ergotherapie-wahmkow.de/free-robux-promo-codes-list-2021
136.243.147.81301 Moved Permanently 328 B URL HTTP/1.1 ergotherapie-wahmkow.de/free-robux-promo-codes-list-2021
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e2f70224d25f43f7b5146eb016776dac
f66cb824830b80756db8a4a9bd9554cf30f0fd2f
36f3d2119c60f3a31b01dc162151325f749d3fb5a0da3097ce6a0af781c30722
Analyzer Verdict Alert fortinet Phishing
GET /free-robux-promo-codes-list-2021 HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 25 Jan 2023 09:15:17 GMT
Server: Apache/2.4.10 (Debian)
Location: http://ergotherapie-wahmkow.de/
Content-Type: text/html; charset=iso-8859-1
Content-Length: 328
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9111
Expires: Wed, 25 Jan 2023 11:47:09 GMT
Date: Wed, 25 Jan 2023 09:15:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2311
Expires: Wed, 25 Jan 2023 09:53:49 GMT
Date: Wed, 25 Jan 2023 09:15:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 08:35:11 GMT
content-type: application/json
age: 2407
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11677
Expires: Wed, 25 Jan 2023 12:29:55 GMT
Date: Wed, 25 Jan 2023 09:15:18 GMT
Connection: keep-alive
ergotherapie-wahmkow.de/
136.243.147.81302 Found 0 B IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Location: http://ergotherapie-wahmkow.de/en
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kPtC+APbdpgWzy4cUXdZVCe+GtdXg7MJZ89Lcqmi/yEAyoaj6u40TRKiMSxZc29M9OmSHcQunnc=
x-amz-request-id: 57YJZ5WGSBMN7WVX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 08:48:30 GMT
age: 1608
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 09:15:18 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ergotherapie-wahmkow.de/en
136.243.147.81200 OK 2.6 kB URL HTTP/1.1 ergotherapie-wahmkow.de/en
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text
Hash 503d32b5e1598bfe73c391a7c8c41931
da1f4d06421a7033b318b6659950551f56ed9422
42e96d4886d136cd2d0ca75253a9d75937756d6f7018739464929568c69b781b
Analyzer Verdict Alert fortinet Phishing
GET /en HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/style.css
136.243.147.81200 OK 12 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/style.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
Hash e94497239ef444f3e60021b8acc73a7a
70014662ec2cfe4c7eeea0c419d2e4ae675170d0
c16deca6c9346169ddd2214de2412a50e9cb0d309e50a9fbab62b298bb8f0fe9
GET /assets/css/style.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Thu, 13 Jan 2022 15:39:25 GMT
ETag: "107bc-5d5787db6da13-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/plugins/line-icons/line-icons.css
136.243.147.81200 OK 2.3 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/plugins/line-icons/line-icons.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2600)
Hash 170149dc8941ab856144b45a060ffb15
258fc14fffe6d083ab0422360db2a285e81ecd97
a40c207725a070f091b4be4d3bff382b6db4543d68dd7217ac5fced6ed1d4116
GET /assets/plugins/line-icons/line-icons.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "2b18-529233676847c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/plugins/bootstrap/css/bootstrap.min.css
136.243.147.81200 OK 17 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/plugins/bootstrap/css/bootstrap.min.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65366)
Hash ee7e1a1b2eaae8ff258410ec841f4364
626252b83cedb7dcbc457be9531a5454fc0ae3e3
05042a624610f397b0f4dd750c8969a1ad68d13a1d3287190ca622977f26841a
GET /assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Thu, 15 Apr 2021 13:35:00 GMT
ETag: "18d0a-5c002ee1698b9-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/plugins/font-awesome/css/font-awesome.min.css
136.243.147.81200 OK 6.1 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/plugins/font-awesome/css/font-awesome.min.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (26548)
Hash 0438a5f21083130bac2b1004274c1657
d4139da20c143a9cbca0071e29664d0a0e0f434a
990af156e4c6c322a9123c5df748b507db0e1c7f46bd357969ccca17481be1d0
GET /assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "6857-529233676653c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/themes/default.css
136.243.147.81200 OK 2.2 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/themes/default.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 4d498da99f4ba8040478136025304ff1
a0664ddef96e56ff54e820bc109f7dfef3fb542d
acaff8a7b9be8eb056d2a7c7a82f0e85db475ae85e0ea39d41117427f35ce160
GET /assets/css/themes/default.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 12 Apr 2017 13:16:32 GMT
ETag: "284b-54cf804626788-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/custom.css
136.243.147.81200 OK 8.3 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/custom.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type assembler source, Unicode text, UTF-8 text
Hash ca69b9100a0fefa0200a9ea0b88bdd8a
cdfa19ca9e18edcf9668b4a943b67a089e3baa72
fc5412c7879f9aea93583d1702f90176b3a134c11908e28d0e60ac3446788142
GET /assets/css/custom.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 30 Aug 2022 08:24:13 GMT
ETag: "a1ae-5e7711b00733f-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/img/nicsell-logo-white.png
136.243.147.81200 OK 6.9 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/img/nicsell-logo-white.png
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 145 x 32, 8-bit/color RGBA, interlaced\012- data
Hash cf7edd6c79b99726a87abdcd45480f6d
c6fdeee63006c4b030a1670b88c1f26297323a48
571f5938e448cdd3cbb972fb875ca04c790c565f50a3d40fce3e962049702077
GET /assets/img/nicsell-logo-white.png HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Fri, 07 Aug 2020 12:40:25 GMT
ETag: "1af1-5ac48e8b0e9d8"
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/img/nicsell-logo-black.png
136.243.147.81200 OK 6.6 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/img/nicsell-logo-black.png
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 145 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a4699f84ed9647197d68e65243eba6e
b6c50ef0d627580bac6ffda3185017c76fb01bec
00b858facabc8ae4ce7a970e27a02136e10918b16888dfef29c8790356bbb50d
GET /assets/img/nicsell-logo-black.png HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Fri, 07 Aug 2020 12:40:25 GMT
ETag: "19f7-5ac48e8b0e9d8"
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/app.css
136.243.147.81200 OK 9.7 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/app.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ca66a07056719f4861ed8c877eb43706
965d93ad0b1526a94e92973fc87018d5bc46a6f5
0aad48eb4f4c517f15382d14982171b256e906c5e2fec4aa74b77cfeb855f343
GET /assets/css/app.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 15 Jun 2022 07:52:20 GMT
ETag: "cec1-5e177ccfd3bd0-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/plugins.css
136.243.147.81200 OK 2.5 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/plugins.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
Hash 25827c9819325ea9500e130b8b3998ed
ad660a02067415f787cd063740735eded75c3cca
03e62a45c618059b3ea3a683ea9fff9c8e3a5fb34ea8675192d4e78abe0fff25
GET /assets/css/plugins.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "27d7-529233675b95c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/ie8.css
136.243.147.81200 OK 605 B URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/ie8.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 32b4b6bb8a5df5d6e7391df5c1809323
97a716415e69d55935a45edcb618abe903d253b9
a1fb367019604d87282b6e4ffb8f0c7ec056fb709a76b028498fc41f5ecceb29
GET /assets/css/ie8.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "5d2-529233675b95c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/img/domainprofi-logo.png
136.243.147.81200 OK 77 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/img/domainprofi-logo.png
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 2932 x 452, 8-bit/color RGBA, non-interlaced\012- data
Hash c41098ce51bc765e89d7671134e4098a
50f0d8f95bb4f9512f2c4cdccdd1412392831c90
cb6e461f7c5cb790eb92ff5d9983a90ecc3fee919c9e4f66afa28c58cc85b55e
GET /assets/img/domainprofi-logo.png HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Mon, 01 Nov 2021 15:49:53 GMT
ETag: "12cdc-5cfbc20b96633"
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/plugins/box-shadows.css
136.243.147.81200 OK 390 B URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/plugins/box-shadows.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
Hash 7bb201d6d96cac2010b91903bab3515f
a0865a2fc4a9481c34e225c1066877a27eec93e0
59787b8941546e60e1ae2fd612c9263a97d421a70b99ba5711b622df42b069c4
GET /assets/css/plugins/box-shadows.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "464-529233675b95c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Content-Length: 390
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/css/plugins/animate.css
136.243.147.81200 OK 4.3 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/css/plugins/animate.css
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (460)
Hash a3b7179654495bfca0af1785a9961574
b86b2de75ee3483cbb1dfcdf37173d3afadaa9d1
7fe851c939c89810c9a3941775d8d4d6826ad3a0d26a48e21e29e2249e9365d5
GET /assets/css/plugins/animate.css HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "df06-529233675b95c-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/favicon.ico
136.243.147.81200 OK 102 kB URL HTTP/1.1 ergotherapie-wahmkow.de/favicon.ico
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type MS Windows icon resource - 6 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size 102 kB (101710 bytes)
Hash 315c47ba05a90f9bc40efa31b31db057
9607f6c43c094bde65f2986dfa9df373b89d4e15
4ec1e4273edf61c16da6a330925a15ce0acd82fef4425fd3fba1a84cb4947251
GET /favicon.ico HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "18d4e-529233676c2fc"
Content-Type: image/vnd.microsoft.icon
Content-Length: 101710
Connection: keep-alive
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 08:48:59 GMT
age: 1579
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ergotherapie-wahmkow.de/assets/fonts/open-sans-400.ttf
136.243.147.81200 OK 31 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/fonts/open-sans-400.ttf
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansR\012- data
Hash 684da7430543ab972899854124e8f414
e0bc1122c4d41f9e5937d5614a63bef201e61fa7
18b7e49a6696c5a278ac77eb98149048d0819df63ac265a2cf3abb26914d57c3
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/open-sans-400.ttf HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/css/app.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 11 May 2022 19:25:13 GMT
ETag: "7a94-5dec1667bd840"
Content-Type: application/font-sfnt
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/fonts/brandon_bold.woff
136.243.147.81200 OK 27 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/fonts/brandon_bold.woff
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, CFF, length 26797, version 0.0\012- data
Hash f1db13b192b748eb5cdcf8f0436defe0
093a16fa44780593253dfe1c955ee82bbd8a87d9
52fe957ccfb35a5687918e9b63265cc1a713f160a0bad8979ac48c3647846ce0
Analyzer Verdict Alert fortinet Phishing
GET /assets/fonts/brandon_bold.woff HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Fri, 12 Nov 2021 09:53:26 GMT
ETag: "68ad-5d0946e311180"
Content-Type: application/font-woff
Content-Length: 26797
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/img/index-panorama.jpg
136.243.147.81200 OK 82 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/img/index-panorama.jpg
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=15, height=854, width=9670], baseline, precision 8, 1170x357, components 3\012- data
Hash 18fa5d8089428f4a39306138c2da4019
cbdad22b3488211a473d4aa8587e518f6decab16
85901c9b00bbfe4cb5086d5aeb7ce73d25271c683e2a657f8a4d8303d4c39e8f
GET /assets/img/index-panorama.jpg HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/en
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 14 Oct 2020 07:29:42 GMT
ETag: "140e9-5b19c7eb7be98"
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ergotherapie-wahmkow.de/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0
136.243.147.81200 OK 64 kB URL HTTP/1.1 ergotherapie-wahmkow.de/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 136.243.147.81:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: ergotherapie-wahmkow.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ergotherapie-wahmkow.de/assets/plugins/font-awesome/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 09:15:18 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Tue, 12 Jan 2016 13:41:37 GMT
ETag: "fbd0-52923367674dc"
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15315
Expires: Wed, 25 Jan 2023 13:30:33 GMT
Date: Wed, 25 Jan 2023 09:15:18 GMT
Connection: keep-alive
push.services.mozilla.com/
54.186.71.207101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.71.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7QT99oiKZJKoztGt4Gtfmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TcDilOKuqDlvrWC06BsbyObRr3o=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5750
Expires: Wed, 25 Jan 2023 10:51:09 GMT
Date: Wed, 25 Jan 2023 09:15:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5750
Expires: Wed, 25 Jan 2023 10:51:09 GMT
Date: Wed, 25 Jan 2023 09:15:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5750
Expires: Wed, 25 Jan 2023 10:51:09 GMT
Date: Wed, 25 Jan 2023 09:15:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7d50173f78bef1429160a353679dd91
695d7913e35a7e086d76c38d7c6f43462b0896df
4c761d1f9fd523750102aea0cce3f8c3cd92918d4c59853415745278292afa4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6231
x-amzn-requestid: 85406169-05a4-4ba9-8a20-5ed2badec48a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEXPmGB_oAMF7Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb38ca-607a23df395511207f5958cd;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 00:58:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wgvWx8V8czjRN96TVCFkx21hxrAuvT7v7D8zcYjD7CJViXFkhp2FoA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:24:28 GMT
age: 13851
etag: "695d7913e35a7e086d76c38d7c6f43462b0896df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbbcba4403c1ea4e45ff47894d66e984
8555e8d6a38b78829a7dd2f10eb99bdbb254d89a
c9acd732889f9a58b085ceee3ceb8040fedb1e85ddb9f5b933960472c2f8d147
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3109
x-amzn-requestid: 89df621b-47d8-4127-8e4f-8e57f3244419
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKV9hFNKIAMFtlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cd9d23-0b4c0b5d2bf8c22b2ada0e9c;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 20:31:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B62xY4rlFNdJGd5ethwkCIwQTsegDVJy6s7OptIr1g_E8GvwttW2sQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:51:04 GMT
age: 84255
etag: "8555e8d6a38b78829a7dd2f10eb99bdbb254d89a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:14:35 GMT
age: 14444
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6254fc1aaa5fbb1d87114b5b28d52c40
8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8
866e0b364026754b2a88d73da5ccabf5b5df59fb75bc60b3aa5c66e8322ee764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7691
x-amzn-requestid: ee5858ec-ae6b-4a83-81f0-84903bea9786
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLP5HGwRIAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdf9d3-1b9f899e1d9e9ba67adbeeac;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:06:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59rOv8-DhAIGQx240tISV3X6FskvU33S-4LVzv8fP45qQilEpp2VwQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:10:17 GMT
age: 14702
etag: "8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 946d8485d39fbe598dc6af86e735061d
4934319819697b4c89466949cd4ef93bb8b9c8b2
7bd130762bfaa189b24e3620e4a54b8e0cc7046ea2d917c37d11a8f248803840
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9343
x-amzn-requestid: 5786e270-1aae-45e2-b406-ad9ce4e90c20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHH8hEcBIAMFyjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5383-3b3fb6220035b4e34db73fee;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:05:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mVeNR5XqJqAXlMYpaB2oVd1YZDsXvbyDOOz3gkj1kn4roCQLb36RtQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 08:21:17 GMT
age: 3242
etag: "4934319819697b4c89466949cd4ef93bb8b9c8b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb6c1403a1d3c878c08ccaf17f8b3d0a
7596b783e0da5fba63c49374933eccffc223d729
1524dbef51237950d4a14a0e2e053fad933dd92ee0831e2de5c45513122f1d58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6026
x-amzn-requestid: 4b05d7f7-783f-4a79-9eed-bbbeb53bc677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRQ-QHmZIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d061f4-721f473c5c8dadd163ca7689;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 22:55:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -GQ5kEZvbltzLlBeml1PxYH3ufTrSMApVjDyR_NkR-6-vXfuJHOb0g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 23:09:45 GMT
age: 36334
etag: "7596b783e0da5fba63c49374933eccffc223d729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b458c619b07de23b3620f392b0f56f6
e45a3cfee589406e1ea0f1ebd6e8d321487474e1
9927c7a8e606180964b6e052e1eb2bacb007d05a46c1f04e28c48a74096d3c03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8736
x-amzn-requestid: 65bdef1c-0389-4d16-b5fd-931d4753d75d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF_4oAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-1569aec44c54b7c87663feae;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3fzmJ8iZrVvBDurLOdAJXB6uuvk6KHvIBuKzMKAMSjKUzWICg1cCjQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:41:44 GMT
age: 16422
etag: "e45a3cfee589406e1ea0f1ebd6e8d321487474e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2