cookie First CDN-NO-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=5
cdn-storagebalancer: SE-318
cdn-storageserver: DE-164
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 09/17/2022 14:08:15
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 404
cdn-requestid: c862c48afe0ab392ff6521cd8981f642
cdn-cache: BYPASS
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic
IP 142.250.74.10:0
GET /css?family=Ubuntu&subset=greek,latin,greek-ext,vietnamese,cyrillic-ext,latin-ext,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 14:08:15 GMT
date: Sat, 17 Sep 2022 14:08:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
consent.cookiefirst.com/banner.js
194.242.11.186200 OK 0 B URL HTTP/2 consent.cookiefirst.com/banner.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /banner.js HTTP/1.1
Host: consent.cookiefirst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thelouise.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 14:08:15 GMT
content-type: application/javascript
server: Cookie First CDN-NO-830
cdn-pullzone: 236985
cdn-uid: d602dab6-3f92-4809-a378-608fd2b89403
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match, visitor-location
cache-control: public, max-age=300
etag: W/"6321978f-1112f"
last-modified: Wed, 14 Sep 2022 08:57:51 GMT
cdn-storageserver: SE-318
cdn-fileserver: 318
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/14/2022 09:05:49
cdn-edgestorageid: 830
visitor-location: NO
cdn-status: 200
cdn-requestid: fbef9e89fbbacb35496a17994974dad3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2