Overview

URL bestes-reisebuero.de/
IP92.51.134.215
ASNHost Europe GmbH
Location France
Report completed2022-10-05 20:12:29 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-05 2 bestes-reisebuero.de/ Phishing
2022-10-05 2 www.robertz.de/fonts/flaticon/Flaticon.woff2 Phishing
2022-10-05 2 www.robertz.de/assets/js/core.min.js Phishing
2022-10-05 2 www.robertz.de/assets/js/vendor_bundle.min.js Phishing
2022-10-05 2 www.robertz.de/assets/fonts/flaticon/Flaticon.woff2 Phishing
2022-10-05 2 www.robertz.de/assets/js/scripts.min.js?_=1665000739898 Phishing
2022-10-05 2 www.robertz.de/assets/js/hyphenopoly/Hyphenopoly_Loader.js?_=1665000739899 Phishing
2022-10-05 2 www.robertz.de/assets/js/vendor.swiper.min.js Phishing
2022-10-05 2 www.robertz.de/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (23)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-05 14:02:21 UTC 54.230.111.35
mnemonic passive DNS ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-10-05 06:59:18 UTC 142.250.74.3
mnemonic passive DNS app.usercentrics.eu (1) 12624 2018-08-08 09:42:22 UTC 2022-10-05 07:36:13 UTC 35.190.14.188
mnemonic passive DNS www.backend.tcautor.de (5) 0 2020-06-28 05:47:24 UTC 2022-09-26 17:44:20 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS booking.traveltermin.de (1) 0 2020-04-05 22:18:11 UTC 2022-09-24 11:17:24 UTC 134.119.241.212 Unknown ranking
mnemonic passive DNS graphql.usercentrics.eu (3) 14191 2018-08-08 09:42:38 UTC 2022-10-05 17:22:25 UTC 34.120.238.166
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-10-05 11:30:49 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS bestes-reisebuero.de (1) 0 2019-06-07 07:01:15 UTC 2022-10-05 10:12:17 UTC 92.51.134.215 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (14) 344 2020-12-02 08:52:13 UTC 2022-10-05 07:13:38 UTC 23.36.76.226
mnemonic passive DNS www.google.com (2) 7 2016-08-04 12:36:31 UTC 2022-10-05 16:49:33 UTC 142.250.74.164
mnemonic passive DNS aggregator.service.usercentrics.eu (1) 14703 2020-07-29 13:16:57 UTC 2022-10-05 17:22:25 UTC 34.120.28.121
mnemonic passive DNS uc.e-recht24.de (1) 386358 2021-02-25 09:55:23 UTC 2022-10-05 07:55:32 UTC 159.69.24.179
mnemonic passive DNS backend.tcautor.de (7) 0 2020-06-28 05:48:07 UTC 2022-09-26 17:44:20 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS maps.googleapis.com (2) 33876 2014-10-18 20:19:59 UTC 2022-10-05 17:02:39 UTC 216.58.211.10
mnemonic passive DNS api.usercentrics.eu (1) 11845 2018-04-17 08:09:01 UTC 2022-10-05 07:13:23 UTC 35.241.3.184
mnemonic passive DNS kit-pro.fontawesome.com (10) 21124 2019-05-02 12:15:01 UTC 2022-10-05 08:10:01 UTC 104.18.22.52
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-05 06:03:19 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-05 05:01:05 UTC 34.117.237.239
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-10-05 11:30:49 UTC 104.17.25.14
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-10-05 16:07:29 UTC 93.184.220.29
mnemonic passive DNS www.robertz.de (40) 0 2015-07-17 08:25:32 UTC 2022-09-20 11:46:05 UTC 5.175.22.217 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-05 09:14:56 UTC 34.215.91.121
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-05 12:33:02 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 92.51.134.215

Date UQ / IDS / BL URL IP
2022-11-24 20:03:30 +0000
0 - 0 - 14 essostation.de/ 92.51.134.215
2022-11-24 11:33:30 +0000
0 - 0 - 9 gdp.reise/ 92.51.134.215
2022-11-24 00:04:22 +0000
0 - 0 - 16 essostation.de/ 92.51.134.215
2022-11-23 16:10:25 +0000
0 - 0 - 23 schermbecker-reisebuero.de/ 92.51.134.215
2022-11-23 06:09:40 +0000
0 - 0 - 5 sysbos.de/ 92.51.134.215

Last 5 reports on ASN: Host Europe GmbH

Date UQ / IDS / BL URL IP
2022-12-02 10:23:04 +0000
0 - 0 - 2 fileservice.gtainside.com/downloads/ftpl/1656 (...) 85.25.43.36
2022-12-02 04:23:43 +0000
0 - 0 - 1 dns.nags.de/ 85.25.211.107
2022-12-02 03:08:25 +0000
0 - 0 - 2 iths.de/ 5.35.244.101
2022-12-02 02:51:49 +0000
0 - 0 - 1 swosoft.at/(S(htug2m45zfqhugaqajwdrfbs))/down (...) 5.175.26.248
2022-12-02 01:52:03 +0000
0 - 0 - 1 swosoft.at/(S(1dlygd55u0ajjwmhojduqaic))/down (...) 5.175.26.248

Last 5 reports on domain: bestes-reisebuero.de

Date UQ / IDS / BL URL IP
2022-11-21 22:12:37 +0000
0 - 0 - 2 bestes-reisebuero.de/ 92.51.134.215
2022-11-10 16:13:42 +0000
0 - 0 - 9 bestes-reisebuero.de/ 92.51.134.215
2022-11-09 20:14:22 +0000
0 - 0 - 9 bestes-reisebuero.de/ 92.51.134.215
2022-10-05 20:12:29 +0000
0 - 0 - 9 bestes-reisebuero.de/ 92.51.134.215
2022-09-11 06:14:19 +0000
0 - 0 - 10 bestes-reisebuero.de/ 92.51.134.215

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-09 20:14:22 +0000
0 - 0 - 9 bestes-reisebuero.de/ 92.51.134.215
2022-10-27 03:47:40 +0000
0 - 0 - 10 reisebuero-robertz.de/ 92.51.134.215
2022-10-23 19:44:52 +0000
0 - 0 - 10 reisebuero-robertz.de/ 92.51.134.215
2022-09-20 11:46:16 +0000
0 - 0 - 10 reisebuero-robertz.de/ 92.51.134.215
2022-09-16 07:47:19 +0000
0 - 0 - 10 reisebuero-robertz.de/ 92.51.134.215


JavaScript

Executed Scripts (34)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (121)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: bestes-reisebuero.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         92.51.134.215
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Wed, 05 Oct 2022 20:12:17 GMT
Content-Length: 301
Connection: keep-alive
Location: https://www.robertz.de/
X-Powered-By: PleskLin


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   301
Md5:    151cbf7d9ef69d5f5de1356289733878
Sha1:   70391b418e6448b71b445fb44d7ac908a4099ea6
Sha256: 774391698cb80a8fbc5031a53ac71274318345fa3f52567466329d74b3475714

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6pmkJ8_Pcs-sIXoy_wiooQdzaC3xkFj1y6B2PP2tcb33q7B3A6gDkA==
Age: 15899


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4123
Expires: Wed, 05 Oct 2022 21:21:00 GMT
Date: Wed, 05 Oct 2022 20:12:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Wed, 05 Oct 2022 21:04:02 GMT
Date: Wed, 05 Oct 2022 20:12:17 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: vzyLrr0oOVBv/ZS3ZYafyDfl84iszCPcFGz/yrY8IeGyaGAKleUjRzNPHy+84nR+OLcR2ZkT8d8=
x-amz-request-id: 0Q6YTFG2KHDGNR85
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 19:58:25 GMT
age: 833
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 05 Oct 2022 20:12:18 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B3D942195928BA1A22E74F0C20E22CFEBD35B859253E6568B317156D2F74D738"
Last-Modified: Wed, 05 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Thu, 06 Oct 2022 02:11:43 GMT
Date: Wed, 05 Oct 2022 20:12:18 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 19:32:19 GMT
Expires: Wed, 05 Oct 2022 19:38:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rplZm3OemTn40l9IvhsS3WLZpdZ9rbhnxHv4s7vDz8o9hWTIHpgERA==
Age: 2399


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
content-length: 2880
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-580a"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 19939099
expires: Mon, 25 Sep 2023 20:12:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CKLCmAIS%2Fse1oqziaK9VZpxqk6kLourCJkyjxUHPICVR0yW%2Byo1eN9JQKND5Yo2j%2FlQJ9BJ15AeyPaaHbnUdYpS9xZPE%2BdZR%2F8H4oVU%2FHVvJH1Xci88ZNvyt6tNY7JpXX%2BRkFcoV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7558cfb90ad11c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22251)
Size:   2880
Md5:    4dbf1735a5370350943bce0dbad5843d
Sha1:   3a9d68ea18c3aa70887283c3c36b154ddd31ced8
Sha256: b7cd289c437127d58b709dc9999390fe68d378d506a8a31252c74c70597e162e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 125
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 20:12:18 GMT
Last-Modified: Wed, 05 Oct 2022 20:10:13 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ajax/libs/jquery-confirm/3.3.4/jquery-confirm.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
content-length: 6422
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-6e3e"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 11085050
expires: Mon, 25 Sep 2023 20:12:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dpzPVwPDHnAQWmReQdzFK%2BMhOB99e6OF9jd4FcUgUWLysZAUmmYwJt%2FUjgmPWYHYjGP7N9ZJVY%2F2SU0yt0pJbHDVIjaaHlUeyLT94HqjTcI9AzLQi9SPSr6Tcmi6Nj%2FVxJO4sa%2F0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7558cfb92d19b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27931)
Size:   6422
Md5:    beafb90e7e7cb9afd1931dd1ce3d8a6b
Sha1:   ecb8187bf858a727949be0fffbadd1d018e0c169
Sha256: eabdef01e87e471436dfac8d11edcd16c85d433aa854cdd695165399980ca818
                                        
                                            GET /fonts/flaticon/Flaticon.woff2 HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 36736
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Size:   36736
Md5:    e97e6acd6d5fae4dfb1b353ddf3dcf0f
Sha1:   186f523c36cdd4d80122ea6daf40106e0ce3e20d
Sha256: 0b56c2c2e69c2334a1881c975f0a1223b73447cd57a13f6b435b239a87de961e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/fonts/montserrat.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
content-length: 196
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            GET /images/Robertz/Team/Nadim.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Tue, 28 Jun 2022 16:20:05 GMT
etag: "323b-5e28468cded6b"
accept-ranges: bytes
content-length: 12859
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Created with GIMP", progressive, precision 8, 236x236, components 3\012- data
Size:   12859
Md5:    3852a6818d8136feda41e6124cfc6cc3
Sha1:   ce6549af4a84a1a132941ec06a160e54ff8df933
Sha256: baf32cf30024c0d847421b4b06190ddb3c2fb1a6144d2781c4bbc6a23df10626
                                        
                                            GET /assets/css/colorpalette.min.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 08 Jul 2020 05:55:56 GMT
etag: "3e89-5a9e7c2ecfd8b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 1898
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (8960), with CRLF line terminators
Size:   1898
Md5:    475de567aa0032280982829dcfc11116
Sha1:   4eceb810b11b830494dc13abff7eb578c42c2f0c
Sha256: e405a2f80f2edb9470ad0a5184108ea934d9e512a8ed7894e60d9d2388ce219b
                                        
                                            GET /assets/css/color_scheme/customcolor.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Sun, 12 Jul 2020 12:43:45 GMT
etag: "4498-5aa3decc0656d-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3095
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (582), with CRLF line terminators
Size:   3095
Md5:    60d56c255a871ae01312cdbdf6ec1e27
Sha1:   8d986fa1d7258c73f1d6d2a043fc0bea80b88ca7
Sha256: 598057d50bdcc975d1742a5b6e8cc49575cb5394cead95b3a4d34aa94ffa97a5
                                        
                                            GET /assets/css/custom.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 29 Jul 2020 14:42:41 GMT
etag: "3fbb-5ab959162640a-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 2987
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF, LF line terminators
Size:   2987
Md5:    3f3dcde275d75ccd807e2e5e2f616812
Sha1:   e530d19c468592f6d6b2e217ca8b4b62aa6e5688
Sha256: 476ee261ef6f668eadf94cfffb6d64d227d6ccc1ee23659ab6f29835c61d94ac
                                        
                                            GET /assets/css/vendor.swiper.min.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Tue, 07 Jul 2020 09:54:09 GMT
etag: "54b2-5a9d6f907ba36-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 4187
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (21675), with no line terminators
Size:   4187
Md5:    21888b586f9fd75d444d25f8e118f5d7
Sha1:   3f92c9c4fe3cb925d4e4f78f5af3b681b3c8c9e5
Sha256: 4151ce7b54bb179dd95e4b52465aeb2e0396d1868207e9ba98f8490cb1b352c0
                                        
                                            GET /assets/css/vendor_bundle.min.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:43 GMT
etag: "99c6-5a67923a7b3c0-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3836
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39344)
Size:   3836
Md5:    f95b5a6991b49a2d93a49c25b0507269
Sha1:   7ddba3d5c0fec9763dc37659af52ddc9a5fdb9ca
Sha256: 5c88a4b0439697d533ea190a067005a323d0a9e481b871985ebf30f8b854ed58
                                        
                                            GET /images/BilderPool/Siegel/DER_Touristik_Partner_4C.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Thu, 03 Mar 2022 07:25:15 GMT
etag: "1391-5d94b4ca70b47"
accept-ranges: bytes
content-length: 5009
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 253 x 284, 8-bit colormap, non-interlaced\012- data
Size:   5009
Md5:    6cfa5757073c810990a30df5a3a5c142
Sha1:   f3929708377b03ea028621abfd7cc33e2cfdf3c0
Sha256: 42508c7e75bbaaf132edb306339680c86694005e71e2ea2c1c8cb0736949c5b8
                                        
                                            POST /s/gts1d4/tkhg_zkCU7U HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/Robertz/nachhaltigkeit/planet_tree.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 05 Oct 2022 15:19:13 GMT
etag: "40f4-5ea4b196c287f"
accept-ranges: bytes
content-length: 16628
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 500 x 314, 8-bit colormap, non-interlaced\012- data
Size:   16628
Md5:    13565539b4331994ee95a8ec15ed3dd4
Sha1:   e79de348e181301e82ecf381f121146c28df31b1
Sha256: 1a195b360b9e9b30d4f708e0c5a94fcf7d4a538c6e3717576739ab8e2599cd6b
                                        
                                            GET /images/BilderPool/Siegel/DER%20Kreuzfahrtenprofi%2016cm.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Fri, 07 Jan 2022 08:48:44 GMT
etag: "38e4-5d4fa0df3705c"
accept-ranges: bytes
content-length: 14564
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 454 x 156, 8-bit colormap, non-interlaced\012- data
Size:   14564
Md5:    5e41153831859cf6af64b682b586a248
Sha1:   15597ac62ce2440e6e8972a18542567db2bac39b
Sha256: 52d5ee205bc379b3b4f1559493e543d0b29d90d6ef6b89316b69574b808d56f1
                                        
                                            GET /images/BilderPool/Siegel/DER%20Empfohlenes%20Reiseb%C3%BCro%2016cm.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Fri, 07 Jan 2022 08:48:44 GMT
etag: "3f75-5d4fa0df2f661"
accept-ranges: bytes
content-length: 16245
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 454 x 133, 8-bit colormap, non-interlaced\012- data
Size:   16245
Md5:    0455fe31c325d7dd343f2850cadf4a94
Sha1:   7c8e5403561010cee48bd0cbd0ca22e9c04be5f1
Sha256: d1e74da66036dbf70f913bf71757dfb97ad2ce1dc3c974f72306becf8defc349
                                        
                                            GET /images/BilderPool/Thementeaser/time-371226_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "9555-5cac1e06495a6"
accept-ranges: bytes
content-length: 38229
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   38229
Md5:    58731c57d2c4a4705ef2a6cf5494ae00
Sha1:   13b8a27acf646fa51ac89e2ef4ca2d010f27cde3
Sha256: 4c7210d0d25aa8e279de465665cdd06a133e3456a412dd46ba51d50ad548e801
                                        
                                            GET /images/BilderPool/Thementeaser/Versicherungen_lifebuoy-4870836_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Fri, 27 Aug 2021 13:59:43 GMT
etag: "ceb2-5ca8ae539421c"
accept-ranges: bytes
content-length: 52914
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   52914
Md5:    2074572132e9f3e6743aa540110cc27c
Sha1:   965ceb90356ad01c37a5d68f032b7e0e99540f9a
Sha256: 193322064111e8baec20884ca8df731e5a3f99bf8fb326a0915694381613eb17
                                        
                                            GET /latest/bundle.js HTTP/1.1 
Host: app.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.14.188
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycdvq1agQHWIA6zWns8e0RM9aLe7HNjF8x5QuxtpiNwLtIrSfZ6zbMdo15mxWbN796yFsh1gXezcq2oKXSbvx2YPd3A
x-goog-generation: 1659355771721227
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 230316
x-goog-meta-version: 2.17.0
content-encoding: gzip
x-goog-hash: crc32c=ILZ2ew==, md5=ZS70lV0KH9O1IrTyHPm0Fg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 230316
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Wed, 05 Oct 2022 11:48:17 GMT
expires: Thu, 06 Oct 2022 11:48:17 GMT
cache-control: public, max-age=86400, no-transform
age: 30241
last-modified: Mon, 01 Aug 2022 12:09:31 GMT
etag: "652ef4955d0a1fd3b522b4f21cf9b416"
strict-transport-security: max-age=7776000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65470)
Size:   230316
Md5:    652ef4955d0a1fd3b522b4f21cf9b416
Sha1:   80ef29f0962cba31b5609e11ea2c90826b228916
Sha256: 9e1c3f1f1611295f4a746ee5a4bbd7f0e1726bf1b2d8dbcafe42b8cb2f330aa3
                                        
                                            GET /images/BilderPool/Thementeaser/woman-4373078_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "d7f2-5cac1e06512c1"
accept-ranges: bytes
content-length: 55282
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   55282
Md5:    a9f3532465426567c8c1ac1c8ec1ae61
Sha1:   bc42eb71d1db2559cb0d197a37d2cc6211ad98cd
Sha256: 48e008b189b0bfa0a9df6bc1361338a96a570331770beb2097f364eb46297196
                                        
                                            GET /www/robertz.de/img/logo_WEB.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Thu, 03 Mar 2022 07:58:32 GMT
accept-ranges: bytes
content-length: 74928
cache-control: max-age=2592000, public
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 3094 x 1605, 8-bit colormap, non-interlaced\012- data
Size:   74928
Md5:    13c968b38081445f5d6f272e75372335
Sha1:   23cf26c06c9b28cc80dca32e2cec05399a02c966
Sha256: 1f38b8099b47ae9370ef51927f8b026212c789137fa1dbb5ccf7c0d867984824
                                        
                                            GET /images/BilderPool/Thementeaser/guinea-pig-1969698_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1335f-5cac1e06418a1"
accept-ranges: bytes
content-length: 78687
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   78687
Md5:    192a66bef59226d6ab6b3a5097bb2d4d
Sha1:   5d4ef05d8529e310115d7ee15724985469343319
Sha256: f014df907df2ab80a94cd71c2267a0896ec6c7831308e92a3c726c8592a81eb1
                                        
                                            GET /images/Robertz/nachhaltigkeit/Zertifikat_Robertz_September-2022_03_PNG.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 05 Oct 2022 15:07:14 GMT
etag: "1668c-5ea4aee8f958e"
accept-ranges: bytes
content-length: 91788
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1239 x 1754, 8-bit colormap, non-interlaced\012- data
Size:   91788
Md5:    fab49a5b2ee69c36cd5a19bf436acfc6
Sha1:   4cad67a4347f9931746ea1433f8415d24343c823
Sha256: 17dd3c7b5aade4ca96c7864a820ff97c1af95b2f786a0cf738b2f88bda99e697
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FD80FA4739B1491CCC3362C472621741DA166AB9FC8D3E6F2B83B61C61D3E3C9"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9939
Expires: Wed, 05 Oct 2022 22:57:57 GMT
Date: Wed, 05 Oct 2022 20:12:18 GMT
Connection: keep-alive

                                        
                                            GET /images/BilderPool/Thementeaser/vacations-2490266_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1bd9e-5cac1e0664f6e"
accept-ranges: bytes
content-length: 114078
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   114078
Md5:    7d47e7c0e4644bdb9f6390233fa64b5d
Sha1:   309923c63deee1d97fb8dd2e70a902ee6faf7ac7
Sha256: 653e3553dd08d47e5a964311149365a582a90dfde032adaa54097e17882843f7
                                        
                                            GET /images/BilderPool/Thementeaser/women-3266211_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "1e453-5cac1e06691e6"
accept-ranges: bytes
content-length: 123987
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   123987
Md5:    4d620151c765ed8bdd1ddd6193f9e244
Sha1:   475c4f9ce545458df2a3c53b3f9767508d2b325d
Sha256: 3629b868912b11d754f948b8f297b7ba056e82256ee83c85fc41e401ea0dc1a6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FD80FA4739B1491CCC3362C472621741DA166AB9FC8D3E6F2B83B61C61D3E3C9"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10042
Expires: Wed, 05 Oct 2022 22:59:40 GMT
Date: Wed, 05 Oct 2022 20:12:18 GMT
Connection: keep-alive

                                        
                                            GET /images/BilderPool/Thementeaser/road-3114475_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "21ac9-5cac1e0668242"
accept-ranges: bytes
content-length: 137929
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   137929
Md5:    8808244f83f82cd6238b27cbbe3aee77
Sha1:   be55dca9bc25da62682dfbf202fe44d7a5a06f62
Sha256: e965149dc4efeb45f020927785ae74b417994f2cea94f6c281776a8409eb4e2c
                                        
                                            GET /images/BilderPool/Thementeaser/mountaineers-5649828_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 30 Aug 2021 07:35:25 GMT
etag: "2b1b3-5cac1e0667e58"
accept-ranges: bytes
content-length: 176563
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   176563
Md5:    8da55968b05019655e9ecf0814bf99fc
Sha1:   017da0fd24e608d42fd9e3ad9686fce2fceab09f
Sha256: 50ed47e128d4c9293417c6f08606c8b4ca05e991790bc83d068ddb077bb7a6f0
                                        
                                            GET /images/Robertz/Sonderreisen/2023_douro/Dourotal_2023_Teaser.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 07 Sep 2022 14:51:51 GMT
etag: "3bd6a-5e81773f7aa75"
accept-ranges: bytes
content-length: 245098
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1260x860, components 3\012- data
Size:   245098
Md5:    5222d6d387662013bd7de8cafb3880b7
Sha1:   100376302444e5e425af578536be126cec89ba9e
Sha256: 982289b28aeb3839fe78a3fd9bac5951971c3b417438dc25510224939b6f5ac5
                                        
                                            GET /images/Robertz/Sonderreisen/2023_ostsee-oder/2023_kultour_kreuzfahrt_teaser.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Wed, 27 Jul 2022 15:35:52 GMT
etag: "60170-5e4cb2c193ac4"
accept-ranges: bytes
content-length: 393584
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Created with GIMP", progressive, precision 8, 1260x860, components 3\012- data
Size:   393584
Md5:    f51e6ae37f5a6725e91f8dfe90751218
Sha1:   401450013faed0a350a16741ec91b7a9cac1d6dd
Sha256: 2ecd15ac2f69b67784e4a621a7f99b16aebf75641d789ab511717b0f6a13f353
                                        
                                            GET /assets/js/core.min.js HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Thu, 09 Jul 2020 18:02:01 GMT
etag: "4432f-5aa0605764a50-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 64543
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65512)
Size:   64543
Md5:    21485a5c91a6e030255faa364281aa40
Sha1:   69e8f4ae330ece58c4c9dc6fa319187d907bc2bd
Sha256: af79c3c862f29c5011444e6c6a4259961c61f414202b97559225b92339095f84

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3D69DEF67A9F2FB9FFCB528A99C5363EEE89AF13850D9DC06B1A2ADD3063512A"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Thu, 06 Oct 2022 02:11:23 GMT
Date: Wed, 05 Oct 2022 20:12:18 GMT
Connection: keep-alive

                                        
                                            GET /assets/css/core.min.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:44 GMT
etag: "50315-5a67923b6f600-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 41057
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65516)
Size:   41057
Md5:    06249bcfa64e75d0dd5d3e77f960cdd9
Sha1:   078839991c838dd732613ae7a8b4d1201aca8017
Sha256: 99fae1a53fa84932d6a5c938f27b7e776b99c7b27e3709a51f28d84ca65b9306
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qbdGX+C1vcet5V5meTv8Kw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.215.91.121
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JO4IaiASIzEht1JjQIqhditcNH8=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FD80FA4739B1491CCC3362C472621741DA166AB9FC8D3E6F2B83B61C61D3E3C9"
Last-Modified: Wed, 05 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Thu, 06 Oct 2022 02:11:28 GMT
Date: Wed, 05 Oct 2022 20:12:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10659
Expires: Wed, 05 Oct 2022 23:09:58 GMT
Date: Wed, 05 Oct 2022 20:12:19 GMT
Connection: keep-alive

                                        
                                            GET /www/_data/1007/files/Robertz/Team/Claudia.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ac96-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 44182
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 236x236, components 3\012- data
Size:   44182
Md5:    56c8f6150d913b65e5aab67b3ba62f84
Sha1:   ae1a6d0a553a211f0cf4fa673dfc6ed342f8cbe8
Sha256: de7089fd245c1c2896802772b8c72120ecc7d66fcd972df725c9d1569af8ae4f
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Nadine.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ba84-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 47748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 235x236, components 3\012- data
Size:   47748
Md5:    431793fe981ba51d3b6281986775045c
Sha1:   6b2ae55ed6162eac106b6149e1774bc7f94bd324
Sha256: 7496b26a859adfd8e480d681110c18d952b79bf7da7ed06e7e28968d9be66aa8
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Melanie.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "eb77-5bf4e5b3ec77a"
accept-ranges: bytes
content-length: 60279
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, xresolution=174, yresolution=182, resolutionunit=2, software=GIMP 2.8.22, datetime=2018:06:08 15:18:14], progressive, precision 8, 236x236, components 3\012- data
Size:   60279
Md5:    dc2176c3173039123f7bd12a81306dda
Sha1:   9e4c94c2e2e0ca5fe5a1250294700613660321b6
Sha256: d91036d1030fc79849ec5ac99b29a6ef2d1769e420fb100074b380a15c1679e8
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Julia.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "2fe3-5bf4e5b3d1c51"
accept-ranges: bytes
content-length: 12259
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 236x236, components 3\012- data
Size:   12259
Md5:    a8194c06c8a8d294277daa462319d516
Sha1:   7a506471abff545dc237fd28cecd026b3637698f
Sha256: b0df99082d55ea503390a5b00e84e450747dc5a4f891fe362481ac2e70a98185
                                        
                                            POST /s/gts1d4/tkhg_zkCU7U HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/js/vendor_bundle.min.js HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:42:21 GMT
etag: "66b1b-5a67925eb8940-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 101220
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65514)
Size:   101220
Md5:    eb1235ec9c4c6300e795fdf0be02224f
Sha1:   d3f8f421bdfc1938f6dbdd41b76b0eb01c3a0bcd
Sha256: 37fe01d6f5a8a0bcf91568940e0202f4728b966b15f2e3141d3729dce8cb2a34

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Sabrina.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "acce-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 44238
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=GIMP 2.8.22, datetime=2018:06:08 15:13:15], progressive, precision 8, 236x236, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 0-25701, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 197.285858, slope 0.000169\012- data
Size:   44238
Md5:    3f10608c9147bb7f2c6ed6d2d127d7a0
Sha1:   1aeb71c57ac6e2e9ab78ff28d9238bc26b83a67c
Sha256: 9eb3343464fc4fbf0e6e1d554d49f0e7eca0c5b6bf69abd3faf55b352788bce8
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Michael.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "2e3c-5bf4e5b3e4d7c"
accept-ranges: bytes
content-length: 11836
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 236x236, components 3\012- data
Size:   11836
Md5:    7366bcfcda634ede8deb3d9c355a8b91
Sha1:   92f9e20b7355c4784e755f8c569ee2a5173d2168
Sha256: 7655969dad71f9c7b976b4e97c83bcaea8230e6cf2a48c17b591fd68362d059a
                                        
                                            GET /www/_data/1007/files/Robertz/Team/Britta.jpg HTTP/1.1 
Host: backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 06 Apr 2021 14:09:02 GMT
etag: "ca76-5bf4e5b3ec77a"
accept-ranges: bytes
content-length: 51830
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 236x236, components 3\012- data
Size:   51830
Md5:    f5eb98bfc65d1965e8d436efee6102cc
Sha1:   0a39804268d9f4a2c24a910bdf0b9bc3f0921d6d
Sha256: 2cae6eef310345f33a06ed4ddbc645d0def20687e9cc332f051b9d57170b9f7a
                                        
                                            GET /www/fonts/montserrat.css HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
content-length: 196
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   196
Md5:    62962daa1b19bbcc2db10b7bfd531ea6
Sha1:   d64bae91091eda6a7532ebec06aa70893b79e1f8
Sha256: 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
                                        
                                            GET /assets/fonts/flaticon/Flaticon.woff2 HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.robertz.de/assets/css/core.min.css
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Sat, 09 May 2020 10:20:16 GMT
etag: "8f7c-5a53475c0b800"
accept-ranges: bytes
content-length: 36732
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:19 GMT
vary: Accept-Encoding
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 36732, version 1.0\012- data
Size:   36732
Md5:    ae2dd4b29a7c28b5cc6e9364c7a69983
Sha1:   602976fc50a9aa00adc99bc2d93888db7a81d2fc
Sha256: 0ebd2de93302226f320140f8051d5cff7c3752be9700d0d598e498bbe0dde638

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/lake-louise-1761286_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "1c1bf-5e9cdac1c8868"
accept-ranges: bytes
content-length: 115135
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   115135
Md5:    ae636582e580e0d24e4fedbc84af6894
Sha1:   02040d1ef25f7ec7678ef64ba984a2236dfb0153
Sha256: 836653e3204500f3598e1bc344205a816584c96b5393cea8b4af40e74e736f7d
                                        
                                            GET /www/_data/1025/files/BilderPool/Werbebanner-Mailings/tc_aktueller_banner.gif HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Tue, 23 Aug 2022 16:09:31 GMT
etag: "775de-5e6eaca279e6a"
accept-ranges: bytes
content-length: 488926
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 2000 x 400\012- data
Size:   488926
Md5:    5d4acf5c3a2b71be434b261b76b7e6a9
Sha1:   d9e2645d08cec0a26fe80d30e973de6a4a0b7455
Sha256: 05655f50624596e80672653afde7d5ff99e5efa933bab177057a92812cb659f5
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 06 Oct 2022 02:12:19 GMT
Date: Wed, 05 Oct 2022 20:12:19 GMT
Connection: keep-alive

                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/statue-of-liberty-g91a003ec7_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "11de2-5e9cdac1c4b5e"
accept-ranges: bytes
content-length: 73186
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   73186
Md5:    73991d5ed68858c2a662504dc2183e32
Sha1:   1cedc862bb3824ea216db4591c71d5b3a0b49dc2
Sha256: 21127e3e4b00b57465d7dc43dbbb6bf6adbb931c512aa1b76d7096061556fecc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18627
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 20:12:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6D2891F4AFE2DED2EEF2EC9BB8C785087D59933A512E27E181A3146D04761C1F"
Last-Modified: Tue, 04 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18627
Expires: Thu, 06 Oct 2022 01:22:46 GMT
Date: Wed, 05 Oct 2022 20:12:19 GMT
Connection: keep-alive

                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/passport-6012618_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Thu, 11 Nov 2021 09:39:05 GMT
etag: "21056-5d0801d0be818"
accept-ranges: bytes
content-length: 135254
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   135254
Md5:    6c6cce06a97cb2121796d60972afafaa
Sha1:   3a66e9eb3f93e7a004adbd13405588d7b7cc3ef2
Sha256: 55c47ab26263641d379014113b867e685ab1a3747d8419ad5b07c6834ba25623
                                        
                                            GET /www/_data/1009/files/BilderPool/Thementeaser/medical-563427_1920.jpg HTTP/1.1 
Host: www.backend.tcautor.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Thu, 29 Sep 2022 09:40:48 GMT
etag: "a07b-5e9cdac1b9435"
accept-ranges: bytes
content-length: 41083
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x800, components 3\012- data
Size:   41083
Md5:    1a14e9bc192ef71737e00e2659b943a3
Sha1:   b34da10383fc7cf2f7588d01f7c7f161ecd3de59
Sha256: 609b9a791933979e096a4778fdd0b046a29d58be123a66fe975951a5db751aff
                                        
                                            GET /button?IpdVpkq9Li HTTP/1.1 
Host: booking.traveltermin.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         134.119.241.212
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8;
                                        
Date: Wed, 05 Oct 2022 20:12:19 GMT
Server: Apache
X-Powered-By: PHP/7.3.10
Cache-Control: max-age=604800
Expires: Wed, 12 Oct 2022 20:12:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1791
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1932)
Size:   1791
Md5:    b2a18eea1fb5589375a73c522fceb48a
Sha1:   c512ce391fae7566a6fed1ceb4d51dd3e9c365a5
Sha256: dd9601ec2e7dfa466cb09bf94b47b45a5c539a7a5cc002cc56410d887310de5f
                                        
                                            GET /images/BilderPool/Reisethemen/Wandern-Alpen/mountaineers-5649828_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 15:12:49 GMT
etag: "78e50-5c50bc1bd7f5c"
accept-ranges: bytes
content-length: 495184
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:19 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size:   495184
Md5:    d708b49b7c25267812f6899e2acf19b4
Sha1:   ec6ef0b325f9da1332ee56dec7599f93d793a758
Sha256: cae3622c5e0a149cfeb6a634b0b19e833523997774f153d394e689b99f52c694
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/js/scripts.min.js?_=1665000739898 HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 20:12:19 GMT
server: Apache
last-modified: Sun, 05 Jul 2020 10:17:52 GMT
etag: "2541-5a9af1222b05b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:19 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 3166
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5449), with CRLF line terminators
Size:   3166
Md5:    1d16ebc0b3c66d6a10a2f844da041250
Sha1:   0bfc5df3e06ecc3af5ea0e5e4ec0c277d887c58f
Sha256: 7ddfb4f8b171063568c5f9d506d3777cfc061d6eff3deff43fcb5af2b6e38f11

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/js/hyphenopoly/Hyphenopoly_Loader.js?_=1665000739899 HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Sat, 18 Jul 2020 18:48:04 GMT
etag: "2936-5aabbb6b6819b-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 2824
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text
Size:   2824
Md5:    ff02a0dc373adfb3ebe39af4c7eef961
Sha1:   dac0bdc76620735d11975d970215c5d70207334c
Sha256: 7cdb80f8f5dea5cabf2936d0241e5d8a4b07f1cddaa5123a0c83b764c8f2c798

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /maps/embed?pb=!1m18!1m12!1m3!1d2526.786715193806!2d6.177955315201229!3d50.70534237684755!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47c09d15cd13d4a9%3A0x71bd550f4d1d0bce!2sReiseb%C3%BCro%20Robertz!5e0!3m2!1sde!2sde!4v1617715148434!5m2!1sde!2sde HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce--p63gnjkpeBa3ueIjCFV6g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1648
x-xss-protection: 0
server-timing: gfet4t7; dur=140
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3303)
Size:   1648
Md5:    e290b033bf8cd0ed4699cb0a267a3d90
Sha1:   4b848646307bd9dda95b8c1606528abc40e3bab1
Sha256: dbffb3b809ac3bdb0d76870a493d3bdc0bc3d24dd44957a0f712705b1f9873e2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/embed?pb=!1m14!1m8!1m3!1d20121.212314762954!2d6.342435539550781!3d50.9209137!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x47bf5eab1cac4f7b%3A0x77db4736472c743d!2sReiseb%C3%BCro%20Robertz!5e0!3m2!1sde!2sde!4v1617714931520!5m2!1sde!2sde HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-FMAkMM6uKUtrjCjgT0oFoA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1663
x-xss-protection: 0
server-timing: gfet4t7; dur=203
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3334)
Size:   1663
Md5:    d88a0b75f3a27d40167130e0971d6564
Sha1:   a68d998591ebc8fdf8dffdb4794274f148bef9f8
Sha256: a3c62590c702db4f8fb13120bcab49ddc8673a4d261f9d3c8fe60b4b97782c65
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14463
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 20:12:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14463
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 20:12:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 45768
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WWClzLGprno--c75q63i1TFi8oBEdAYW-J4lCk9V8IELQXe6q0A05A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 80986
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5832
Md5:    3257b782efae9b64e6e18a547866ec50
Sha1:   4daf0c001e86af8477fb097e8ca932edb8e5f981
Sha256: 899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sd2_YDHr3j7ym7wfFyQh9kg8FP-Et2nJUOo1v_TNbI3PvpzEY5KJ2Q==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:07:19 GMT
age: 79501
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7021
Md5:    229c99cfb655a8c9f1a22de69fdff73c
Sha1:   6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
Sha256: f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3585
x-amzn-requestid: ccb6f0c8-4d9b-48b8-aaf6-16781dc4c86b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHFlEcFoAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a5223-5c9276c873efee993ba54667;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T8m1q2L45TWDVRBa-R2W70yq9BauBK3G4IX54AGIxdRhG736T974kg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:05:29 GMT
age: 58011
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3585
Md5:    5d7d7df8d4c440f9db445c3d99e818d6
Sha1:   612b6dbd4ba895c167964ff7e6d9263013b52b0a
Sha256: bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F1ZWwxLKhRC6oSh6gnUxEm5AnYcY-mezJw9mNJ8GmNWnATAKx1JxSg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:42:26 GMT
age: 77394
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8816
Md5:    100559d746bedd7c3802661c875c35ee
Sha1:   5261a6c2ee6d6cc87e91ee82e32d8be234db393e
Sha256: ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 80986
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8926
Md5:    1de7c17a0ba9295135e7f8b490b6a8d3
Sha1:   70e8d1589f3daf71378965dd197934e220fb6aa4
Sha256: ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=de&region=de&callback=onApiLoad HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56967
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=14
date: Wed, 05 Oct 2022 19:51:03 GMT
expires: Wed, 05 Oct 2022 20:21:03 GMT
cache-control: public, max-age=1800
age: 1277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2448)
Size:   56967
Md5:    7b8bd11a78de52b6d0b2ff0903398a61
Sha1:   b3ac939869243aa8837c26f8a577a9241eed3e90
Sha256: 1fd2ffabe96bf7cdf12712c673c3300ca8651a7385c5813e97c75638d3a79db8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/Q8kpYatjYYI HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/js/vendor.swiper.min.js HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Mon, 25 May 2020 13:41:50 GMT
etag: "22538-5a67924128380-br"
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
content-length: 31466
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   31466
Md5:    ed605729945876db2c8be9bb08804fe7
Sha1:   afc15092fc62fe09bbca09167410dac0f69f4b2e
Sha256: a635d2fe17bba098e4d878bb51bd01c7e04655d1ace2b4164b65c9b209b14f2a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /settings/8EV1oBWbt/latest/de.json HTTP/1.1 
Host: api.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.241.3.184
HTTP/2 200 OK
content-type: application/json
                                        
x-guploader-uploadid: ADPycdsBoQDxLVgB-kaZrSY9FwaNgQ95Yb6KBzRjYBbTcG6LWBYZuKE5jgV12W0Q_gKCVJpjz0oDFQWL2MG44qout1qO
x-goog-generation: 1663769912913905
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8143
content-encoding: gzip
x-goog-hash: crc32c=qSL1wA==, md5=stobT5/IgLdSgQVbbpHMGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 8143
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 05 Oct 2022 20:12:20 GMT
expires: Wed, 05 Oct 2022 20:12:30 GMT
cache-control: public, max-age=1800, s-maxage=10, no-transform
last-modified: Wed, 21 Sep 2022 14:18:32 GMT
etag: "b2da1b4f9fc880b75281055b6e91cc19"
age: 0
strict-transport-security: max-age=7776000
x-client-geo-location: NO,NO03
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (26140), with no line terminators
Size:   8143
Md5:    b2da1b4f9fc880b75281055b6e91cc19
Sha1:   41af9feb263d76a77a851675d549d9cf4f40ad87
Sha256: 8f4914e0866cbbf3ca5441f09b9ad875e47a155e9805124c55f79a27f362c43a
                                        
                                            POST /s/gts1d4/Q8kpYatjYYI HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
                                        
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 05 Oct 2022 20:12:20 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   23
Md5:    e3981ca10169a319d5aa062bf43a5fa1
Sha1:   2c6ed584767b65688ce99b1ebe1a3b7448a67421
Sha256: 8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
                                        
                                            GET /releases/latest/css/pro-v4-shims.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
x-amz-id-2: iT8ZupnOxWpWMAKwfkDwtp9P1xcr8oXnn2QOTNUaLIoyQ5jAD2cANg1mJrCWG1nyuIiPehlhVh0=
x-amz-request-id: V9KX785VYZEKCMK4
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"715826d7cea0f100c00238e5e5dc92b4"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1419
expires: Wed, 05 Oct 2022 20:42:20 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7558cfc24d51b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26368)
Size:   4084
Md5:    d9162627f6481d2097f5ded0defcac15
Sha1:   bb441b022a103d375eb831e4354d625e8958b89a
Sha256: 9e857f0e2516e25777cd5ec866886ebf7c74af6de600a2a342a16716564ab924
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/BilderPool/Reisethemen/Relax/jetty-1834801_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Thu, 24 Jun 2021 07:47:06 GMT
etag: "48a96-5c57e3ac51ad4"
accept-ranges: bytes
content-length: 297622
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size:   297622
Md5:    3b79d15ffab5a3bf79230f1267583e04
Sha1:   d52e852edaafb33ae8685188a9e8cdaae25a3a22
Sha256: b1b7249a0435d37be3a8b06e71afafe1f56962a9c3fd167b7b5136efdc25cd8d
                                        
                                            GET /images/BilderPool/Reisethemen/Str%C3%A4nde/maldives-1993704_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 15:14:59 GMT
etag: "5080c-5c50bc97ad6d7"
accept-ranges: bytes
content-length: 329740
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1078, components 3\012- data
Size:   329740
Md5:    40c94a0731f3cb48ce3c6bf8098cc6a2
Sha1:   4fd930156f53715838c95db4d38190dfab988506
Sha256: fb175ae061cd06909b170af0d84d96d48e1398eb44c2ea0ecca04483fe4f6bde
                                        
                                            GET /images/BilderPool/Reisethemen/St%C3%A4dtereisen/heidelberg-5360721_1920.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 15:13:53 GMT
etag: "480ad-5c50bc58fad9d"
accept-ranges: bytes
content-length: 295085
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1277, components 3\012- data
Size:   295085
Md5:    94538df66b1ef89ce0421aca5a3d7686
Sha1:   fe8530ca9b8b16051a5d506a1e4a0001c7a40876
Sha256: 12bbd7295fda70b3d2227ea20c2a0df48ddcff4dae129776410eb93b022f397f
                                        
                                            GET /images/Robertz/B%C3%BCro/IMG_20210402_111030.jpg HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
last-modified: Fri, 18 Jun 2021 14:27:31 GMT
etag: "61e82-5c50b1fbffd85"
accept-ranges: bytes
content-length: 401026
cache-control: max-age=86400
expires: Thu, 06 Oct 2022 20:12:20 GMT
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 3500x1575, components 3\012- data
Size:   401026
Md5:    a086e897890422fd036447039e7a56ca
Sha1:   7497836c1c3c0eefee1dc141ecd065dff5d4375a
Sha256: 87c6ba7b28b0c178f38574bcd6529f6c55479e5cb74f8da6cb279289293efa3f
                                        
                                            GET /releases/latest/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 2412
x-amz-id-2: MbpIaftKY9OnCJdcWvTTppwXwdeXycP4N6ER/UskwiNRP2DDPpu6Qi7+99tsy/J5SAOxHYG/CYU=
x-amz-request-id: G5JQ0B8W497Z70HM
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:37 GMT
etag: "714ee8de820748bab5090d91cd5b7690"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc3ffc3b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 2412, version 331.-31196\012- data
Size:   2412
Md5:    714ee8de820748bab5090d91cd5b7690
Sha1:   07f4d4dfe5e3c9045f41996eb1ac8ecbbcc779bf
Sha256: 322c181b1aab5807cd0a7ed9e249ddbd97fa385ca3d338aa59ef1f610ca24601
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.11.1.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 10860
x-amz-id-2: zCafFMwW1eX+wpyhdHjTvgLm37m8+ZhBksCFkWnJFBozEF7WpXCkblCmL9JGOBqBLvwg0bzcRLo=
x-amz-request-id: G5JZ3MW9NN25M1QG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "eb7a13166c2efdd5b305c75d341ce222"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc3ffd4b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10860, version 331.-31196\012- data
Size:   10860
Md5:    eb7a13166c2efdd5b305c75d341ce222
Sha1:   4f9e18b100b049b74efb8f0084e81756abaadfaa
Sha256: b2698da8df8781bf12a07d76bab5c6353fbb730a8138fcaa1371c4950ad7c461
                                        
                                            GET /releases/latest/webfonts/pro-fa-duotone-900-5.7.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 10884
x-amz-id-2: Wm2XDnhHN52gcYHiJh3Icl1cgutpteNvtqggVPaBHSuHDLngd5n0fTePlTLefbCDFon01hyINN0=
x-amz-request-id: G5JMJJ2PSCMC0HHJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:39 GMT
etag: "b297f9c677379a25dab795e0546e1e07"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc3efb8b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10884, version 331.-31196\012- data
Size:   10884
Md5:    b297f9c677379a25dab795e0546e1e07
Sha1:   c0eeb3115545926ad1cb5d9b37a2fe573acf4b03
Sha256: 272922821dedf161cdf3bebb80a3353ae53e530698f4f92606e3f76b5415c158
                                        
                                            POST /s/gts1d4/zA2MeURdANg HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/latest/css/pro.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
x-amz-id-2: AMRPnx/gGPWzkxpEroVSLO8Pi8J0vSGXWBOtNi24DEDy+QaEMCfu0MKQ1eDa2E4MPiKMDx3QOVg=
x-amz-request-id: Q09J8QG0HPK0XNQC
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"486b13730aafe2a39cdaf1666679fa5b"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 199
expires: Wed, 05 Oct 2022 20:42:20 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7558cfc24d4fb4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   63441
Md5:    4df4ec7bc11fc7f576b4eec459620046
Sha1:   d3aa648b0110e811740cb7a47b20a5da614909a9
Sha256: c6b6b1316d7efbe47d66182b141adf54481855b11ee8b6a7adfc3221cd97ea33
                                        
                                            GET /aggregate/de?templates=H1Vl5NidjWX@40.16.38,8eIqa_sKr@8.1.0,S1pcEj_jZX@21.9.4,Sy7BcNo_ib7@4.2.2,Hko_qNsui-Q@14.5.15,SJKM9Ns_ibQ@10.5.6,rkUcEjuoWm@16.6.5,ko1w5PpFl@23.12.19,XYQZBUojc@9.6.4,r5-Z_erQ0@6.2.2,QPYQDujT@3.3.0,BJ59EidsWQ@25.6.26,BJz7qNsdj-7@15.7.12 HTTP/1.1 
Host: aggregator.service.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.28.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
vary: Accept-Encoding, accept-encoding
access-control-allow-origin: *
content-encoding: br
server: Google Frontend
via: 1.1 google
date: Wed, 05 Oct 2022 00:52:42 GMT
cache-control: public,max-age=604800
etag: "1x4sfbi"
content-length: 6107
age: 69578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (40051), with no line terminators
Size:   6107
Md5:    d201fe1d03396d9616cf91fb78f67dcf
Sha1:   3aed89b19ec0315813fa746361f6e8186e3435e3
Sha256: 98714e29fbb98fb140368d088402bd1c4f217f65590e57932363aecf67e4f980
                                        
                                            POST /s/gts1d4/zA2MeURdANg HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 24800
x-amz-id-2: mB2P0Iv2KGGCqpbajxEOZCFM2rI3TCV/SK0Oh8Pnz6zuYHslaAZM7Jryqthz4B/FzHm8OKfyCeQ=
x-amz-request-id: G5JRV8GZCNF5G8A9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:40 GMT
etag: "4abe94f1746789f39110d3ebac7ebd96"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc40feab4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Size:   24800
Md5:    4abe94f1746789f39110d3ebac7ebd96
Sha1:   bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
Sha256: 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 17168
x-amz-id-2: 3xZiJ0SnIwUfePYisaeD0RoU8O7MyOnlWJ58ZsuPJo7dG5elsPCKlXCBPnKCIXLrHUbVF/DK+hk=
x-amz-request-id: G5JKYZ0YZCZ0710R
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "8a43eb7db323b6a82d87a458c34cbe82"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc40fe8b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data
Size:   17168
Md5:    8a43eb7db323b6a82d87a458c34cbe82
Sha1:   968367a39a575ffe38f1cfda07eea12eff885831
Sha256: 2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
                                        
                                            GET /releases/latest/webfonts/pro-fa-light-300-5.11.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 15748
x-amz-id-2: fcn/Oh4l6wm8n1R+w0PXrfqh+nIUVfj84RbpSfxp3J43EHsjNmfjJesz69ajwGLPd5tHI4ZtfLc=
x-amz-request-id: G5JTBSW1ASM5M4NE
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:41 GMT
etag: "1894bebba876a67d0cb7cd7351ab6ae4"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc40fe3b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15748, version 331.-31196\012- data
Size:   15748
Md5:    1894bebba876a67d0cb7cd7351ab6ae4
Sha1:   0c2e2d2e73311bbd4c429e33e4e4c4036207b4b1
Sha256: ec540bd82697b5fb43f1584f25446b7d58a0cf0a51e1544b0b278a2aaa5f1e77
                                        
                                            GET /releases/latest/webfonts/pro-fa-brands-400-5.0.0.woff2 HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.robertz.de
Connection: keep-alive
Referer: https://kit-pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
content-length: 37796
x-amz-id-2: ltHRAQ618+z12TCYpdQCf8OhL4a6ddh0AtVxL7xu8A9IiNIzyYhik/OCUwyz7ugU5jw4OVdjsBc=
x-amz-request-id: G5JZTKR5PA6NEENX
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 21:22:35 GMT
etag: "6cdf281bc8af0068561fe6aa361a6a0b"
cache-control: public, max-age=1800
cf-cache-status: MISS
expires: Wed, 05 Oct 2022 20:42:20 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7558cfc3ffc6b4fd-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 37796, version 331.-31196\012- data
Size:   37796
Md5:    6cdf281bc8af0068561fe6aa361a6a0b
Sha1:   4b11f830ee1b852b8aa46ea7e4cfe709a327bf58
Sha256: 49fd3e0c64f247cf56cb828bc37b88cf139df6e5c7bb4c3a4507f740e9a52c17
                                        
                                            POST /s/gts1d4/Ef3_vfLBTFo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/Ef3_vfLBTFo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: graphql.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,content-type,x-request-id
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.238.166
HTTP/2 204 No Content
                                        
date: Wed, 05 Oct 2022 20:12:21 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: access-control-allow-origin,content-type,x-request-id
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/Ef3_vfLBTFo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 20:12:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3406C491CDAA4DC9581A0AE61B866AE66E456B3B6BA09844C52ED1B0F6949DC8"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1560
Expires: Wed, 05 Oct 2022 20:38:21 GMT
Date: Wed, 05 Oct 2022 20:12:21 GMT
Connection: keep-alive

                                        
                                            GET /erecht24_logo_white.png HTTP/1.1 
Host: uc.e-recht24.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         159.69.24.179
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 05 Oct 2022 20:12:21 GMT
Content-Length: 2889
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Fri, 29 Jul 2022 06:46:14 GMT
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expires: Fri, 06 Oct 2023 20:12:21 GMT
X-Frame-Options: DENY
Pragma: no-cache, public
Cache-Control: max-age=31622400, public


--- Additional Info ---
Magic:  PNG image data, 98 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   2889
Md5:    6ce60860fb4697564e38580a4709ec5c
Sha1:   9806460f6b62a69a9652f8d17afaef69c3e8c287
Sha256: 933400df86c19613e2f9e127e098a0a8eb9e3d9870c8bbcbb8f234629cee5b74
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 2294
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 21890
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            OPTIONS /graphql HTTP/1.1 
Host: graphql.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: access-control-allow-origin,content-type
Referer: https://www.robertz.de/
Origin: https://www.robertz.de
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.238.166
HTTP/2 204 No Content
                                        
date: Wed, 05 Oct 2022 20:12:26 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: access-control-allow-origin,content-type
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 20:12:18 GMT
server: Apache
set-cookie: CFID=36066060; Expires=Thu, 06-Oct-2022 20:12:18 GMT; Path=/; HttpOnly CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; Expires=Thu, 06-Oct-2022 20:12:18 GMT; Path=/; HttpOnly
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 20:12:18 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /releases/latest/css/pro-v4-font-face.min.css HTTP/1.1 
Host: kit-pro.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
x-amz-id-2: k3KaRweKXIxA0xKCYeCf5UV9P24XY0pZMfPFsB2YWPmVWFC5XJ7aLVDJGJuyc2Jb0mizxtGvkIM=
x-amz-request-id: 0261H8W942Y6P30A
last-modified: Wed, 04 Aug 2021 21:18:33 GMT
etag: W/"1cb05a2f9541200e1fa0a2cd0abc7663"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 1434
expires: Wed, 05 Oct 2022 20:42:20 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7558cfc24d54b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /graphql HTTP/1.1 
Host: graphql.usercentrics.eu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.robertz.de/
Content-Type: application/json
Access-Control-Allow-Origin: *
X-Request-ID: 5e10bf90-b8c5-4c72-823d-072b56c3cc2e
Origin: https://www.robertz.de
Content-Length: 5766
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.238.166
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 05 Oct 2022 20:12:21 GMT
vary: Accept-Encoding
x-powered-by: Express
access-control-allow-origin: *
etag: W/"442-jRr9f5zRjLbfHDl2M1rtHMV6k5s"
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /img/android-icon-192x192.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 20:12:20 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /img/favicon-16x16.png HTTP/1.1 
Host: www.robertz.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.robertz.de/
Cookie: CFID=36066060; CFTOKEN=c9baa2fa8ca01329-A1C1EAF7-9508-3FD4-2FC277EDA8FF36A7; cross-site-cookie=sow
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         5.175.22.217
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
                                        
date: Wed, 05 Oct 2022 20:12:20 GMT
server: Apache
cache-control: max-age=420, private, must-revalidate
expires: Thu, 06 Oct 2022 20:12:20 GMT
vary: Accept-Encoding
content-encoding: br
x-cache: MISS from www.robertz.de
X-Firefox-Spdy: h2


--- Additional Info ---